Question 1

What is CVE-2019-1405 — Microsoft Windows Universal Plug and Play (UPnP) Service Privilege Escalation Vulnerability?

Accepted Answer

A privilege escalation vulnerability exists when the Windows UPnP service improperly allows COM object creation.

Question 2

What is the authoritative source for CVE-2019-1405?

Accepted Answer

Microsoft Windows Universal Plug and Play (UPnP) Service Privilege Escalation Vulnerability (CVE-2019-1405) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVE-2019-1405Microsoft Windows Universal Plug and Play (UPnP) Service Privilege Escalation Vulnerability

Description

Scoring

CISA KEV entry

(incoming)1

Related by meaning· 6