Microsoft Windows Hyper-V CVE-2019-1254 Information Disclosure Vulnerability
Description
An information disclosure vulnerability exists when Windows Hyper-V writes uninitialized memory to disk. An attacker could exploit the vulnerability by reading a file to recover kernel memory. To exploit the vulnerability, an attacker would first require access to a Hyper-V host. The security update addresses the vulnerability by ensuring Hyper-V properly initializes memory before writing it to disk.
Affected Applications
Windows Server 2016
Windows 10
Windows Server version 1803 (Server Core Installation)
Windows Server version 1903 (Server Core installation)
Windows Server 2019