CVE-2019-1372

Description

An remote code execution vulnerability exists when Azure App Service/ Antares on Azure Stack fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability could allow an unprivileged function run by the user to execute code in the context of NT AUTHORITY\system thereby escaping the Sandbox.The security update addresses the vulnerability by ensuring that Azure App Service sanitizes user inputs., aka 'Azure App Service Remote Code Execution Vulnerability'.

10.0
CVSS
Severity: Critical
CVSS 3.1 •
CVSS 2.0 •
EPSS 4.43% Top 15%
Vendor Advisory microsoft.com
Affected: Microsoft Azure App Service on Azure Stack
Published at:
Updated at:

References

Link Tags
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1372 patch vendor advisory
https://research.checkpoint.com/2020/remote-cloud-execution-critical-vulnerabilities-in-azure-cloud-infrastructure-part-ii/

Frequently Asked Questions

What is the severity of CVE-2019-1372?
CVE-2019-1372 has been scored as a critical severity vulnerability.
How to fix CVE-2019-1372?
To fix CVE-2019-1372, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2019-1372 being actively exploited in the wild?
It is possible that CVE-2019-1372 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~4% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2019-1372?
CVE-2019-1372 affects Microsoft Azure App Service on Azure Stack.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.