The remote Windows host is missing security update 4507469.
It is, therefore, affected by multiple vulnerabilities :

  - A remote code execution vulnerability exists in .NET     software when the software fails to check the source     markup of a file. An attacker who successfully exploited     the vulnerability could run arbitrary code in the     context of the current user. If the current user is     logged on with administrative user rights, an attacker     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2019-1113)

  - A local elevation of privilege vulnerability exists in     how splwow64.exe handles certain calls. An attacker who     successfully exploited the vulnerability could elevate     privileges on an affected system from low-integrity to     medium-integrity. This vulnerability by itself does not     allow arbitrary code execution; however, it could allow     arbitrary code to be run if the attacker uses it in     combination with another vulnerability (such as a remote     code execution vulnerability or another elevation of     privilege vulnerability) that is capable of leveraging     the elevated privileges when code execution is     attempted. (CVE-2019-0880)

  - An elevation of privilege vulnerability exists in     rpcss.dll when the RPC service Activation Kernel     improperly handles an RPC request.  (CVE-2019-1089)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2019-1062, CVE-2019-1092,     CVE-2019-1103, CVE-2019-1106, CVE-2019-1107)

  - An information disclosure vulnerability exists when the     Windows RDP client improperly discloses the contents of     its memory. An attacker who successfully exploited this     vulnerability could obtain information to further     compromise the users system.  (CVE-2019-1108)

  - An information disclosure vulnerability exists when the     win32k component improperly provides kernel information.
    An attacker who successfully exploited the vulnerability     could obtain information to further compromise the users     system.  (CVE-2019-1096)

  - An elevation of privilege vulnerability exists in the     way Windows Error Reporting (WER) handles files. An     attacker who successfully exploited this vulnerability     could run arbitrary code in kernel mode. An attacker     could then install programs; view, change, or delete     data; or create new accounts with administrator     privileges.  (CVE-2019-1037)

  - A remote code execution vulnerability exists in the way     the scripting engine handles objects in memory in     Microsoft browsers. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2019-1001)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2019-1063)

  - An elevation of privilege vulnerability exists in     Microsoft Windows where certain folders, with local     service privilege, are vulnerable to symbolic link     attack. An attacker who successfully exploited this     vulnerability could potentially access unauthorized     information. The update addresses this vulnerability by     not allowing symbolic links in these scenarios.
    (CVE-2019-1074)

  - An elevation of privilege vulnerability exists in the     way that the dnsrslvr.dll handles objects in memory. An     attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2019-1090)

  - A remote code execution vulnerability exists in the way     that Microsoft browsers access objects in memory. The     vulnerability could corrupt memory in a way that could     allow an attacker to execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2019-1104)

  - An information disclosure vulnerability exists when     DirectWrite improperly discloses the contents of its     memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how DirectWrite handles objects in memory.
    (CVE-2019-1093, CVE-2019-1097)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2019-1094, CVE-2019-1095)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. An authenticated attacker could exploit this     vulnerability by running a specially crafted     application. The update addresses the vulnerability by     correcting how the Windows kernel handles objects in     memory. (CVE-2019-1071)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2019-1067)

  - A denial of service vulnerability exists when Microsoft     Hyper-V on a host server fails to properly validate     input from a privileged user on a guest operating     system.  (CVE-2019-0966)

  - An elevation of privilege exists in Windows Audio     Service. An attacker who successfully exploited the     vulnerability could run arbitrary code with elevated     privileges.  (CVE-2019-1086, CVE-2019-1087,     CVE-2019-1088)

  - A remote code execution vulnerability exists in the way     that the scripting engine handles objects in memory in     Internet Explorer. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2019-1004, CVE-2019-1056, CVE-2019-1059)

  - A security feature bypass vulnerability exists in Active     Directory Federation Services (ADFS) which could allow     an attacker to bypass the extranet lockout policy.
    (CVE-2019-1126)

  - A remote code execution vulnerability exists in Remote     Desktop Services formerly known as Terminal Services     when an authenticated attacker abuses clipboard     redirection. An attacker who successfully exploited this     vulnerability could execute arbitrary code on the victim     system. An attacker could then install programs; view,     change, or delete data; or create new accounts with full     user rights.  (CVE-2019-0887)

  - An elevation of privilege vulnerability exists in the     way that the wlansvc.dll handles objects in memory. An     attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2019-1085)

  - A denial of service vulnerability exists when Microsoft     Common Object Runtime Library improperly handles web     requests. An attacker who successfully exploited this     vulnerability could cause a denial of service against a     .NET web application. A remote unauthenticated attacker     could exploit this vulnerability by issuing specially     crafted requests to the .NET application. The update     addresses the vulnerability by correcting how the .NET     web application handles web requests. (CVE-2019-1083)

  - A memory corruption vulnerability exists in the Windows     Server DHCP service when an attacker sends specially     crafted packets to a DHCP failover server. An attacker     who successfully exploited the vulnerability could     either run arbitrary code on the DHCP failover server or     cause the DHCP service to become nonresponsive.
    (CVE-2019-0785)

  - A security feature bypass vulnerability exists when     Active Directory Federation Services (ADFS) improperly     updates its list of banned IP addresses.
    (CVE-2019-0975)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2019-1073)

  - A denial of service vulnerability exists when SymCrypt     improperly handles a specially crafted digital     signature. An attacker could exploit the vulnerability     by creating a specially crafted connection or message.
    The security update addresses the vulnerability by     correcting the way SymCrypt handles digital signatures.
    (CVE-2019-0865)

  - A remote code execution vulnerability exists in the way     that the Windows Graphics Device Interface (GDI) handles     objects in the memory. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2019-1102)

  - An authentication bypass vulnerability exists in Windows     Communication Foundation (WCF) and Windows Identity     Foundation (WIF), allowing signing of SAML tokens with     arbitrary symmetric keys. This vulnerability allows an     attacker to impersonate another user, which can lead to     elevation of privileges. The vulnerability exists in     WCF, WIF 3.5 and above in .NET Framework, WIF 1.0     component in Windows, WIF Nuget package, and WIF     implementation in SharePoint. An unauthenticated     attacker can exploit this by signing a SAML token with     any arbitrary symmetric key. This security update     addresses the issue by ensuring all versions of WCF and     WIF validate the key used to sign SAML tokens correctly.
    (CVE-2019-1006)

  - An elevation of privilege vulnerability exists when     Windows AppX Deployment Service (AppXSVC) improperly     handles hard links. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context. An attacker could then install     programs; view, change or delete data.  (CVE-2019-1129,     CVE-2019-1130)

  - An information disclosure vulnerability exists when     Unistore.dll fails to properly handle objects in memory.
    An attacker who successfully exploited the vulnerability     could potentially disclose memory contents of an     elevated process.  (CVE-2019-1091)

  - A denial of service vulnerability exists in Windows DNS     Server when it fails to properly handle DNS queries. An     attacker who successfully exploited this vulnerability     could cause the DNS Server service to become     nonresponsive.  (CVE-2019-0811)

  - A remote code execution vulnerability exists in the way     that DirectWrite handles objects in memory. An attacker     who successfully exploited this vulnerability could take     control of the affected system. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit an untrusted webpage. The security update     addresses the vulnerability by correcting how     DirectWrite handles objects in memory. (CVE-2019-1117,     CVE-2019-1118, CVE-2019-1119, CVE-2019-1120,     CVE-2019-1121, CVE-2019-1122, CVE-2019-1123,     CVE-2019-1124, CVE-2019-1127, CVE-2019-1128)     
  - An information disclosure vulnerability exists when     certain central processing units (CPU) speculatively     access memory. An attacker who successfully exploited     the vulnerability could read privileged data across     trust boundaries. (CVE-2019-1125)

The remote Windows host is missing security update 4507455.
It is, therefore, affected by multiple vulnerabilities :

  - An elevation of privilege vulnerability exists when     DirectX improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in kernel mode. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2019-0999)

  - A remote code execution vulnerability exists in .NET     software when the software fails to check the source     markup of a file. An attacker who successfully exploited     the vulnerability could run arbitrary code in the     context of the current user. If the current user is     logged on with administrative user rights, an attacker     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2019-1113)

  - A local elevation of privilege vulnerability exists in     how splwow64.exe handles certain calls. An attacker who     successfully exploited the vulnerability could elevate     privileges on an affected system from low-integrity to     medium-integrity. This vulnerability by itself does not     allow arbitrary code execution; however, it could allow     arbitrary code to be run if the attacker uses it in     combination with another vulnerability (such as a remote     code execution vulnerability or another elevation of     privilege vulnerability) that is capable of leveraging     the elevated privileges when code execution is     attempted. (CVE-2019-0880)

  - A denial of service vulnerability exists when Microsoft     Hyper-V on a host server fails to properly validate     input from a privileged user on a guest operating     system.  (CVE-2019-0966)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2019-1062, CVE-2019-1092,     CVE-2019-1103, CVE-2019-1106, CVE-2019-1107)

  - An information disclosure vulnerability exists when the     Windows RDP client improperly discloses the contents of     its memory. An attacker who successfully exploited this     vulnerability could obtain information to further     compromise the users system.  (CVE-2019-1108)

  - An information disclosure vulnerability exists when the     win32k component improperly provides kernel information.
    An attacker who successfully exploited the vulnerability     could obtain information to further compromise the users     system.  (CVE-2019-1096)

  - An elevation of privilege vulnerability exists in the     way Windows Error Reporting (WER) handles files. An     attacker who successfully exploited this vulnerability     could run arbitrary code in kernel mode. An attacker     could then install programs; view, change, or delete     data; or create new accounts with administrator     privileges.  (CVE-2019-1037)

  - A remote code execution vulnerability exists in the way     the scripting engine handles objects in memory in     Microsoft browsers. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2019-1001)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2019-1063)

  - An elevation of privilege vulnerability exists in     Microsoft Windows where certain folders, with local     service privilege, are vulnerable to symbolic link     attack. An attacker who successfully exploited this     vulnerability could potentially access unauthorized     information. The update addresses this vulnerability by     not allowing symbolic links in these scenarios.
    (CVE-2019-1074)

  - A remote code execution vulnerability exists in the way     that Microsoft browsers access objects in memory. The     vulnerability could corrupt memory in a way that could     allow an attacker to execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2019-1104)

  - An information disclosure vulnerability exists when     DirectWrite improperly discloses the contents of its     memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how DirectWrite handles objects in memory.
    (CVE-2019-1093, CVE-2019-1097)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2019-1094, CVE-2019-1095)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. An authenticated attacker could exploit this     vulnerability by running a specially crafted     application. The update addresses the vulnerability by     correcting how the Windows kernel handles objects in     memory. (CVE-2019-1071)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2019-1067)

  - An elevation of privilege exists in Windows Audio     Service. An attacker who successfully exploited the     vulnerability could run arbitrary code with elevated     privileges.  (CVE-2019-1086, CVE-2019-1087,     CVE-2019-1088)

  - A remote code execution vulnerability exists in the way     that the scripting engine handles objects in memory in     Internet Explorer. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2019-1004, CVE-2019-1056, CVE-2019-1059)

  - A remote code execution vulnerability exists in Remote     Desktop Services formerly known as Terminal Services     when an authenticated attacker abuses clipboard     redirection. An attacker who successfully exploited this     vulnerability could execute arbitrary code on the victim     system. An attacker could then install programs; view,     change, or delete data; or create new accounts with full     user rights.  (CVE-2019-0887)

  - An elevation of privilege vulnerability exists in the     way that the wlansvc.dll handles objects in memory. An     attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2019-1085)

  - A denial of service vulnerability exists when Microsoft     Common Object Runtime Library improperly handles web     requests. An attacker who successfully exploited this     vulnerability could cause a denial of service against a     .NET web application. A remote unauthenticated attacker     could exploit this vulnerability by issuing specially     crafted requests to the .NET application. The update     addresses the vulnerability by correcting how the .NET     web application handles web requests. (CVE-2019-1083)

  - An elevation of privilege vulnerability exists in     rpcss.dll when the RPC service Activation Kernel     improperly handles an RPC request.  (CVE-2019-1089)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2019-1073)

  - A denial of service vulnerability exists when SymCrypt     improperly handles a specially crafted digital     signature. An attacker could exploit the vulnerability     by creating a specially crafted connection or message.
    The security update addresses the vulnerability by     correcting the way SymCrypt handles digital signatures.
    (CVE-2019-0865)

  - A remote code execution vulnerability exists in the way     that the Windows Graphics Device Interface (GDI) handles     objects in the memory. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2019-1102)

  - An authentication bypass vulnerability exists in Windows     Communication Foundation (WCF) and Windows Identity     Foundation (WIF), allowing signing of SAML tokens with     arbitrary symmetric keys. This vulnerability allows an     attacker to impersonate another user, which can lead to     elevation of privileges. The vulnerability exists in     WCF, WIF 3.5 and above in .NET Framework, WIF 1.0     component in Windows, WIF Nuget package, and WIF     implementation in SharePoint. An unauthenticated     attacker can exploit this by signing a SAML token with     any arbitrary symmetric key. This security update     addresses the issue by ensuring all versions of WCF and     WIF validate the key used to sign SAML tokens correctly.
    (CVE-2019-1006)

  - An elevation of privilege vulnerability exists when     Windows AppX Deployment Service (AppXSVC) improperly     handles hard links. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context. An attacker could then install     programs; view, change or delete data.  (CVE-2019-1129,     CVE-2019-1130)

  - An information disclosure vulnerability exists when     Unistore.dll fails to properly handle objects in memory.
    An attacker who successfully exploited the vulnerability     could potentially disclose memory contents of an     elevated process.  (CVE-2019-1091)

  - A remote code execution vulnerability exists in the way     that DirectWrite handles objects in memory. An attacker     who successfully exploited this vulnerability could take     control of the affected system. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit an untrusted webpage. The security update     addresses the vulnerability by correcting how     DirectWrite handles objects in memory. (CVE-2019-1117,     CVE-2019-1118, CVE-2019-1119, CVE-2019-1120,     CVE-2019-1121, CVE-2019-1122, CVE-2019-1123,     CVE-2019-1124, CVE-2019-1127, CVE-2019-1128)     
  - An information disclosure vulnerability exists when     certain central processing units (CPU) speculatively     access memory. An attacker who successfully exploited     the vulnerability could read privileged data across     trust boundaries. (CVE-2019-1125)

The remote Windows host is missing security update 4507453.
It is, therefore, affected by multiple vulnerabilities :

  - A remote code execution vulnerability exists in .NET     software when the software fails to check the source     markup of a file. An attacker who successfully exploited     the vulnerability could run arbitrary code in the     context of the current user. If the current user is     logged on with administrative user rights, an attacker     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2019-1113)

  - A local elevation of privilege vulnerability exists in     how splwow64.exe handles certain calls. An attacker who     successfully exploited the vulnerability could elevate     privileges on an affected system from low-integrity to     medium-integrity. This vulnerability by itself does not     allow arbitrary code execution; however, it could allow     arbitrary code to be run if the attacker uses it in     combination with another vulnerability (such as a remote     code execution vulnerability or another elevation of     privilege vulnerability) that is capable of leveraging     the elevated privileges when code execution is     attempted. (CVE-2019-0880)

  - A denial of service vulnerability exists when Microsoft     Hyper-V on a host server fails to properly validate     input from a privileged user on a guest operating     system.  (CVE-2019-0966)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2019-1062, CVE-2019-1092,     CVE-2019-1103, CVE-2019-1106, CVE-2019-1107)

  - An information disclosure vulnerability exists when the     Windows RDP client improperly discloses the contents of     its memory. An attacker who successfully exploited this     vulnerability could obtain information to further     compromise the users system.  (CVE-2019-1108)

  - An information disclosure vulnerability exists when the     win32k component improperly provides kernel information.
    An attacker who successfully exploited the vulnerability     could obtain information to further compromise the users     system.  (CVE-2019-1096)

  - An elevation of privilege vulnerability exists in the     way Windows Error Reporting (WER) handles files. An     attacker who successfully exploited this vulnerability     could run arbitrary code in kernel mode. An attacker     could then install programs; view, change, or delete     data; or create new accounts with administrator     privileges.  (CVE-2019-1037)

  - A remote code execution vulnerability exists in the way     the scripting engine handles objects in memory in     Microsoft browsers. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2019-1001)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2019-1063)

  - An elevation of privilege vulnerability exists in     Microsoft Windows where certain folders, with local     service privilege, are vulnerable to symbolic link     attack. An attacker who successfully exploited this     vulnerability could potentially access unauthorized     information. The update addresses this vulnerability by     not allowing symbolic links in these scenarios.
    (CVE-2019-1074)

  - An elevation of privilege vulnerability exists in the     way that the dnsrslvr.dll handles objects in memory. An     attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2019-1090)

  - A remote code execution vulnerability exists in the way     that Microsoft browsers access objects in memory. The     vulnerability could corrupt memory in a way that could     allow an attacker to execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2019-1104)

  - An information disclosure vulnerability exists when     DirectWrite improperly discloses the contents of its     memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how DirectWrite handles objects in memory.
    (CVE-2019-1093, CVE-2019-1097)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2019-1094, CVE-2019-1095)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. An authenticated attacker could exploit this     vulnerability by running a specially crafted     application. The update addresses the vulnerability by     correcting how the Windows kernel handles objects in     memory. (CVE-2019-1071)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2019-1067)

  - An elevation of privilege exists in Windows Audio     Service. An attacker who successfully exploited the     vulnerability could run arbitrary code with elevated     privileges.  (CVE-2019-1086, CVE-2019-1087,     CVE-2019-1088)

  - A remote code execution vulnerability exists in the way     that the scripting engine handles objects in memory in     Internet Explorer. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2019-1004, CVE-2019-1056, CVE-2019-1059)

  - A remote code execution vulnerability exists in Remote     Desktop Services formerly known as Terminal Services     when an authenticated attacker abuses clipboard     redirection. An attacker who successfully exploited this     vulnerability could execute arbitrary code on the victim     system. An attacker could then install programs; view,     change, or delete data; or create new accounts with full     user rights.  (CVE-2019-0887)

  - An elevation of privilege vulnerability exists in the     way that the wlansvc.dll handles objects in memory. An     attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2019-1085)

  - A denial of service vulnerability exists when Microsoft     Common Object Runtime Library improperly handles web     requests. An attacker who successfully exploited this     vulnerability could cause a denial of service against a     .NET web application. A remote unauthenticated attacker     could exploit this vulnerability by issuing specially     crafted requests to the .NET application. The update     addresses the vulnerability by correcting how the .NET     web application handles web requests. (CVE-2019-1083)

  - An elevation of privilege vulnerability exists in     rpcss.dll when the RPC service Activation Kernel     improperly handles an RPC request.  (CVE-2019-1089)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2019-1073)

  - A denial of service vulnerability exists when SymCrypt     improperly handles a specially crafted digital     signature. An attacker could exploit the vulnerability     by creating a specially crafted connection or message.
    The security update addresses the vulnerability by     correcting the way SymCrypt handles digital signatures.
    (CVE-2019-0865)

  - A remote code execution vulnerability exists in the way     that the Windows Graphics Device Interface (GDI) handles     objects in the memory. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2019-1102)

  - An authentication bypass vulnerability exists in Windows     Communication Foundation (WCF) and Windows Identity     Foundation (WIF), allowing signing of SAML tokens with     arbitrary symmetric keys. This vulnerability allows an     attacker to impersonate another user, which can lead to     elevation of privileges. The vulnerability exists in     WCF, WIF 3.5 and above in .NET Framework, WIF 1.0     component in Windows, WIF Nuget package, and WIF     implementation in SharePoint. An unauthenticated     attacker can exploit this by signing a SAML token with     any arbitrary symmetric key. This security update     addresses the issue by ensuring all versions of WCF and     WIF validate the key used to sign SAML tokens correctly.
    (CVE-2019-1006)

  - An elevation of privilege vulnerability exists when     Windows AppX Deployment Service (AppXSVC) improperly     handles hard links. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context. An attacker could then install     programs; view, change or delete data.  (CVE-2019-1129,     CVE-2019-1130)

  - An information disclosure vulnerability exists when     Unistore.dll fails to properly handle objects in memory.
    An attacker who successfully exploited the vulnerability     could potentially disclose memory contents of an     elevated process.  (CVE-2019-1091)

  - A remote code execution vulnerability exists in the way     that DirectWrite handles objects in memory. An attacker     who successfully exploited this vulnerability could take     control of the affected system. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit an untrusted webpage. The security update     addresses the vulnerability by correcting how     DirectWrite handles objects in memory. (CVE-2019-1117,     CVE-2019-1118, CVE-2019-1119, CVE-2019-1120,     CVE-2019-1121, CVE-2019-1122, CVE-2019-1123,     CVE-2019-1124, CVE-2019-1127, CVE-2019-1128)     
  - An information disclosure vulnerability exists when     certain central processing units (CPU) speculatively     access memory. An attacker who successfully exploited     the vulnerability could read privileged data across     trust boundaries. (CVE-2019-1125)

The remote Windows host is missing security update 4507435.
It is, therefore, affected by multiple vulnerabilities :

  - An elevation of privilege vulnerability exists when     DirectX improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could run arbitrary code in kernel mode. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2019-0999)

  - A remote code execution vulnerability exists in .NET     software when the software fails to check the source     markup of a file. An attacker who successfully exploited     the vulnerability could run arbitrary code in the     context of the current user. If the current user is     logged on with administrative user rights, an attacker     could take control of the affected system. An attacker     could then install programs; view, change, or delete     data; or create new accounts with full user rights.
    (CVE-2019-1113)

  - A local elevation of privilege vulnerability exists in     how splwow64.exe handles certain calls. An attacker who     successfully exploited the vulnerability could elevate     privileges on an affected system from low-integrity to     medium-integrity. This vulnerability by itself does not     allow arbitrary code execution; however, it could allow     arbitrary code to be run if the attacker uses it in     combination with another vulnerability (such as a remote     code execution vulnerability or another elevation of     privilege vulnerability) that is capable of leveraging     the elevated privileges when code execution is     attempted. (CVE-2019-0880)

  - A denial of service vulnerability exists when Microsoft     Hyper-V on a host server fails to properly validate     input from a privileged user on a guest operating     system.  (CVE-2019-0966)

  - A remote code execution vulnerability exists in the way     that the Chakra scripting engine handles objects in     memory in Microsoft Edge. The vulnerability could     corrupt memory in such a way that an attacker could     execute arbitrary code in the context of the current     user. An attacker who successfully exploited the     vulnerability could gain the same user rights as the     current user.  (CVE-2019-1062, CVE-2019-1092,     CVE-2019-1103, CVE-2019-1106, CVE-2019-1107)

  - An information disclosure vulnerability exists when the     Windows RDP client improperly discloses the contents of     its memory. An attacker who successfully exploited this     vulnerability could obtain information to further     compromise the users system.  (CVE-2019-1108)

  - An information disclosure vulnerability exists when the     win32k component improperly provides kernel information.
    An attacker who successfully exploited the vulnerability     could obtain information to further compromise the users     system.  (CVE-2019-1096)

  - An elevation of privilege vulnerability exists in the     way Windows Error Reporting (WER) handles files. An     attacker who successfully exploited this vulnerability     could run arbitrary code in kernel mode. An attacker     could then install programs; view, change, or delete     data; or create new accounts with administrator     privileges.  (CVE-2019-1037)

  - A remote code execution vulnerability exists in the way     the scripting engine handles objects in memory in     Microsoft browsers. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2019-1001)

  - A remote code execution vulnerability exists when     Internet Explorer improperly accesses objects in memory.
    The vulnerability could corrupt memory in such a way     that an attacker could execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2019-1063)

  - An elevation of privilege vulnerability exists in     Microsoft Windows where certain folders, with local     service privilege, are vulnerable to symbolic link     attack. An attacker who successfully exploited this     vulnerability could potentially access unauthorized     information. The update addresses this vulnerability by     not allowing symbolic links in these scenarios.
    (CVE-2019-1074)

  - An elevation of privilege vulnerability exists in the     way that the dnsrslvr.dll handles objects in memory. An     attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2019-1090)

  - A remote code execution vulnerability exists in the way     that Microsoft browsers access objects in memory. The     vulnerability could corrupt memory in a way that could     allow an attacker to execute arbitrary code in the     context of the current user. An attacker who     successfully exploited the vulnerability could gain the     same user rights as the current user.  (CVE-2019-1104)

  - An information disclosure vulnerability exists when     DirectWrite improperly discloses the contents of its     memory. An attacker who successfully exploited the     vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how DirectWrite handles objects in memory.
    (CVE-2019-1093, CVE-2019-1097)

  - An information disclosure vulnerability exists when the     Windows GDI component improperly discloses the contents     of its memory. An attacker who successfully exploited     the vulnerability could obtain information to further     compromise the users system. There are multiple ways an     attacker could exploit the vulnerability, such as by     convincing a user to open a specially crafted document,     or by convincing a user to visit an untrusted webpage.
    The security update addresses the vulnerability by     correcting how the Windows GDI component handles objects     in memory. (CVE-2019-1094, CVE-2019-1095)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system. An authenticated attacker could exploit this     vulnerability by running a specially crafted     application. The update addresses the vulnerability by     correcting how the Windows kernel handles objects in     memory. (CVE-2019-1071)

  - An elevation of privilege vulnerability exists when the     Windows kernel fails to properly handle objects in     memory. An attacker who successfully exploited this     vulnerability could run arbitrary code in kernel mode.
    An attacker could then install programs; view, change,     or delete data; or create new accounts with full user     rights.  (CVE-2019-1067)

  - An elevation of privilege exists in Windows Audio     Service. An attacker who successfully exploited the     vulnerability could run arbitrary code with elevated     privileges.  (CVE-2019-1086, CVE-2019-1087,     CVE-2019-1088)

  - A remote code execution vulnerability exists in the way     that the scripting engine handles objects in memory in     Internet Explorer. The vulnerability could corrupt     memory in such a way that an attacker could execute     arbitrary code in the context of the current user. An     attacker who successfully exploited the vulnerability     could gain the same user rights as the current user.
    (CVE-2019-1004, CVE-2019-1056, CVE-2019-1059)

  - A remote code execution vulnerability exists in Remote     Desktop Services formerly known as Terminal Services     when an authenticated attacker abuses clipboard     redirection. An attacker who successfully exploited this     vulnerability could execute arbitrary code on the victim     system. An attacker could then install programs; view,     change, or delete data; or create new accounts with full     user rights.  (CVE-2019-0887)

  - An elevation of privilege vulnerability exists in the     way that the wlansvc.dll handles objects in memory. An     attacker who successfully exploited the vulnerability     could execute code with elevated permissions.
    (CVE-2019-1085)

  - A denial of service vulnerability exists when Microsoft     Common Object Runtime Library improperly handles web     requests. An attacker who successfully exploited this     vulnerability could cause a denial of service against a     .NET web application. A remote unauthenticated attacker     could exploit this vulnerability by issuing specially     crafted requests to the .NET application. The update     addresses the vulnerability by correcting how the .NET     web application handles web requests. (CVE-2019-1083)

  - An elevation of privilege vulnerability exists in     rpcss.dll when the RPC service Activation Kernel     improperly handles an RPC request.  (CVE-2019-1089)

  - An information disclosure vulnerability exists when the     Windows kernel improperly handles objects in memory. An     attacker who successfully exploited this vulnerability     could obtain information to further compromise the users     system.  (CVE-2019-1073)

  - A denial of service vulnerability exists when SymCrypt     improperly handles a specially crafted digital     signature. An attacker could exploit the vulnerability     by creating a specially crafted connection or message.
    The security update addresses the vulnerability by     correcting the way SymCrypt handles digital signatures.
    (CVE-2019-0865)

  - A remote code execution vulnerability exists in the way     that the Windows Graphics Device Interface (GDI) handles     objects in the memory. An attacker who successfully     exploited this vulnerability could take control of the     affected system. An attacker could then install     programs; view, change, or delete data; or create new     accounts with full user rights.  (CVE-2019-1102)

  - An authentication bypass vulnerability exists in Windows     Communication Foundation (WCF) and Windows Identity     Foundation (WIF), allowing signing of SAML tokens with     arbitrary symmetric keys. This vulnerability allows an     attacker to impersonate another user, which can lead to     elevation of privileges. The vulnerability exists in     WCF, WIF 3.5 and above in .NET Framework, WIF 1.0     component in Windows, WIF Nuget package, and WIF     implementation in SharePoint. An unauthenticated     attacker can exploit this by signing a SAML token with     any arbitrary symmetric key. This security update     addresses the issue by ensuring all versions of WCF and     WIF validate the key used to sign SAML tokens correctly.
    (CVE-2019-1006)

  - An elevation of privilege vulnerability exists when     Windows AppX Deployment Service (AppXSVC) improperly     handles hard links. An attacker who successfully     exploited this vulnerability could run processes in an     elevated context. An attacker could then install     programs; view, change or delete data.  (CVE-2019-1129,     CVE-2019-1130)

  - An information disclosure vulnerability exists when     Unistore.dll fails to properly handle objects in memory.
    An attacker who successfully exploited the vulnerability     could potentially disclose memory contents of an     elevated process.  (CVE-2019-1091)

  - A remote code execution vulnerability exists in the way     that DirectWrite handles objects in memory. An attacker     who successfully exploited this vulnerability could take     control of the affected system. An attacker could then     install programs; view, change, or delete data; or     create new accounts with full user rights. There are     multiple ways an attacker could exploit the     vulnerability, such as by convincing a user to open a     specially crafted document, or by convincing a user to     visit an untrusted webpage. The security update     addresses the vulnerability by correcting how     DirectWrite handles objects in memory. (CVE-2019-1117,     CVE-2019-1118, CVE-2019-1119, CVE-2019-1120,     CVE-2019-1121, CVE-2019-1122, CVE-2019-1123,     CVE-2019-1124, CVE-2019-1127, CVE-2019-1128)   
  - An information disclosure vulnerability exists when     certain central processing units (CPU) speculatively     access memory. An attacker who successfully exploited     the vulnerability could read privileged data across     trust boundaries. (CVE-2019-1125)

ID	Name	Product	Family	Severity
126579	KB4507469: Windows 10 Version 1809 and Windows Server 2019 July 2019 Security Update (SWAPGS)	Nessus	Windows : Microsoft Bulletins	high
126575	KB4507455: Windows 10 Version 1709 July 2019 Security Update (SWAPGS)	Nessus	Windows : Microsoft Bulletins	high
126574	KB4507453: Windows 10 Version 1903 July 2019 Security Update (SWAPGS)	Nessus	Windows : Microsoft Bulletins	high
126569	KB4507435: Windows 10 Version 1803 July 2019 Security Update (SWAPGS)	Nessus	Windows : Microsoft Bulletins	high

CVE-2019-1119

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Tenable Plugins