Detections
Analytics
CVE-2019-1166
medium
Description
A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection, aka 'Windows NTLM Tampering Vulnerability'.
References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1166
Details
Published: 2019-10-10
Updated: 2020-08-24
Named Vulnerability: Drop the MicNamed Vulnerability: Drop the MIC
Risk Information
CVSS v2
Base Score: 4.3
Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N
Severity: Medium
CVSS v3
Base Score: 5.9
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Severity: Medium
EPSS
EPSS: 0.02567