Unrated severityCISA KEVNVD Advisory· Published Jul 29, 2019· Updated Oct 21, 2025

CVE-2019-1130

Description

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1129.

Affected products

Microsoft/Windows Serverv5
Range: 2012
Microsoft/Windowsv5
Range: 8.1 for x64-based systems
Microsoft/Windows 10 Version 1903 for 32-bit Systemsv5
Range: unspecified
Microsoft/Windows 10 Version 1903 for x64-based Systemsv5
Range: unspecified
Microsoft/Windows 10 Version 1903 for ARM64-based Systemsv5
Range: unspecified
Microsoft/Windows Server, version 1903 (Server Core installation)v5
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1130mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.060