QwikSec

Security Database

CVE

CWE

Training

CVE-2019-0841

Published: Apr 9, 2019

Modified: Oct 21, 2025

PUBLISHED

Description

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836.

Vendor	Product	Versions
Microsoft	Windows	affected `10 Version 1703 for 32-bit Systems` affected `10 Version 1703 for x64-based Systems` affected `10 Version 1709 for 32-bit Systems` affected `10 Version 1709 for x64-based Systems` affected `10 Version 1803 for 32-bit Systems` +6 more versions
Microsoft	Windows Server	affected `version 1709 (Core Installation)` affected `version 1803 (Core Installation)` affected `2019` affected `2019 (Core installation)`

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0841

x_refsource_MISC

exploit

x_refsource_EXPLOIT-DB

http://packetstormsecurity.com/files/152463/Microsoft-Windows-AppX-Deployment-Service-Privilege-Escalation.html

x_refsource_MISC

https://www.zerodayinitiative.com/advisories/ZDI-19-360/

x_refsource_MISC

http://packetstormsecurity.com/files/153009/Internet-Explorer-JavaScript-Privilege-Escalation.html

x_refsource_MISC

http://packetstormsecurity.com/files/153114/Microsoft-Windows-AppX-Deployment-Service-Local-Privilege-Escalation.html

x_refsource_MISC

http://packetstormsecurity.com/files/153215/Microsoft-Windows-AppX-Deployment-Service-Local-Privilege-Escalation.html

x_refsource_MISC

http://packetstormsecurity.com/files/153642/AppXSvc-Hard-Link-Privilege-Escalation.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.