Microsoft Support

Sign in

Microsoft Support

September 10, 2019-KB4514601 Cumulative Update for .NET Framework 3.5, 4.7.2 and 4.8 for Windows 10 Version 1809 and Windows Server 2019

Applies to: .NET Framework

Release Date:
September 10, 2019

Version:
.NET Framework 3.5, 4.7.2 and 4.8

Summary

An elevation of privilege vulnerability exists when the .NET Framework common language runtime (CLR) allows file creation in arbitrary locations. An attacker who successfully exploited this vulnerability could write files to folders that require higher privileges than what the attacker already has.

To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE).

CVE-2019-1142

Additional information about this update

The following articles contain additional information about this update as it relates to individual product versions.

4514366 Description of the Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows 10 Version 1809 and Windows Server 2019 (KB4514366)
4514358 Description of the Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1809 and Windows Server 2019 (KB4514358)

Information about protection and security

Protect yourself online: Windows Security support
Learn how we guard against cyber threats: Microsoft Security

Last Updated: 10 Sep 2019

This site in other countries/regions

Algérie - Français

Argentina - Español

Australia - English

Belgique - Français

België - Nederlands

Bolivia - Español

Bosna i Hercegovina - Hrvatski

Brasil - Português

Canada - English

Canada - Français

Chile - Español

Colombia - Español

Costa Rica - Español

Crna Gora - Srpski

Danmark - Dansk

Deutschland - Deutsch

Dominican Republic - Español

Ecuador - Español

Eesti - Eesti

El Salvador - Español

España - Español

Estados Unidos - Español

France - Français

Guatemala - Español

Hong Kong SAR - English

Hrvatska - Hrvatski

India - English

Indonesia (Bahasa) - Bahasa

Ireland - English

Italia - Italiano

Latvija - Latviešu

Lietuva - Lietuvių

Luxembourg - Français

Magyarország - Magyar

Malaysia - English

Maroc - Français

México - Español

Nederland - Nederlands

New Zealand - English

Norge - Bokmål

Panamá - Español

Paraguay - Español

Perú - Español

Philippines - English

Polska - Polski

Portugal - Português

Puerto Rico - Español

România - Română

Schweiz - Deutsch

Singapore - English

Slovenija - Slovenščina

Slovensko - Slovenčina

South Africa - English

Srbija - Srpski

Suisse - Français

Suomi - Suomi

Sverige - Svenska

Tunisie - Français

Türkiye - Türkçe

United Kingdom - English

United States - English

Uruguay - Español

Venezuela - Español

Việt Nam - Tiếng việt

Ísland - Íslenska

Österreich - Deutsch

Česká Republika - Čeština

Ελλάδα - Ελληνικά

България - Български

Казахстан - Русский

Россия - Русский

Україна - Українська

ישראל - עברית

الإمارات العربية المتحدة - العربية

المملكة العربية السعودية - العربية

مصر - العربية

भारत - हिंदी

ไทย - ไทย

中国 - 简体中文

台灣 - 繁體中文

日本 - 日本語

香港特別行政區 - 繁體中文

대한민국 - 한국어

ERROR: at System.Diagnostics.Process.Kill() at Microsoft.Support.SEOInfrastructureService.PhantomJS.PhantomJSRunner.WaitForExit(Process process, Int32 waitTime, StringBuilder dataBuilder, Boolean isTotalProcessTimeout)New URL: about:blank