vulnerability
Microsoft Windows: CVE-2019-0761: Internet Explorer Security Feature Bypass Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Mar 12, 2019 | Mar 12, 2019 | Sep 10, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Mar 12, 2019
Added
Mar 12, 2019
Modified
Sep 10, 2025
Description
A security feature bypass vulnerability exists when Internet Explorer fails to validate the correct Security Zone of requests for specific URLs, aka 'Internet Explorer Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0768.
Solutions
microsoft-windows-windows_10-1507-kb4489872microsoft-windows-windows_10-1607-kb4489882microsoft-windows-windows_10-1703-kb4489871microsoft-windows-windows_10-1709-kb4489886microsoft-windows-windows_10-1803-kb4489868microsoft-windows-windows_10-1809-kb4489899microsoft-windows-windows_server_2016-1607-kb4489882microsoft-windows-windows_server_2019-1809-kb4489899msft-kb4489873-1c82c918-95a8-49a8-810d-5855b1b12241msft-kb4489873-23d82a2b-ea81-4d5f-98b7-4066243a6923msft-kb4489873-553197e3-4a4e-4b6a-b067-7b3335804dcbmsft-kb4489873-57455ad6-527d-4ec9-8a75-b2072e42f896msft-kb4489873-5cba3d00-b16c-4b9f-a576-cd82462b74d0msft-kb4489873-6a2f95c0-8560-46e2-b661-ee4ce98a5097msft-kb4489873-98e88ca3-6908-4ce2-9d27-b5470c96ae43msft-kb4489873-aea3599f-9bf6-4a83-a20b-fc4604c2a3bemsft-kb4489873-b32f723f-b9ea-425b-b4cb-17eb13c4f5bamsft-kb4489873-d92f0b16-409c-4210-beff-7ab50ffb3e4cmsft-kb4489873-e8d32424-2537-4f4d-9cee-3f82f6001e0fmsft-kb4489873-ea08436c-794c-42dc-99ea-59dedffbd58a
References
- CVE-2019-0761
- https://attackerkb.com/topics/CVE-2019-0761
- CWE-863
- https://support.microsoft.com/help/4489868
- https://support.microsoft.com/help/4489871
- https://support.microsoft.com/help/4489872
- https://support.microsoft.com/help/4489873
- https://support.microsoft.com/help/4489882
- https://support.microsoft.com/help/4489886
- https://support.microsoft.com/help/4489899
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.