Today, Microsoft rolls KB4514359 cumulative update for .NET Framework 3.5, 4.8 Windows 10 19H1. After installing this patch, the existing operating system will protect against the vulnerabilities of CVE-2019-1142.
By default, you will receive a notification regarding the same to download the security patches for .NET Framework. In case, you don’t want to wait, navigate to the following address and download this manually.
Settings > Update & Security > Windows update and press the Check for updates button.
Key Changes in KB4514359 .NET Framework 3.5, 4.8
Earlier, when the common language runtime lets file creation in arbitrary locations under .NET Framework, there is some elevation in vulnerabilities. Owing to this, anyone can exploit this exposure so as to edit files or folders that otherwise require higher privileges.
To get ideas of such vulnerabilities, read the following Common Vulnerabilities and Exposures (CVE) – CVE-2019-1142.
If you want to download and install the latest security patches for .Net framework 3.5, 4.8, do visit here.
Source – Update Catalog