Prenotice from Microsoft: The January Patch Tuesday released yesterday includes an update for a remote code execution flaw in Windows 10 version 1803.
Microsoft says you should update your systems immediately.
The update security it is present in Windows 10 cumulative update KB4480966, which is only available for version 1803 (April 2018 Update), which is the only version of Windows affected by vulnerability.
The vulnerability is described in detail by Microsoft in CVE-2019-0547 where the company states that so far no exploit is released.
“A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client. An attacker who could exploit the vulnerability could execute arbitrary code on the system. "
MSRC team Nate Warfield says the bug was found internally and no PoC will be released. However, it is recommended that you install the update as soon as possible.
___________________________