A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1208.
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1236