ID CVE-2018-8350
Summary A remote code execution vulnerability exists when Microsoft Windows PDF Library improperly handles objects in memory, aka "Windows PDF Remote Code Execution Vulnerability." This affects Windows 10 Servers, Windows 10.
References
Vulnerable Configurations
  • cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server:1709:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_server:1709:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server:1803:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_server:1803:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 23-05-2022 - 17:29)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
refmap via4
bid 104985
confirm https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8350
sectrack 1041465
Last major update 23-05-2022 - 17:29
Published 15-08-2018 - 17:29
Last modified 23-05-2022 - 17:29
Back to Top