PT-2018-18559 · Microsoft · Windows Server 2016+9
Alex Ionescu
·
Published
2018-08-14
·
Updated
2018-09-06
·
CVE-2018-8341
CVSS v3.1
4.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Windows 7
Windows Server 2012 R2
Windows RT 8.1
Windows Server 2012
Windows 8.1
Windows Server 2016
Windows Server 2008 R2
Windows 10
Windows 10 Servers
Description
The issue arises from the Windows kernel's improper handling of objects in memory, leading to an information disclosure. This could allow attackers to obtain sensitive information and affect the system.
Recommendations
For Windows 7, update to a newer version to mitigate the risk.
For Windows Server 2012 R2, update to a newer version to mitigate the risk.
For Windows RT 8.1, update to a newer version to mitigate the risk.
For Windows Server 2012, update to a newer version to mitigate the risk.
For Windows 8.1, update to a newer version to mitigate the risk.
For Windows Server 2016, update to a newer version to mitigate the risk.
For Windows Server 2008 R2, update to a newer version to mitigate the risk.
For Windows 10, update to a newer version to mitigate the risk.
For Windows 10 Servers, update to a newer version to mitigate the risk.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows
Windows 10
Windows 10 Servers
Windows 7
Windows 8.1
Windows Rt 8.1
Windows Server 2008 R2
Windows Server 2012
Windows Server 2012 R2
Windows Server 2016