CVE-2018-8495

Name of the Vulnerable Software and Affected Versions Windows Server 2016 Windows 10 Windows 10 Servers

Description A remote code execution issue exists due to improper handling of URIs by the Windows Shell, allowing remote attackers to execute arbitrary code. This can be achieved through a specially crafted web page. The estimated number of potentially affected devices worldwide is not specified.

Recommendations For Windows Server 2016, update to a version that includes the fix for this issue. For Windows 10, apply the necessary patches to resolve the remote code execution vulnerability. For Windows 10 Servers, ensure that all security updates are installed to mitigate the risk of exploitation. As a temporary workaround, consider restricting access to hazardous URIs in Microsoft Edge until a patch is available.