PT-2018-9126 · Microsoft · Windows Server 2008+7
Joe Bialek
·
Published
2018-03-13
·
Updated
2022-05-23
·
CVE-2018-0888
CVSS v3.1
5.6
Medium
| Vector | AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Microsoft Hyper-V versions in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709
Description:
The issue allows attackers to obtain sensitive information and affect the system due to improper validation of guest operating system input.
Recommendations:
For Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709, update to a version that includes the fix for the Hyper-V information disclosure issue.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hyper-V
Windows
Windows 10
Windows 7
Windows 8.1
Windows Server 2008
Windows Server 2012
Windows Server 2016