PT-2018-9173 · Microsoft · Windows 10 Servers+3

Published

2018-04-10

Updated

2020-08-24

CVE-2018-0964

CVSS v3.1

6.1

Medium

Vector

AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:N

Name of the Vulnerable Software and Affected Versions: Windows 10 Windows 10 Servers

Description: An issue exists where Windows Hyper-V fails to properly validate input from an authenticated user on a guest operating system, leading to potential information disclosure. This allows attackers to obtain sensitive information and affect the system.

Recommendations: For Windows 10, update to a version that includes the fix for this issue. For Windows 10 Servers, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to Hyper-V until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-0964

Affected Products

Windows

Windows 10

Windows 10 Servers

Windows Hyper-V

PT-2018-9173 · Microsoft · Windows 10 Servers+3

CVE-2018-0964

Related Identifiers

Affected Products

References · 7