9.3

CVE-2018-8432

EPSS 24.72%
Veröffentlicht 10.10.2018 13:29:02
Zuletzt bearbeitet 21.11.2024 04:13:48
Quelle secure@microsoft.com
Teams Watchlist Login
Unerledigt Login

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Remote Code Execution Vulnerability." This affects Windows 7, Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Microsoft Excel Viewer, Microsoft PowerPoint Viewer, Windows Server 2019, Windows Server 2008 R2, Windows 10, Windows Server 2008.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Excel Viewer Version2007 Updatesp3

Microsoft ≫ Office Version2016 Editionmac_os

Microsoft ≫ Office Version2019

Microsoft ≫ Office 365 Proplus Version-

Microsoft ≫ Office Compatibility Pack Version- Updatesp3

Microsoft ≫ Powerpoint Viewer Version2007

Microsoft ≫ Word Viewer Version-

Microsoft ≫ Windows 10 Version1809

Microsoft ≫ Windows 7 Version- Updatesp1

Microsoft ≫ Windows Server 2008 Version- Updatesp2

Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1

Microsoft ≫ Windows Server 2019 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	24.72%	0.959

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://www.securitytracker.com/id/1041823

Third Party Advisory

VDB Entry

http://www.securityfocus.com/bid/105458

Third Party Advisory

VDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8432

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2018-8432

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-8432

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-8432

EUVD