CVE-2017-0186

Опубликовано: 12 апр. 2017

Источник: nvd

CVSS3: 5.8

CVSS2: 6.3

EPSS Низкий

Описание

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch running on a Windows 10, Windows 8.1, Windows Server 2012, Windows Server 2012 R2, or Windows Server 2016 host server fails to properly validate input from a privileged user on a guest operating system, aka "Hyper-V Denial of Service Vulnerability." This CVE ID is unique from CVE-2017-0178, CVE-2017-0179, CVE-2017-0182, CVE-2017-0183, CVE-2017-0184, and CVE-2017-0185.

Ссылки

http://www.securityfocus.com/bid/97438
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0186
Mitigation
Patch
Vendor Advisory
http://www.securityfocus.com/bid/97438
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0186
Mitigation
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1511:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*

EPSS

Процентиль: 63%

0.00468

Низкий

5.8 Medium

CVSS3

6.3 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2017-0186

CVSS3: 5.8

msrc

около 8 лет назад

Windows Hyper-V Denial of Service Vulnerability

GHSA-6247-wcj8-m58c

CVSS3: 5.8

github

около 3 лет назад

EPSS

Процентиль: 63%

0.00468

Низкий

5.8 Medium

CVSS3

6.3 Medium

CVSS2

Дефекты

CWE-20