CVE-2017-0259

Опубликовано: 12 мая 2017

Источник: nvd

CVSS3: 4.7

CVSS2: 1.9

EPSS Низкий

Описание

The Windows kernel in Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows authenticated attackers to obtain sensitive information via a specially crafted document, aka "Windows Kernel Information Disclosure Vulnerability," a different vulnerability than CVE-2017-0175, CVE-2017-0220, and CVE-2017-0258.

Ссылки

http://www.securityfocus.com/bid/98113
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0259
Patch
Vendor Advisory
https://www.exploit-db.com/exploits/42007/
http://www.securityfocus.com/bid/98113
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0259
Patch
Vendor Advisory
https://www.exploit-db.com/exploits/42007/

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1511:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*

EPSS

Процентиль: 91%

0.07771

Низкий

4.7 Medium

CVSS3

1.9 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2017-0259

CVSS3: 4.7

msrc

около 8 лет назад

Windows Kernel Information Disclosure Vulnerability

GHSA-29j5-85v7-89h5

CVSS3: 4.7

github

около 3 лет назад

EPSS

Процентиль: 91%

0.07771

Низкий

4.7 Medium

CVSS3

1.9 Low

CVSS2

Дефекты

CWE-200