CVE-2017-11782

Опубликовано: 13 окт. 2017

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

The Microsoft Server Block Message (SMB) on Microsoft Windows 10 1607 and Windows Server 2016, allows an elevation of privilege vulnerability when an attacker sends specially crafted requests to the server, aka "Windows SMB Elevation of Privilege Vulnerability".

Ссылки

http://www.securityfocus.com/bid/101143
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039528
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11782
Patch
Vendor Advisory
http://www.securityfocus.com/bid/101143
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039528
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11782
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*

EPSS

Процентиль: 72%

0.00724

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2017-11782

CVSS3: 7.5

msrc

больше 7 лет назад

Windows SMB Elevation of Privilege Vulnerability

GHSA-mpc8-f6h2-689c