CVE-2017-8712

Опубликовано: 13 сент. 2017

Источник: nvd

CVSS3: 5.3

CVSS2: 1.9

EPSS Низкий

Описание

The Windows Hyper-V component on Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an information disclosure vulnerability when it fails to properly validate input from an authenticated user on a guest operating system, aka "Hyper-V Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8707, CVE-2017-8711, CVE-2017-8706, and CVE-2017-8713.

Ссылки

http://www.securityfocus.com/bid/100795
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039317
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8712
Patch
Vendor Advisory
http://www.securityfocus.com/bid/100795
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039317
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8712
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.03199

Низкий

5.3 Medium

CVSS3

1.9 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2017-8712

CVSS3: 7.2

msrc

почти 8 лет назад

Windows Hyper-V Information Disclosure Vulnerability

GHSA-jpwm-6fvr-35jv