CVE-2018-8151

Опубликовано: 09 мая 2018

Источник: nvd

CVSS3: 4.3

CVSS2: 4.3

EPSS Низкий

Описание

An information disclosure vulnerability exists when Microsoft Exchange improperly handles objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server. This CVE ID is unique from CVE-2018-8154.

Ссылки

http://www.securityfocus.com/bid/104042
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1040850
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8151
Patch
Vendor Advisory
http://www.securityfocus.com/bid/104042
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1040850
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8151
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:exchange_server:2010:sp3:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_19:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_20:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:2013:sp1:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_8:*:*:*:*:*:*

cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_9:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.08267

Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

CVE-2018-8151

msrc

больше 7 лет назад

Microsoft Exchange Memory Corruption Vulnerability

GHSA-gg4j-9c4p-ggfr

CVSS3: 4.3

github

больше 3 лет назад

CVE-2021-27065

CVSS3: 7.8

msrc

больше 4 лет назад

Microsoft Exchange Server Remote Code Execution Vulnerability

CVE-2021-26858

CVSS3: 7.8

msrc

больше 4 лет назад

Microsoft Exchange Server Remote Code Execution Vulnerability

CVE-2021-26857

CVSS3: 7.8

msrc

больше 4 лет назад

Microsoft Exchange Server Remote Code Execution Vulnerability

EPSS

Процентиль: 92%

0.08267

Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-119