CVE-2018-8306

Опубликовано: 11 июл. 2018

Источник: nvd

CVSS3: 5.5

CVSS2: 5.2

EPSS Низкий

Описание

A command injection vulnerability exists in the Microsoft Wireless Display Adapter (MWDA) when the Microsoft Wireless Display Adapter does not properly manage user input, aka "Microsoft Wireless Display Adapter Command Injection Vulnerability." This affects Microsoft Wireless Display Adapter V2 Software.

Ссылки

http://www.securityfocus.com/bid/104621
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041269
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8306
Patch
Vendor Advisory
http://www.securityfocus.com/bid/104621
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041269
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8306
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:microsoft:wireless_display_adapter_firmware:2.0.8350:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:wireless_display_adapter_firmware:2.0.8365:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:wireless_display_adapter_firmware:2.0.8372:*:*:*:*:*:*:*

cpe:2.3:h:microsoft:wireless_display_adapter:2:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.0088

Низкий

5.5 Medium

CVSS3

5.2 Medium

CVSS2

Дефекты

CWE-77

Связанные уязвимости

CVE-2018-8306

CVSS3: 5.5

msrc

около 7 лет назад

Microsoft Wireless Display Adapter Command Injection Vulnerability

GHSA-m37p-x6xc-38vx

CVSS3: 5.5

github

больше 3 лет назад

EPSS

Процентиль: 74%

0.0088

Низкий

5.5 Medium

CVSS3

5.2 Medium

CVSS2

Дефекты

CWE-77