CVE-2018-8335

Опубликовано: 13 сент. 2018

Источник: nvd

CVSS3: 7.5

CVSS2: 7.8

EPSS Низкий

Описание

A denial of service vulnerability exists in the Microsoft Server Block Message (SMB) when an attacker sends specially crafted requests to the server, aka "Windows SMB Denial of Service Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers.

Ссылки

http://www.securityfocus.com/bid/105224
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041634
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8335
Patch
Vendor Advisory
http://www.securityfocus.com/bid/105224
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041634
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8335
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:rt:*:*:*

cpe:2.3:o:microsoft:windows_server:2012:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server:2012:r2:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server:2016:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server:2016:1709:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server:2016:1803:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05751

Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2018-8335

CVSS3: 4.8

msrc

почти 7 лет назад

Windows SMB Denial of Service Vulnerability

GHSA-x3fj-9mg7-89j7