CVE-2018-1037

CVE Database · CVE-2018-1037

CVE-2018-1037

· N/AModified

CVSS v3.1

N/A

EPSS

5.88%

Published

Apr 11, 2018

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An information disclosure vulnerability exists when Visual Studio improperly discloses limited contents of uninitialized memory while compiling program database (PDB) files, aka "Microsoft Visual Studio Information Disclosure Vulnerability." This affects Microsoft Visual Studio.

Weaknesses (CWE)

CWE-908

Affected Products (7)

microsoft · visual_studiovulnerable

microsoft · visual_studio_2017vulnerable

References (6)

http://www.securityfocus.com/bid/103715

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040664

Third Party AdvisoryVDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1037

PatchVendor Advisory

http://www.securityfocus.com/bid/103715

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040664

Third Party AdvisoryVDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1037

KEV Catalog EPSS Scores Vendors All CVEs