CVE-2018-8231

CVE Database · CVE-2018-8231

CVE-2018-8231

· N/AModified

CVSS v3.1

N/A

EPSS

14.99%

Published

Jun 14, 2018

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A remote code execution vulnerability exists when HTTP Protocol Stack (Http.sys) improperly handles objects in memory, aka "HTTP Protocol Stack Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.

Affected Products (8)

microsoft · windows_10vulnerable

microsoft · windows_server_1803vulnerable

microsoft · windows_server_2016vulnerable

References (6)

http://www.securityfocus.com/bid/104373

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1041094

Third Party AdvisoryVDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8231

PatchVendor Advisory

http://www.securityfocus.com/bid/104373

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1041094

Third Party AdvisoryVDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8231

KEV Catalog EPSS Scores Vendors All CVEs