Lucene search

[email protected]CVE-2017-8623

HistoryAug 08, 2017 - 9:29 p.m.

CVE-2017-8623

2017-08-0821:29:00

CWE-20

[email protected]

web.nvd.nist.gov

windows

hyper-v

windows 10

windows server 2016

cve-2017-8623

denial of service

vulnerability

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

7 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

55.9%

JSON

Windows Hyper-V in Windows 10 1607, 1703, and Windows Server 2016 allows a denial of service vulnerability when it fails to properly validate input from a privileged user on a guest operating system, aka “Windows Hyper-V Denial of Service Vulnerability”.

Affected configurations

Vulners

NVD

Node

microsoft_corporationwindows_hyper-v

CPENameOperatorVersion
microsoft:windows_10microsoft windows 10eq1607
microsoft:windows_10microsoft windows 10eq1703
microsoft:windows_server_2016microsoft windows server 2016eq*

CPE	Name	Operator	Version
microsoft:windows_10	microsoft windows 10	eq	1607
microsoft:windows_10	microsoft windows 10	eq	1703
microsoft:windows_server_2016	microsoft windows server 2016	eq	*

CNA Affected

[
  {
    "product": "Windows Hyper-V",
    "vendor": "Microsoft Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Windows 10 1607, 1703, and Windows Server 2016"
      }
    ]
  }
]