CVE-2017-8710

🗓️ 13 Sep 2017 01:00:00Reported by microsoftType

Windows .msc vulnerability in Windows 7 and Server 2008 allows file read via XXE declaration

Reporter	Title	Published	Views	Family All 20
CNVD	Microsoft Common Console Document Information Disclosure Vulnerability	13 Sep 201700:00	–	cnvd
Check Point Advisories	Microsoft Windows XXE Information Disclosure (CVE-2017-8710)	17 Sep 201700:00	–	checkpoint_advisories
Cvelist	CVE-2017-8710	13 Sep 201701:00	–	cvelist
Microsoft KB	September 12, 2017—KB4038777 (Monthly Rollup)	12 Sep 201707:00	–	mskb
Microsoft KB	September 12, 2017—KB4038779 (Security-only update)	12 Sep 201707:00	–	mskb
Microsoft KB	Security update for the information disclosure vulnerability in Windows Server 2008: September 12, 2017	12 Sep 201707:00	–	mskb
Kaspersky	KLA11899 Multiple vulnerabilities in Microsoft Products (ESU)	12 Sep 201700:00	–	kaspersky
Microsoft CVE	Windows System Information Console Information Disclosure Vulnerability	12 Sep 201707:00	–	mscve
NVD	CVE-2017-8710	13 Sep 201701:29	–	nvd
OpenVAS	Microsoft Windows Information Disclosure Vulnerability (KB4039038)	13 Sep 201700:00	–	openvas

NVD

Node

microsoft windows_7Match-sp1

microsoft windows_server_2008Match-sp2

microsoft windows_server_2008Matchr2sp1itanium

microsoft windows_server_2008Matchr2sp1x64

[
  {
    "product": "Microsoft Common Console Document (.msc)",
    "vendor": "Microsoft Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1."
      }
    ]
  }
]

Source	Link
youtube	www.youtube.com/watch
securityfocus	www.securityfocus.com/bid/100793
vulnerability-lab	www.vulnerability-lab.com/get_content.php
securitytracker	www.securitytracker.com/id/1039325
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8710

13 May 2026 00:24Current

5.5Medium risk

Vulners AI Score5.5

CVSS 24.3

CVSS 35.5

EPSS0.33099

CWE-611