7.6 High
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
7.4 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:M/Au:S/C:C/I:C/A:C
0.016 Low
EPSS
Percentile
87.4%
A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka âHyper-V Remote Code Execution Vulnerability.â This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | windows_7 | x64-based Systems Service Pack 1 | cpe:2.3:o:microsoft:windows_7:x64-based Systems Service Pack 1:*:*:*:*:*:*:* |
microsoft | windows_server_2012_r2 | (Server Core installation) | cpe:2.3:o:microsoft:windows_server_2012_r2:(Server Core installation):*:*:*:*:*:*:* |
microsoft | windows_rt_8.1 | Windows RT 8.1 | cpe:2.3:o:microsoft:windows_rt_8.1:Windows RT 8.1:*:*:*:*:*:*:* |
microsoft | windows_server_2008 | x64-based Systems Service Pack 2 | cpe:2.3:o:microsoft:windows_server_2008:x64-based Systems Service Pack 2:*:*:*:*:*:*:* |
microsoft | windows_server_2008 | x64-based Systems Service Pack 2 (Server Core installation) | cpe:2.3:o:microsoft:windows_server_2008:x64-based Systems Service Pack 2 (Server Core installation):*:*:*:*:*:*:* |
microsoft | windows_server_2012 | (Server Core installation) | cpe:2.3:o:microsoft:windows_server_2012:(Server Core installation):*:*:*:*:*:*:* |
microsoft | windows_8.1 | x64-based systems | cpe:2.3:o:microsoft:windows_8.1:x64-based systems:*:*:*:*:*:*:* |
microsoft | windows_server_2016 | (Server Core installation) | cpe:2.3:o:microsoft:windows_server_2016:(Server Core installation):*:*:*:*:*:*:* |
microsoft | windows_server_2008_r2 | x64-based Systems Service Pack 1 | cpe:2.3:o:microsoft:windows_server_2008_r2:x64-based Systems Service Pack 1:*:*:*:*:*:*:* |
microsoft | windows_server_2008_r2 | x64-based Systems Service Pack 1 (Server Core installation) | cpe:2.3:o:microsoft:windows_server_2008_r2:x64-based Systems Service Pack 1 (Server Core installation):*:*:*:*:*:*:* |
More
7.6 High
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
7.4 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:M/Au:S/C:C/I:C/A:C
0.016 Low
EPSS
Percentile
87.4%