Lucene search

MicrosoftCVE-2018-8218

HistoryJun 14, 2018 - 12:29 p.m.

CVE-2018-8218

2018-06-1412:29:01

CWE-20

microsoft

web.nvd.nist.gov

microsoft

hyper-v

network switch

denial of service

vulnerability

windows 10

windows server

nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

CVSS3

7.7

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

AI Score

7.6

Confidence

High

EPSS

0.003

Percentile

66.3%

JSON

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka “Windows Hyper-V Denial of Service Vulnerability.” This affects Windows 10, Windows 10 Servers.

Affected configurations

Nvd

Vulners

Node

microsoftwindows_10Match1709

microsoftwindows_server_2016Match1709

VendorProductVersionCPE
microsoftwindows_101709cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*
microsoftwindows_server_20161709cpe:2.3:o:microsoft:windows_server_2016:1709:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows_10	1709	cpe:2.3:o:microsoft:windows_10:1709:::::::*
microsoft	windows_server_2016	1709	cpe:2.3:o:microsoft:windows_server_2016:1709:::::::*

CNA Affected

[
  {
    "product": "Windows 10",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "Version 1709 for x64-based Systems"
      }
    ]
  },
  {
    "product": "Windows 10 Servers",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "version 1709  (Server Core Installation)"
      }
    ]
  }
]