CVE-2017-8707

🗓️ 13 Sep 2017 01:00:00Reported by microsoftType

Windows Hyper-V Information Disclosure Vulnerability on Multiple Windows Version

Reporter	Title	Published	Views	Family All 41
CNVD	Microsoft Windows Hyper-V Information Disclosure Vulnerability (CNVD-2017-32914)	13 Sep 201700:00	–	cnvd
CVE	CVE-2017-8707	13 Sep 201701:00	–	cve
EUVD	EUVD-2017-17653	7 Oct 202500:30	–	euvd
Microsoft KB	September 12, 2017—KB4038777 (Monthly Rollup)	12 Sep 201707:00	–	mskb
Microsoft KB	September 12, 2017—KB4038779 (Security-only update)	12 Sep 201707:00	–	mskb
Microsoft KB	September 12, 2017—KB4038781 (OS Build 10240.17609)	12 Sep 201707:00	–	mskb
Microsoft KB	September 12, 2017—KB4038783 (OS Build 10586.1106)	12 Sep 201707:00	–	mskb
Microsoft KB	September 12, 2017—KB4038786 (Security-only update)	12 Sep 201707:00	–	mskb
Microsoft KB	September 12, 2017—KB4038788 (OS Build 15063.608)	12 Sep 201707:00	–	mskb
Microsoft KB	September 12, 2017—KB4038792 (OS Build Monthly Rollup)	12 Sep 201707:00	–	mskb

[
  {
    "product": "Windows Hyper-V",
    "vendor": "Microsoft Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "The Windows Hyper-V component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability when it fails to properly validate input from an authenticated user on a guest operating system, aka \"Hyper-V Information Disclosure Vulnerability\". This CVE ID is unique from CVE-2017-8707, CVE-2017-8711, CVE-2017-8712, and CVE-2017-8713"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/100790
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8707
securitytracker	www.securitytracker.com/id/1039317

13 Sep 2017 09:57Current

5.4Medium risk

Vulners AI Score5.4

EPSS0.03199