Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMicrosoftCVELIST:CVE-2018-8540
HistoryDec 12, 2018 - 12:00 a.m.

CVE-2018-8540

2018-12-1200:00:00
microsoft
www.cve.org

9.8 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.6%

JSON

A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka “.NET Framework Remote Code Injection Vulnerability.” This affects Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 4.7/4.7.1/4.7.2, Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.7.1/4.7.2, Microsoft .NET Framework 4.7.2, Microsoft .NET Framework 4.6.2.

CNA Affected

[
  {
    "product": "Microsoft .NET Framework",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "3.5 on Windows 10 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1607 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1607 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1703 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1703 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1709 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1709 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1803 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1803 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1809 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1809 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 8.1 for 32-bit systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 8.1 for x64-based systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2012"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2012 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2012 R2"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2012 R2 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2016"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2016  (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2019"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2019  (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server, version 1709  (Server Core Installation)"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server, version 1803  (Server Core Installation)"
      },
      {
        "status": "affected",
        "version": "3.5.1 on Windows 7 for 32-bit Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "3.5.1 on Windows 7 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "3.5.1 on Windows Server 2008 R2 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "3.5.1 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows 7 for 32-bit Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows 7 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows 8.1 for 32-bit systems"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows 8.1 for x64-based systems"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows RT 8.1"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2008 for 32-bit Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2008 for x64-based Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2012"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2012 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2012 R2"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2012 R2 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.6 on Windows Server 2008 for 32-bit Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "4.6 on Windows Server 2008 for x64-based Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "4.6.2 on Windows 10 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.6.2 on Windows 10 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "4.6.2/4.7/4.7.1/4.7.2 on Windows 10 Version 1607 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.6.2/4.7/4.7.1/4.7.2 on Windows 10 Version 1607 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2016"
      },
      {
        "status": "affected",
        "version": "4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2016  (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows 7 for 32-bit Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows 7 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows 8.1 for 32-bit systems"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows 8.1 for x64-based systems"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows RT 8.1"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2012"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2012 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2012 R2"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2012 R2 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.7.1/4.7.2 on Windows 10 Version 1709 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.7.1/4.7.2 on Windows 10 Version 1709 for ARM64-based Systems"
      },
      {
        "status": "affected",
        "version": "4.7.1/4.7.2 on Windows 10 Version 1709 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "4.7.1/4.7.2 on Windows Server, version 1709  (Server Core Installation)"
      },
      {
        "status": "affected",
        "version": "4.7.2 on Windows 10 Version 1803 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.7.2 on Windows 10 Version 1803 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "4.7.2 on Windows 10 Version 1809 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.7.2 on Windows 10 Version 1809 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "4.7.2 on Windows Server 2019"
      },
      {
        "status": "affected",
        "version": "4.7.2 on Windows Server 2019  (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.7.2 on Windows Server, version 1803  (Server Core Installation)"
      },
      {
        "status": "affected",
        "version": "4.7/4.7.1/4.7.2 on Windows 10 Version 1703 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.7/4.7.1/4.7.2 on Windows 10 Version 1703 for x64-based Systems"
      }
    ]
  }
]

Related

mscve 1
nvd 1
mskb 34
symantec 1
prion 1
cve 1
openvas 12
nessus 11
kaspersky 2
talosblog 1
mscve
mscve
.NET Framework Remote Code Execution Injection Vulnerability
2018-12-11 08:00:00
nvd
nvd
CVE-2018-8540
2018-12-12 00:29:00
mskb
mskb
Security Only updates for .NET Framework 3.5 SP1, 4.5.2, and 4.6 for Windows Server 2008 SP2 (KB 4471984)
2018-12-06 00:00:00
Security and Quality Rollup updates for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows 8.1, RT 8.1 and Server 2012 R2 (KB 4471989)
2018-12-06 00:00:00
Security and Quality Rollup updates for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows 7 SP1 and Windows Server 2008 R2 SP1 (KB 4471987)
2018-12-07 00:00:00
symantec
symantec
Microsoft .NET Framework CVE-2018-8540 Remote Code Execution Vulnerability
2018-12-11 00:00:00
prion
prion
Remote code execution
2018-12-12 00:29:00
cve
cve
CVE-2018-8540
2018-12-12 00:29:00
openvas
openvas
Microsoft .NET Framework 4.5.2 Multiple Vulnerabilities (KB4470622)
2018-12-12 00:00:00
Microsoft .NET Framework 3.5 Multiple Vulnerabilities (KB4470630)
2018-12-12 00:00:00
Microsoft .NET Framework 4.5.2 Multiple Vulnerabilities (KB4470623)
2018-12-12 00:00:00
nessus
nessus
Security Updates for Microsoft .NET Framework (December 2018)
2018-12-13 00:00:00
KB4471329: Windows 10 Version 1709 and Windows Server Version 1709 December 2018 Security Update
2018-12-11 00:00:00
KB4471324: Windows 10 Version 1803 and Windows Server Version 1803 December 2018 Security Update
2018-12-11 00:00:00
kaspersky
kaspersky
KLA11897 Multiple vulnerabilities in Microsoft Developer Tools
2018-12-11 00:00:00
KLA11383 Multiple vulnerabilities in Microsoft Developer Tools
2019-12-11 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday — December 2018: Vulnerability disclosures and Snort coverage
2018-12-11 10:35:00

9.8 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.6%

JSON
Related for CVELIST:CVE-2018-8540
mscve1nvd1mskb34symantec1prion1cve1openvas12nessus11kaspersky2talosblog1