EUVD-2018-1647

🗓️ 15 Feb 2018 02:00:00Reported by EUVDType

Internet Explorer in multiple Windows versions allows information disclosure due to memory handling issues.

Reporter	Title	Published	Views	Family All 41
CNVD	Microsoft Windows scripting engine information disclosure vulnerability	26 Feb 201800:00	–	cnvd
CVE	CVE-2018-0847	15 Feb 201802:00	–	cve
Cvelist	CVE-2018-0847	15 Feb 201802:00	–	cvelist
Microsoft KB	Description of the security update for the Windows scripting engine vulnerability in Windows Server 2008, WES09, and POSReady 2009: February 13, 2018	13 Feb 201808:00	–	mskb
Microsoft KB	February 13, 2018—KB4074587 (Security-only update)	13 Feb 201808:00	–	mskb
Microsoft KB	February 13, 2018—KB4074588 (OS Build 16299.248)	13 Feb 201808:00	–	mskb
Microsoft KB	February 13, 2018—KB4074589 (Security-only update)	13 Feb 201808:00	–	mskb
Microsoft KB	February 13, 2018—KB4074590 (OS Build 14393.2068)	13 Feb 201808:00	–	mskb
Microsoft KB	February 13, 2018—KB4074591 (OS Build 10586.1417)	13 Feb 201808:00	–	mskb
Microsoft KB	February 13, 2018—KB4074592 (OS Build 15063.909)	13 Feb 201808:00	–	mskb

[
  {
    "enisaIdVendor": [
      {
        "id": "b2d95b25-0e7c-3b91-9538-c4c83697d1d0",
        "vendor": {
          "name": "Microsoft Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "09e57785-4bd5-3e23-b77c-822871d1a260",
        "product": {
          "name": "Internet Explorer"
        },
        "product_version": "Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016."
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/102861
securitytracker	www.securitytracker.com/id/1040370
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0847

17 Sep 2024 02:12Current

5.6Medium risk

Vulners AI Score5.6

CVSS 34.3

CVSS 24.3

EPSS0.12044