Vulnerability Details CVE-2017-8527
Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a remote code execution vulnerability due to the way it handles objects in memory, aka "Windows Graphics Remote Code Execution Vulnerability".
Exploit prediction scoring system (EPSS) score
EPSS Score 0.285
EPSS Ranking 96.2%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 9.3
References
- http://www.securityfocus.com/bid/98933
- http://www.securitytracker.com/id/1038680
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8527
- http://www.securityfocus.com/bid/98933
- http://www.securitytracker.com/id/1038680
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8527
Products affected by CVE-2017-8527
-
cpe:2.3:a:microsoft:lync:2013
-
cpe:2.3:a:microsoft:office:2007
-
cpe:2.3:a:microsoft:office:2010
-
cpe:2.3:a:microsoft:silverlight:5.0
-
cpe:2.3:a:microsoft:skype_for_business:2016
-
cpe:2.3:o:microsoft:windows_10:-
-
cpe:2.3:o:microsoft:windows_10:1511
-
cpe:2.3:o:microsoft:windows_10:1607
-
cpe:2.3:o:microsoft:windows_10:1703
-
cpe:2.3:o:microsoft:windows_7:-
-
cpe:2.3:o:microsoft:windows_8.1:-
-
cpe:2.3:o:microsoft:windows_rt_8.1:-
-
cpe:2.3:o:microsoft:windows_server_2008:-
-
cpe:2.3:o:microsoft:windows_server_2008:r2
-
cpe:2.3:o:microsoft:windows_server_2012:-
-
cpe:2.3:o:microsoft:windows_server_2012:r2
-
cpe:2.3:o:microsoft:windows_server_2016:-