Vulnerability Details CVE-2018-0743
Windows Subsystem for Linux in Windows 10 version 1703, Windows 10 version 1709, and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Subsystem for Linux Elevation of Privilege Vulnerability".
Exploit prediction scoring system (EPSS) score
EPSS Score 0.078
EPSS Ranking 91.6%
CVSS Severity
CVSS v3 Score 7.0
CVSS v2 Score 4.4
References
- http://www.securityfocus.com/bid/102350
- http://www.securitytracker.com/id/1040094
- https://github.com/saaramar/execve_exploit
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0743
- https://twitter.com/AmarSaar/status/948892321755598848
- https://www.exploit-db.com/exploits/43962/
- http://www.securityfocus.com/bid/102350
- http://www.securitytracker.com/id/1040094
- https://github.com/saaramar/execve_exploit
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0743
- https://twitter.com/AmarSaar/status/948892321755598848
- https://www.exploit-db.com/exploits/43962/
Products affected by CVE-2018-0743
-
cpe:2.3:o:microsoft:windows_10:1703
-
cpe:2.3:o:microsoft:windows_10:1709
-
cpe:2.3:o:microsoft:windows_server_2016:1709