CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-0760

The Microsoft Windows Embedded OpenType (EOT) font engine in Microsoft Windows 7 SP1, Windows Server 2008 R2, and Windows Server 2012 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0755, CVE-2018-0761, and CVE-2018-0855.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.031

EPSS Ranking 86.1%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 2.1

References

Products affected by CVE-2018-0760

Microsoft » Windows 7 » Version: N/A

cpe:2.3:o:microsoft:windows_7:-
Microsoft » Windows Server 2008 » Version: r2

cpe:2.3:o:microsoft:windows_server_2008:r2
Microsoft » Windows Server 2012 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2012:-
Microsoft » Windows Server 2012 » Version: 6.2.9200.24116

cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24116
Microsoft » Windows Server 2012 » Version: 6.2.9200.24768

cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24768
Microsoft » Windows Server 2012 » Version: 6.2.9200.24919

cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24919
Microsoft » Windows Server 2012 » Version: 6.2.9200.24975

cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.24975
Microsoft » Windows Server 2012 » Version: 6.2.9200.25031

cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.25031
Microsoft » Windows Server 2012 » Version: 6.2.9200.25073

cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.25073
Microsoft » Windows Server 2012 » Version: r2

cpe:2.3:o:microsoft:windows_server_2012:r2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-0760

Products

Pricing

Contact Us