Vulnerability Details CVE-2018-0854
A security feature bypass vulnerability exists in Windows Scripting Host which could allow an attacker to bypass Device Guard, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0958, CVE-2018-8129, CVE-2018-8132.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.2%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 4.6
References
- http://www.securityfocus.com/bid/104029
- http://www.securitytracker.com/id/1040849
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0854
- http://www.securityfocus.com/bid/104029
- http://www.securitytracker.com/id/1040849
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0854
Products affected by CVE-2018-0854
-
cpe:2.3:o:microsoft:windows_10:-
-
cpe:2.3:o:microsoft:windows_10:1607
-
cpe:2.3:o:microsoft:windows_10:1703
-
cpe:2.3:o:microsoft:windows_10:1709
-
cpe:2.3:o:microsoft:windows_server_2016:-
-
cpe:2.3:o:microsoft:windows_server_2016:1709