Vulnerability Details CVE-2018-0880
The Desktop Bridge in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how the virtual registry is managed, aka "Windows Desktop Bridge Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0882.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.078
EPSS Ranking 91.4%
CVSS Severity
CVSS v3 Score 7.0
CVSS v2 Score 6.9
References
- http://www.securityfocus.com/bid/103239
- http://www.securitytracker.com/id/1040520
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0880
- https://www.exploit-db.com/exploits/44314/
- http://www.securityfocus.com/bid/103239
- http://www.securitytracker.com/id/1040520
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0880
- https://www.exploit-db.com/exploits/44314/
Products affected by CVE-2018-0880
-
cpe:2.3:o:microsoft:windows_10:-
-
cpe:2.3:o:microsoft:windows_10:1607
-
cpe:2.3:o:microsoft:windows_10:1703
-
cpe:2.3:o:microsoft:windows_10:1709
-
cpe:2.3:o:microsoft:windows_server:1709
-
cpe:2.3:o:microsoft:windows_server_2016:-