Vulnerability Details CVE-2018-8495
A remote code execution vulnerability exists when Windows Shell improperly handles URIs, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.628
EPSS Ranking 98.3%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.6
References
- http://www.securityfocus.com/bid/105461
- https://leucosite.com/Microsoft-Edge-RCE/
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8495
- http://www.securityfocus.com/bid/105461
- https://leucosite.com/Microsoft-Edge-RCE/
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8495
Products affected by CVE-2018-8495
-
cpe:2.3:o:microsoft:windows_10:1607
-
cpe:2.3:o:microsoft:windows_10:1703
-
cpe:2.3:o:microsoft:windows_10:1709
-
cpe:2.3:o:microsoft:windows_10:1803
-
cpe:2.3:o:microsoft:windows_server_2016:-
-
cpe:2.3:o:microsoft:windows_server_2016:1709
-
cpe:2.3:o:microsoft:windows_server_2016:1803