CVE-2016-0088

EUVD-2016-0126
Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows guest OS users to execute arbitrary code on the host OS via a crafted application, aka "Hyper-V Remote Code Execution Vulnerability."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 CRITICAL
LOCAL
LOW
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 81%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_10
*
microsoftwindows_8.1
*
microsoftwindows_server_2012
-
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
(x64)
KB3147461
Windows 8.1
(x64)
KB3135456
Windows Server 2012
Server Core
KB3135456
Standard
KB3135456
Windows Server 2012 R2
Server Core
KB3135456
Standard
KB3135456
Common Weakness Enumeration
References
http://www.securitytracker.com/id/1035538
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-045
http://www.securitytracker.com/id/1035538
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-045