CVE-2016-0090

EUVD-2016-0128
Hyper-V in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows 10 allows guest OS users to obtain sensitive information from host OS memory via a crafted application, aka "Hyper-V Information Disclosure Vulnerability."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.1 HIGH
LOCAL
LOW
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_10
*
microsoftwindows_8.1
*
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
(x64)
KB3147461
Windows 8.1
(x64)
KB3135456
Windows Server 2012
Server Core
KB3135456
Windows Server 2012 R2
Server Core
KB3135456
Common Weakness Enumeration
References
http://www.securitytracker.com/id/1035538
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-045
http://www.securitytracker.com/id/1035538
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-045