CVE-2018-0828

EUVD-2018-1633
Windows 10 version 1607 and Windows Server 2016 allow an elevation of privilege vulnerability due to how the MultiPoint management account password is stored, aka "Windows Elevation of Privilege Vulnerability".
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 76%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_server_2016
-
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
1607 (x64, x86)
KB4074590
Windows Server 2016
Server Core
KB4074590
Standard
KB4074590
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/102935
http://www.securitytracker.com/id/1040373
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0828
http://www.securityfocus.com/bid/102935
http://www.securitytracker.com/id/1040373
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0828