CVE-2018-8427

EUVD-2018-20063
An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Information Disclosure Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Windows Server 2008, Microsoft PowerPoint Viewer, Microsoft Excel Viewer.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
Affected Products (NVD)
VendorProductVersion
microsoftoffice_365_proplus
-
microsoftoffice_compatibility_pack
-
microsoftoffice_word_viewer
-
microsoftwindows_server_2008
-
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows Server 2008
Service Pack 2 (x64, x86)
KB4463104
Service Pack 2 Server Core (x64, x86)
KB4463104
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/105453
http://www.securitytracker.com/id/1041823
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8427
http://www.securityfocus.com/bid/105453
http://www.securitytracker.com/id/1041823
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8427