CVE-2018-8493

An information disclosure vulnerability exists when the Windows TCP/IP stack improperly handles fragmented IP packets, aka "Windows TCP/IP Information Disclosure Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
VendorProductVersion
microsoftwindows_10_1507
-
microsoftwindows_10_1607
-
microsoftwindows_10_1703
-
microsoftwindows_10_1709
-
microsoftwindows_10_1803
-
microsoftwindows_8.1
-
microsoftwindows_8.1
-
microsoftwindows_8.1
-
microsoftwindows_server_1709
-
microsoftwindows_server_1803
-
microsoftwindows_server_2016
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/105456
http://www.securitytracker.com/id/1041843
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8493
http://www.securityfocus.com/bid/105456
http://www.securitytracker.com/id/1041843
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8493