CVE-2018-0957

Summary

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka "Hyper-V Information Disclosure Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0964.

Affected Software

VendorProductVersion RangeStatus
MicrosoftWindows Server 2012 R2(Server Core installation)affected
MicrosoftWindows RT 8.1Windows RT 8.1affected
MicrosoftWindows Server 2016(Server Core installation)affected
MicrosoftWindows 8.1x64-based systemsaffected
MicrosoftWindows 10Version 1511 for x64-based Systemsaffected
MicrosoftWindows 10Version 1607 for x64-based Systemsaffected
MicrosoftWindows 10Version 1703 for x64-based Systemsaffected
MicrosoftWindows 10Version 1709 for x64-based Systemsaffected
MicrosoftWindows 10x64-based Systemsaffected
MicrosoftWindows 10 Serversversion 1709 (Server Core Installation)affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References