CVE-2018-0961

Summary

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate vSMB packet data, aka "Hyper-V vSMB Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.

Affected Software

VendorProductVersion RangeStatus
MicrosoftWindows Server 2016(Server Core installation)affected
MicrosoftWindows 10Version 1607 for x64-based Systemsaffected
MicrosoftWindows 10Version 1703 for x64-based Systemsaffected
MicrosoftWindows 10Version 1709 for x64-based Systemsaffected
MicrosoftWindows 10Version 1803 for x64-based Systemsaffected
MicrosoftWindows 10 Serversversion 1709 (Server Core Installation)affected
MicrosoftWindows 10 Serversversion 1803 (Server Core Installation)affected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References