CVE-2018-8396

Summary

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows Server 2008, Windows 7, Windows Server 2008 R2. This CVE ID is unique from CVE-2018-8394, CVE-2018-8398.

Affected Software

VendorProductVersion RangeStatus
MicrosoftWindows Server 200832-bit Systems Service Pack 2affected
MicrosoftWindows Server 200832-bit Systems Service Pack 2 (Server Core installation)affected
MicrosoftWindows Server 2008Itanium-Based Systems Service Pack 2affected
MicrosoftWindows Server 2008x64-based Systems Service Pack 2affected
MicrosoftWindows Server 2008x64-based Systems Service Pack 2 (Server Core installation)affected
MicrosoftWindows 732-bit Systems Service Pack 1affected
MicrosoftWindows 7x64-based Systems Service Pack 1affected
MicrosoftWindows Server 2008 R2Itanium-Based Systems Service Pack 1affected
MicrosoftWindows Server 2008 R2x64-based Systems Service Pack 1affected
MicrosoftWindows Server 2008 R2x64-based Systems Service Pack 1 (Server Core installation)affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References