CVE-2018-8438

Summary

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka "Windows Hyper-V Denial of Service Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8436, CVE-2018-8437.

Affected Software

VendorProductVersion RangeStatus
MicrosoftWindows Server 2012 R2(Server Core installation)affected
MicrosoftWindows RT 8.1Windows RT 8.1affected
MicrosoftWindows Server 2016(Server Core installation)affected
MicrosoftWindows 8.132-bit systemsaffected
MicrosoftWindows 8.1x64-based systemsaffected
MicrosoftWindows 1032-bit Systemsaffected
MicrosoftWindows 10Version 1607 for 32-bit Systemsaffected
MicrosoftWindows 10Version 1607 for x64-based Systemsaffected
MicrosoftWindows 10Version 1703 for 32-bit Systemsaffected
MicrosoftWindows 10Version 1703 for x64-based Systemsaffected
MicrosoftWindows 10Version 1709 for 32-bit Systemsaffected
MicrosoftWindows 10Version 1709 for x64-based Systemsaffected
MicrosoftWindows 10Version 1803 for 32-bit Systemsaffected
MicrosoftWindows 10Version 1803 for x64-based Systemsaffected
MicrosoftWindows 10x64-based Systemsaffected
MicrosoftWindows 10 Serversversion 1709 (Server Core Installation)affected
MicrosoftWindows 10 Serversversion 1803 (Server Core Installation)affected

Weaknesses

  • Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References