Lucene search

MicrosoftCVE-2018-8202

HistoryJul 11, 2018 - 12:29 a.m.

CVE-2018-8202

2018-07-1100:29:00

microsoft

web.nvd.nist.gov

.net framework

elevation of privilege

vulnerability

cve-2018-8202

security

microsoft

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

44.0%

JSON

An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level, aka “.NET Framework Elevation of Privilege Vulnerability.” This affects Microsoft .NET Framework 2.0, Microsoft .NET Framework 3.0, Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.6, Microsoft .NET Framework 4.7/4.7.1/4.7.2, Microsoft .NET Framework 4.7.1/4.7.2, Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.6/4.6.1/4.6.2, Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2, Microsoft .NET Framework 4.7.2.

Affected configurations

Nvd

Vulners

Node

microsoft.net_frameworkMatch2.0sp2

microsoft.net_frameworkMatch3.0sp2

AND

microsoftwindows_server_2008Match-sp2

Node

microsoft.net_frameworkMatch3.5

AND

microsoftwindows_10Match-

microsoftwindows_10Match1607

microsoftwindows_10Match1703

microsoftwindows_10Match1709

microsoftwindows_10Match1803

microsoftwindows_8.1

microsoftwindows_server_2012

microsoftwindows_server_2012Matchr2

microsoftwindows_server_2016

Node

microsoft.net_frameworkMatch3.5.1

AND

microsoftwindows_7Match-sp1

microsoftwindows_server_2008Matchr2sp1

Node

microsoft.net_frameworkMatch4.5.2

AND

microsoftwindows_7Match-sp1

microsoftwindows_8.1

microsoftwindows_rt_8.1Match-

microsoftwindows_server_2008sp2

microsoftwindows_server_2008Matchr2sp1

microsoftwindows_server_2012

microsoftwindows_server_2012Matchr2

Node

microsoft.net_frameworkMatch4.6

AND

microsoftwindows_server_2008sp2

Node

microsoft.net_frameworkMatch4.6.2

microsoft.net_frameworkMatch4.7

microsoft.net_frameworkMatch4.7.1

microsoft.net_frameworkMatch4.7.2

AND

microsoftwindows_10Match1607

microsoftwindows_server_2016Match-

Node

microsoft.net_frameworkMatch4.6

microsoft.net_frameworkMatch4.6.1

microsoft.net_frameworkMatch4.6.2

AND

microsoftwindows_10Match-

Node

microsoft.net_frameworkMatch4.6

microsoft.net_frameworkMatch4.6.1

microsoft.net_frameworkMatch4.6.2

microsoft.net_frameworkMatch4.7

microsoft.net_frameworkMatch4.7.1

microsoft.net_frameworkMatch4.7.2

AND

microsoftwindows_7Match-sp1

microsoftwindows_8.1

microsoftwindows_rt_8.1Match-

microsoftwindows_server_2008Matchr2sp1

microsoftwindows_server_2012

microsoftwindows_server_2012Matchr2

Node

microsoft.net_frameworkMatch4.7.1

microsoft.net_frameworkMatch4.7.2

AND

microsoftwindows_10Match1709

microsoftwindows_serverMatch1709

Node

microsoft.net_frameworkMatch4.7.2

AND

microsoftwindows_10Match1803

microsoftwindows_serverMatch1803

Node

microsoft.net_frameworkMatch4.7

microsoft.net_frameworkMatch4.7.1

microsoft.net_frameworkMatch4.7.2

AND

microsoftwindows_10Match1703

VendorProductVersionCPE
microsoft.net_framework2.0cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*
microsoft.net_framework3.0cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*
microsoftwindows_server_2008-cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
microsoft.net_framework3.5cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*
microsoftwindows_10-cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*
microsoftwindows_101607cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*
microsoftwindows_101703cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:*
microsoftwindows_101709cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*
microsoftwindows_101803cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*
microsoftwindows_8.1*cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	.net_framework	2.0	cpe:2.3:a:microsoft:.net_framework:2.0:sp2::::::
microsoft	.net_framework	3.0	cpe:2.3:a:microsoft:.net_framework:3.0:sp2::::::
microsoft	windows_server_2008	-	cpe:2.3:o:microsoft:windows_server_2008:-:sp2::::::
microsoft	.net_framework	3.5	cpe:2.3:a:microsoft:.net_framework:3.5:::::::*
microsoft	windows_10	-	cpe:2.3:o:microsoft:windows_10:-:::::::*
microsoft	windows_10	1607	cpe:2.3:o:microsoft:windows_10:1607:::::::*
microsoft	windows_10	1703	cpe:2.3:o:microsoft:windows_10:1703:::::::*
microsoft	windows_10	1709	cpe:2.3:o:microsoft:windows_10:1709:::::::*
microsoft	windows_10	1803	cpe:2.3:o:microsoft:windows_10:1803:::::::*
microsoft	windows_8.1	*	cpe:2.3:o:microsoft:windows_8.1::::::::

Rows per page:

1-10 of 281

CNA Affected

[
  {
    "product": "Microsoft .NET Framework",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "2.0 Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "2.0 Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "2.0 Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "3.0 Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "3.0 Service Pack 2 on Windows Server 2008 for Itanium-Based Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "3.0 Service Pack 2 on Windows Server 2008 for x64-based Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1607 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1607 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1703 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1703 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1709 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1709 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1803 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 10 Version 1803 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 8.1 for 32-bit systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows 8.1 for x64-based systems"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2012"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2012 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2012 R2"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2012 R2 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2016"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server 2016  (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server, version 1709  (Server Core Installation)"
      },
      {
        "status": "affected",
        "version": "3.5 on Windows Server, version 1803  (Server Core Installation)"
      },
      {
        "status": "affected",
        "version": "3.5.1 on Windows 7 for 32-bit Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "3.5.1 on Windows 7 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "3.5.1 on Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "3.5.1 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows 7 for 32-bit Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows 7 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows 8.1 for 32-bit systems"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows 8.1 for x64-based systems"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows RT 8.1"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2008 for 32-bit Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2008 for x64-based Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2012"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2012 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2012 R2"
      },
      {
        "status": "affected",
        "version": "4.5.2 on Windows Server 2012 R2 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.6 on Windows Server 2008 for 32-bit Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "4.6 on Windows Server 2008 for x64-based Systems Service Pack 2"
      },
      {
        "status": "affected",
        "version": "4.6.2/4.7/4.7.1/4.7.2 on Windows 10 Version 1607 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.6.2/4.7/4.7.1/4.7.2 on Windows 10 Version 1607 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2016"
      },
      {
        "status": "affected",
        "version": "4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2016  (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2 on Windows 10 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2 on Windows 10 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows 7 for 32-bit Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows 7 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows 8.1 for 32-bit systems"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows 8.1 for x64-based systems"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows RT 8.1"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2012"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2012 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2012 R2"
      },
      {
        "status": "affected",
        "version": "4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2 on Windows Server 2012 R2 (Server Core installation)"
      },
      {
        "status": "affected",
        "version": "4.7.1/4.7.2 on Windows 10 Version 1709 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.7.1/4.7.2 on Windows 10 Version 1709 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "4.7.1/4.7.2 on Windows Server, version 1709  (Server Core Installation)"
      },
      {
        "status": "affected",
        "version": "4.7.2 on Windows 10 Version 1803 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.7.2 on Windows 10 Version 1803 for x64-based Systems"
      },
      {
        "status": "affected",
        "version": "4.7.2 on Windows Server, version 1803  (Server Core Installation)"
      },
      {
        "status": "affected",
        "version": "4.7/4.7.1/4.7.2 on Windows 10 Version 1703 for 32-bit Systems"
      },
      {
        "status": "affected",
        "version": "4.7/4.7.1/4.7.2 on Windows 10 Version 1703 for x64-based Systems"
      }
    ]
  }
]