Lucene search

[email protected]NVD:CVE-2018-8337

HistorySep 13, 2018 - 12:29 a.m.

CVE-2018-8337

2018-09-1300:29:01

CWE-178

[email protected]

web.nvd.nist.gov

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

5.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

25.9%

JSON

A security feature bypass vulnerability exists when Windows Subsystem for Linux improperly handles case sensitivity, aka “Windows Subsystem for Linux Security Feature Bypass Vulnerability.” This affects Windows 10, Windows 10 Servers.

Affected configurations

NVD

Node

microsoftwindows_10Match1709

microsoftwindows_server_2016Match1709

References

www.securityfocus.com/bid/105250

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8337

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

5.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

25.9%

JSON

Related for NVD:CVE-2018-8337

symantec1 cvelist1 prion1 cve1 mscve1 kaspersky1 nessus1 openvas1 mskb1 talosblog1