admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

- Synchronized data.

Browse Source
This commit is contained in:
CVE Team 2018-11-13 20:07:11 -05:00
parent a7ca1d4587
commit 87183a945c
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
61 changed files with 279 additions and 96 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
2018/8xxx/CVE-2018-8256.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8256"
"ID" : "CVE-2018-8256",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -203,7 +204,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists when PowerShell improperly handles specially crafted files, aka \"Microsoft PowerShell Remote Code Execution Vulnerability.\" This affects Windows RT 8.1, PowerShell Core 6.0, Microsoft.PowerShell.Archive 1.2.2.0, Windows Server 2016, Windows Server 2012, Windows Server 2008 R2, Windows Server 2019, Windows 7, Windows Server 2012 R2, PowerShell Core 6.1, Windows 10 Servers, Windows 10, Windows 8.1. "
"value" : "A remote code execution vulnerability exists when PowerShell improperly handles specially crafted files, aka \"Microsoft PowerShell Remote Code Execution Vulnerability.\" This affects Windows RT 8.1, PowerShell Core 6.0, Microsoft.PowerShell.Archive 1.2.2.0, Windows Server 2016, Windows Server 2012, Windows Server 2008 R2, Windows Server 2019, Windows 7, Windows Server 2012 R2, PowerShell Core 6.1, Windows 10 Servers, Windows 10, Windows 8.1."
}
]
},
@ -222,6 +223,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8256",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8256"
}
]

7
2018/8xxx/CVE-2018-8407.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8407"
"ID" : "CVE-2018-8407",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -202,7 +203,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when "Kernel Remote Procedure Call Provider" driver improperly initializes objects in memory, aka \"MSRPC Information Disclosure Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. "
"value" : "An information disclosure vulnerability exists when \"Kernel Remote Procedure Call Provider\" driver improperly initializes objects in memory, aka \"MSRPC Information Disclosure Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers."
}
]
},
@ -221,6 +222,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8407",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8407"
}
]

7
2018/8xxx/CVE-2018-8408.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8408"
"ID" : "CVE-2018-8408",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -183,7 +184,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory, aka \"Windows Kernel Information Disclosure Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. "
"value" : "An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory, aka \"Windows Kernel Information Disclosure Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers."
}
]
},
@ -202,6 +203,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8408",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8408"
}
]

7
2018/8xxx/CVE-2018-8415.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8415"
"ID" : "CVE-2018-8415",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -190,7 +191,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A tampering vulnerability exists in PowerShell that could allow an attacker to execute unlogged code, aka \"Microsoft PowerShell Tampering Vulnerability.\" This affects Windows 7, PowerShell Core 6.1, Windows Server 2012 R2, Windows RT 8.1, PowerShell Core 6.0, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. "
"value" : "A tampering vulnerability exists in PowerShell that could allow an attacker to execute unlogged code, aka \"Microsoft PowerShell Tampering Vulnerability.\" This affects Windows 7, PowerShell Core 6.1, Windows Server 2012 R2, Windows RT 8.1, PowerShell Core 6.0, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers."
}
]
},
@ -209,6 +210,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8415",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8415"
}
]

7
2018/8xxx/CVE-2018-8416.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8416"
"ID" : "CVE-2018-8416",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -33,7 +34,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A tampering vulnerability exists when .NET Core improperly handles specially crafted files, aka \".NET Core Tampering Vulnerability.\" This affects .NET Core 2.1. "
"value" : "A tampering vulnerability exists when .NET Core improperly handles specially crafted files, aka \".NET Core Tampering Vulnerability.\" This affects .NET Core 2.1."
}
]
},
@ -52,6 +53,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8416",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8416"
}
]

7
2018/8xxx/CVE-2018-8417.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8417"
"ID" : "CVE-2018-8417",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -108,7 +109,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A security feature bypass vulnerability exists in Microsoft JScript that could allow an attacker to bypass Device Guard, aka \"Microsoft JScript Security Feature Bypass Vulnerability.\" This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers. "
"value" : "A security feature bypass vulnerability exists in Microsoft JScript that could allow an attacker to bypass Device Guard, aka \"Microsoft JScript Security Feature Bypass Vulnerability.\" This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers."
}
]
},
@ -127,6 +128,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8417",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8417"
}
]

7
2018/8xxx/CVE-2018-8450.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8450"
"ID" : "CVE-2018-8450",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -168,7 +169,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists when Windows Search handles objects in memory, aka \"Windows Search Remote Code Execution Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. "
"value" : "A remote code execution vulnerability exists when Windows Search handles objects in memory, aka \"Windows Search Remote Code Execution Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers."
}
]
},
@ -187,6 +188,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8450",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8450"
}
]

7
2018/8xxx/CVE-2018-8454.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8454"
"ID" : "CVE-2018-8454",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -80,7 +81,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when Windows Audio Service fails to properly handle objects in memory, aka \"Windows Audio Service Information Disclosure Vulnerability.\" This affects Windows 10 Servers, Windows 10, Windows Server 2019. "
"value" : "An information disclosure vulnerability exists when Windows Audio Service fails to properly handle objects in memory, aka \"Windows Audio Service Information Disclosure Vulnerability.\" This affects Windows 10 Servers, Windows 10, Windows Server 2019."
}
]
},
@ -99,6 +100,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8454",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8454"
}
]

7
2018/8xxx/CVE-2018-8471.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8471"
"ID" : "CVE-2018-8471",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -112,7 +113,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An elevation of privilege vulnerability exists in the way that the Microsoft RemoteFX Virtual GPU miniport driver handles objects in memory, aka \"Microsoft RemoteFX Virtual GPU miniport driver Elevation of Privilege Vulnerability.\" This affects Windows Server 2016, Windows 10, Windows 8.1, Windows 7, Windows Server 2019. "
"value" : "An elevation of privilege vulnerability exists in the way that the Microsoft RemoteFX Virtual GPU miniport driver handles objects in memory, aka \"Microsoft RemoteFX Virtual GPU miniport driver Elevation of Privilege Vulnerability.\" This affects Windows Server 2016, Windows 10, Windows 8.1, Windows 7, Windows Server 2019."
}
]
},
@ -131,6 +132,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8471",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8471"
}
]

7
2018/8xxx/CVE-2018-8476.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8476"
"ID" : "CVE-2018-8476",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -111,7 +112,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists in the way that Windows Deployment Services TFTP Server handles objects in memory, aka \"Windows Deployment Services TFTP Server Remote Code Execution Vulnerability.\" This affects Windows Server 2012 R2, Windows Server 2008, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows Server 2008 R2, Windows 10 Servers. "
"value" : "A remote code execution vulnerability exists in the way that Windows Deployment Services TFTP Server handles objects in memory, aka \"Windows Deployment Services TFTP Server Remote Code Execution Vulnerability.\" This affects Windows Server 2012 R2, Windows Server 2008, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows Server 2008 R2, Windows 10 Servers."
}
]
},
@ -130,6 +131,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8476",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8476"
}
]

5
2018/8xxx/CVE-2018-8485.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8485"
"ID" : "CVE-2018-8485",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -170,6 +171,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8485",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8485"
}
]

5
2018/8xxx/CVE-2018-8522.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8522"
"ID" : "CVE-2018-8522",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -96,6 +97,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8522",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8522"
}
]

5
2018/8xxx/CVE-2018-8524.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8524"
"ID" : "CVE-2018-8524",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -96,6 +97,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8524",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8524"
}
]

5
2018/8xxx/CVE-2018-8539.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8539"
"ID" : "CVE-2018-8539",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -68,6 +69,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8539",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8539"
}
]

5
2018/8xxx/CVE-2018-8541.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8541"
"ID" : "CVE-2018-8541",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -80,6 +81,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8541",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8541"
}
]

5
2018/8xxx/CVE-2018-8542.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8542"
"ID" : "CVE-2018-8542",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -110,6 +111,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8542",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8542"
}
]

5
2018/8xxx/CVE-2018-8543.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8543"
"ID" : "CVE-2018-8543",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -110,6 +111,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8543",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8543"
}
]

7
2018/8xxx/CVE-2018-8544.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8544"
"ID" : "CVE-2018-8544",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -202,7 +203,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka \"Windows VBScript Engine Remote Code Execution Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. "
"value" : "A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka \"Windows VBScript Engine Remote Code Execution Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers."
}
]
},
@ -221,6 +222,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8544",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8544"
}
]

7
2018/8xxx/CVE-2018-8545.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8545"
"ID" : "CVE-2018-8545",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -51,7 +52,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists in the way that Microsoft Edge handles cross-origin requests, aka \"Microsoft Edge Information Disclosure Vulnerability.\" This affects Microsoft Edge. "
"value" : "An information disclosure vulnerability exists in the way that Microsoft Edge handles cross-origin requests, aka \"Microsoft Edge Information Disclosure Vulnerability.\" This affects Microsoft Edge."
}
]
},
@ -70,6 +71,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8545",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8545"
}
]

7
2018/8xxx/CVE-2018-8546.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8546"
"ID" : "CVE-2018-8546",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -87,7 +88,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A denial of service vulnerability exists in Skype for Business, aka \"Microsoft Skype for Business Denial of Service Vulnerability.\" This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype. "
"value" : "A denial of service vulnerability exists in Skype for Business, aka \"Microsoft Skype for Business Denial of Service Vulnerability.\" This affects Office 365 ProPlus, Microsoft Office, Microsoft Lync, Skype."
}
]
},
@ -106,6 +107,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8546",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8546"
}
]

7
2018/8xxx/CVE-2018-8547.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8547"
"ID" : "CVE-2018-8547",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -126,7 +127,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A cross-site-scripting (XSS) vulnerability exists when an open source customization for Microsoft Active Directory Federation Services (AD FS) does not properly sanitize a specially crafted web request to an affected AD FS server, aka \"Active Directory Federation Services XSS Vulnerability.\" This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. "
"value" : "A cross-site-scripting (XSS) vulnerability exists when an open source customization for Microsoft Active Directory Federation Services (AD FS) does not properly sanitize a specially crafted web request to an affected AD FS server, aka \"Active Directory Federation Services XSS Vulnerability.\" This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers."
}
]
},
@ -145,6 +146,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8547",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8547"
}
]

7
2018/8xxx/CVE-2018-8549.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8549"
"ID" : "CVE-2018-8549",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -151,7 +152,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka \"Windows Security Feature Bypass Vulnerability.\" This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. "
"value" : "A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka \"Windows Security Feature Bypass Vulnerability.\" This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers."
}
]
},
@ -170,6 +171,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8549",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8549"
}
]

7
2018/8xxx/CVE-2018-8550.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8550"
"ID" : "CVE-2018-8550",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -202,7 +203,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An elevation of privilege exists in Windows COM Aggregate Marshaler, aka \"Windows COM Elevation of Privilege Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. "
"value" : "An elevation of privilege exists in Windows COM Aggregate Marshaler, aka \"Windows COM Elevation of Privilege Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers."
}
]
},
@ -221,6 +222,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8550",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8550"
}
]

5
2018/8xxx/CVE-2018-8551.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8551"
"ID" : "CVE-2018-8551",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -95,6 +96,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8551",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8551"
}
]

7
2018/8xxx/CVE-2018-8552.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8552"
"ID" : "CVE-2018-8552",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -125,7 +126,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when VBScript improperly discloses the contents of its memory, which could provide an attacker with information to further compromise the users computer or data, aka \"Windows Scripting Engine Memory Corruption Vulnerability.\" This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. "
"value" : "An information disclosure vulnerability exists when VBScript improperly discloses the contents of its memory, which could provide an attacker with information to further compromise the user's computer or data, aka \"Windows Scripting Engine Memory Corruption Vulnerability.\" This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10."
}
]
},
@ -144,6 +145,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8552",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8552"
}
]

7
2018/8xxx/CVE-2018-8553.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8553"
"ID" : "CVE-2018-8553",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -146,7 +147,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka \"Microsoft Graphics Components Remote Code Execution Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10. "
"value" : "A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka \"Microsoft Graphics Components Remote Code Execution Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10."
}
]
},
@ -165,6 +166,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8553",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8553"
}
]

5
2018/8xxx/CVE-2018-8554.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8554"
"ID" : "CVE-2018-8554",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -81,6 +82,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8554",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8554"
}
]

5
2018/8xxx/CVE-2018-8555.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8555"
"ID" : "CVE-2018-8555",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -110,6 +111,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8555",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8555"
}
]

5
2018/8xxx/CVE-2018-8556.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8556"
"ID" : "CVE-2018-8556",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -110,6 +111,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8556",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8556"
}
]

5
2018/8xxx/CVE-2018-8557.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8557"
"ID" : "CVE-2018-8557",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -110,6 +111,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8557",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8557"
}
]

7
2018/8xxx/CVE-2018-8558.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8558"
"ID" : "CVE-2018-8558",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -49,7 +50,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when Microsoft Outlook fails to respect "Default link type" settings configured via the SharePoint Online Admin Center, aka \"Microsoft Outlook Information Disclosure Vulnerability.\" This affects Office 365 ProPlus, Microsoft Office. This CVE ID is unique from CVE-2018-8579."
"value" : "An information disclosure vulnerability exists when Microsoft Outlook fails to respect \"Default link type\" settings configured via the SharePoint Online Admin Center, aka \"Microsoft Outlook Information Disclosure Vulnerability.\" This affects Office 365 ProPlus, Microsoft Office. This CVE ID is unique from CVE-2018-8579."
}
]
},
@ -68,6 +69,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8558",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8558"
}
]

5
2018/8xxx/CVE-2018-8561.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8561"
"ID" : "CVE-2018-8561",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -170,6 +171,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8561",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8561"
}
]

7
2018/8xxx/CVE-2018-8562.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8562"
"ID" : "CVE-2018-8562",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -202,7 +203,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka \"Win32k Elevation of Privilege Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. "
"value" : "An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka \"Win32k Elevation of Privilege Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers."
}
]
},
@ -221,6 +222,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8562",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8562"
}
]

7
2018/8xxx/CVE-2018-8563.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8563"
"ID" : "CVE-2018-8563",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -95,7 +96,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka \"DirectX Information Disclosure Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2008 R2. "
"value" : "An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka \"DirectX Information Disclosure Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2008 R2."
}
]
},
@ -114,6 +115,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8563",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8563"
}
]

7
2018/8xxx/CVE-2018-8564.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8564"
"ID" : "CVE-2018-8564",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -81,7 +82,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A spoofing vulnerability exists when Microsoft Edge improperly handles specific HTML content, aka \"Microsoft Edge Spoofing Vulnerability.\" This affects Microsoft Edge. "
"value" : "A spoofing vulnerability exists when Microsoft Edge improperly handles specific HTML content, aka \"Microsoft Edge Spoofing Vulnerability.\" This affects Microsoft Edge."
}
]
},
@ -100,6 +101,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8564",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8564"
}
]

7
2018/8xxx/CVE-2018-8565.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8565"
"ID" : "CVE-2018-8565",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -171,7 +172,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka \"Win32k Information Disclosure Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. "
"value" : "An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka \"Win32k Information Disclosure Vulnerability.\" This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers."
}
]
},
@ -190,6 +191,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8565",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8565"
}
]

7
2018/8xxx/CVE-2018-8566.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8566"
"ID" : "CVE-2018-8566",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -102,7 +103,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A security feature bypass vulnerability exists when Windows improperly suspends BitLocker Device Encryption, aka \"BitLocker Security Feature Bypass Vulnerability.\" This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers. "
"value" : "A security feature bypass vulnerability exists when Windows improperly suspends BitLocker Device Encryption, aka \"BitLocker Security Feature Bypass Vulnerability.\" This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers."
}
]
},
@ -121,6 +122,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8566",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8566"
}
]

7
2018/8xxx/CVE-2018-8567.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8567"
"ID" : "CVE-2018-8567",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -60,7 +61,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain, aka \"Microsoft Edge Elevation of Privilege Vulnerability.\" This affects Microsoft Edge. "
"value" : "An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain, aka \"Microsoft Edge Elevation of Privilege Vulnerability.\" This affects Microsoft Edge."
}
]
},
@ -79,6 +80,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8567",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8567"
}
]

5
2018/8xxx/CVE-2018-8568.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8568"
"ID" : "CVE-2018-8568",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -65,6 +66,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8568",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8568"
}
]

7
2018/8xxx/CVE-2018-8570.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8570"
"ID" : "CVE-2018-8570",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -39,7 +40,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka \"Internet Explorer Memory Corruption Vulnerability.\" This affects Internet Explorer 11. "
"value" : "A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka \"Internet Explorer Memory Corruption Vulnerability.\" This affects Internet Explorer 11."
}
]
},
@ -58,6 +59,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8570",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8570"
}
]

5
2018/8xxx/CVE-2018-8572.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8572"
"ID" : "CVE-2018-8572",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -65,6 +66,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8572",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8572"
}
]

5
2018/8xxx/CVE-2018-8573.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8573"
"ID" : "CVE-2018-8573",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -102,6 +103,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8573",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8573"
}
]

5
2018/8xxx/CVE-2018-8574.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8574"
"ID" : "CVE-2018-8574",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -87,6 +88,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8574",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8574"
}
]

7
2018/8xxx/CVE-2018-8575.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8575"
"ID" : "CVE-2018-8575",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -68,7 +69,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists in Microsoft Project software when it fails to properly handle objects in memory, aka \"Microsoft Project Remote Code Execution Vulnerability.\" This affects Microsoft Project, Office 365 ProPlus, Microsoft Project Server. "
"value" : "A remote code execution vulnerability exists in Microsoft Project software when it fails to properly handle objects in memory, aka \"Microsoft Project Remote Code Execution Vulnerability.\" This affects Microsoft Project, Office 365 ProPlus, Microsoft Project Server."
}
]
},
@ -87,6 +88,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8575",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8575"
}
]

5
2018/8xxx/CVE-2018-8576.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8576"
"ID" : "CVE-2018-8576",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -96,6 +97,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8576",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8576"
}
]

5
2018/8xxx/CVE-2018-8577.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8577"
"ID" : "CVE-2018-8577",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -149,6 +150,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8577",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8577"
}
]

7
2018/8xxx/CVE-2018-8578.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8578"
"ID" : "CVE-2018-8578",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -33,7 +34,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when rendering specific web pages, aka \"Microsoft SharePoint Information Disclosure Vulnerability.\" This affects Microsoft SharePoint. "
"value" : "An information disclosure vulnerability exists when Microsoft SharePoint Server improperly discloses its folder structure when rendering specific web pages, aka \"Microsoft SharePoint Information Disclosure Vulnerability.\" This affects Microsoft SharePoint."
}
]
},
@ -52,6 +53,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8578",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8578"
}
]

5
2018/8xxx/CVE-2018-8579.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8579"
"ID" : "CVE-2018-8579",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -68,6 +69,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8579",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8579"
}
]

7
2018/8xxx/CVE-2018-8581.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8581"
"ID" : "CVE-2018-8581",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -42,7 +43,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka \"Microsoft Exchange Server Elevation of Privilege Vulnerability.\" This affects Microsoft Exchange Server. "
"value" : "An elevation of privilege vulnerability exists in Microsoft Exchange Server, aka \"Microsoft Exchange Server Elevation of Privilege Vulnerability.\" This affects Microsoft Exchange Server."
}
]
},
@ -61,6 +62,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8581",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8581"
}
]

5
2018/8xxx/CVE-2018-8582.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8582"
"ID" : "CVE-2018-8582",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -96,6 +97,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582"
}
]

7
2018/8xxx/CVE-2018-8584.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8584"
"ID" : "CVE-2018-8584",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -108,7 +109,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka \"Windows ALPC Elevation of Privilege Vulnerability.\" This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers. "
"value" : "An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka \"Windows ALPC Elevation of Privilege Vulnerability.\" This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers."
}
]
},
@ -127,6 +128,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8584",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8584"
}
]

5
2018/8xxx/CVE-2018-8588.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8588"
"ID" : "CVE-2018-8588",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -110,6 +111,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8588",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8588"
}
]

7
2018/8xxx/CVE-2018-8589.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8589"
"ID" : "CVE-2018-8589",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -74,7 +75,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An elevation of privilege vulnerability exists when Windows improperly handles calls to Win32k.sys, aka \"Windows Win32k Elevation of Privilege Vulnerability.\" This affects Windows Server 2008, Windows 7, Windows Server 2008 R2. "
"value" : "An elevation of privilege vulnerability exists when Windows improperly handles calls to Win32k.sys, aka \"Windows Win32k Elevation of Privilege Vulnerability.\" This affects Windows Server 2008, Windows 7, Windows Server 2008 R2."
}
]
},
@ -93,6 +94,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8589",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8589"
}
]

7
2018/8xxx/CVE-2018-8592.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8592"
"ID" : "CVE-2018-8592",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -49,7 +50,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "An elevation of privilege vulnerability exists in Windows 10 version 1809 when installed from physical media (USB, DVD, etc, aka \"Windows Elevation Of Privilege Vulnerability.\" This affects Windows 10, Windows Server 2019. "
"value" : "An elevation of privilege vulnerability exists in Windows 10 version 1809 when installed from physical media (USB, DVD, etc, aka \"Windows Elevation Of Privilege Vulnerability.\" This affects Windows 10, Windows Server 2019."
}
]
},
@ -68,6 +69,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8592",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8592"
}
]

7
2018/8xxx/CVE-2018-8600.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8600"
"ID" : "CVE-2018-8600",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -33,7 +34,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A Cross-site Scripting (XSS) vulnerability exists when Azure App Services on Azure Stack does not properly sanitize user provided input, aka \"Azure App Service Cross-site Scripting Vulnerability.\" This affects Azure App. "
"value" : "A Cross-site Scripting (XSS) vulnerability exists when Azure App Services on Azure Stack does not properly sanitize user provided input, aka \"Azure App Service Cross-site Scripting Vulnerability.\" This affects Azure App."
}
]
},
@ -52,6 +53,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8600",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8600"
}
]

7
2018/8xxx/CVE-2018-8602.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8602"
"ID" : "CVE-2018-8602",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -42,7 +43,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka \"Team Foundation Server Cross-site Scripting Vulnerability.\" This affects Team. "
"value" : "A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka \"Team Foundation Server Cross-site Scripting Vulnerability.\" This affects Team."
}
]
},
@ -61,6 +62,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8602",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8602"
}
]

5
2018/8xxx/CVE-2018-8605.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8605"
"ID" : "CVE-2018-8605",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -52,6 +53,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8605",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8605"
}
]

5
2018/8xxx/CVE-2018-8606.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8606"
"ID" : "CVE-2018-8606",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -52,6 +53,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8606",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8606"
}
]

5
2018/8xxx/CVE-2018-8607.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8607"
"ID" : "CVE-2018-8607",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -52,6 +53,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8607",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8607"
}
]

5
2018/8xxx/CVE-2018-8608.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8608"
"ID" : "CVE-2018-8608",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -52,6 +53,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8608",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8608"
}
]

7
2018/8xxx/CVE-2018-8609.json
View File

@ -1,7 +1,8 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "Secure@Microsoft.com",
"ID" : "CVE-2018-8609"
"ID" : "CVE-2018-8609",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
@ -33,7 +34,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) version 8 when the server fails to properly sanitize web requests to an affected Dynamics server, aka \"Microsoft Dynamics 365 (on-premises) version 8 Remote Code Execution Vulnerability.\" This affects Microsoft Dynamics 365. "
"value" : "A remote code execution vulnerability exists in Microsoft Dynamics 365 (on-premises) version 8 when the server fails to properly sanitize web requests to an affected Dynamics server, aka \"Microsoft Dynamics 365 (on-premises) version 8 Remote Code Execution Vulnerability.\" This affects Microsoft Dynamics 365."
}
]
},
@ -52,6 +53,8 @@
"references" : {
"reference_data" : [
{
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8609",
"refsource" : "CONFIRM",
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8609"
}
]