CVE-2018-8174

CVSS 3.0 Score 7.5 of 10 (high)

Details

Published May 9, 2018
Updated: Aug 24, 2020
CWE ID 787

Summary

CVE-2018-8174 is a remote code execution vulnerability affecting multiple Microsoft Windows operating systems. The issue lies in the way the VBScript engine manages objects in memory, making it possible for attackers to execute malicious code. Affected systems include Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, and Windows 10 Servers. Successful exploitation could lead to significant security risks. Users are encouraged to apply relevant patches as soon as possible to mitigate exposure.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows Server 2008
  • Microsoft Windows 7
  • Microsoft Windows 10
  • Microsoft Windows 8.1
  • Microsoft Windows Server 2012

Affected Vendors

  • Microsoft

Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future

Note: This is just a basic overview providing quick insights into CVE-2018-8174 information. Gain full access to comprehensive CVE data, third party vulnerabilities, compromised credentials and more with Recorded Future
  • Gain complete coverage of your cyber, third party, and physical attack surface
  • Proactively mitigate threats before they turn into costly attacks
  • Make fast, effective, data-driven decisions