Home

CVE-2016-3201

Description

Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 Gold and 1511, and Microsoft Edge allow remote attackers to obtain sensitive information from process memory via a crafted PDF document, aka Windows PDF Information Disclosure Vulnerability, a different vulnerability than CVE-2016-3215.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
30.556

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Edge Security Feature Bypass Vulnerability for Windows 10 Version 1511 for x64-based Systems (KB3163018) - CumulativeWindows
Microsoft Edge Security Feature Bypass Vulnerability for Windows 10 Version 1511 (KB3163018) - CumulativeWindows
Microsoft Edge Security Feature Bypass Vulnerability for Windows 10 for x64-based Systems (KB3163017) - CumulativeWindows
Windows PDF Information Disclosure Vulnerability for Windows Server 2012 (KB3157569)Windows
Windows PDF Information Disclosure Vulnerability for Windows Server 2012 R2 (KB3157569)Windows
Windows PDF Information Disclosure Vulnerability for Windows 8.1 for x64-based Systems (KB3157569)Windows
Windows PDF Information Disclosure Vulnerability for Windows 8.1 (KB3157569)Windows
Windows Graphics Component Information Disclosure Vulnerability for Windows 10 (KB3163017)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-20782Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB3163018)
PATCH-20781Cumulative Update for Windows 10 Version 1511 (KB3163018)
PATCH-20780Cumulative Update for Windows 10 for x64-based Systems (KB3163017)
PATCH-20998Security Update for Windows Server 2012 (KB3157569)
PATCH-21000Security Update for Windows Server 2012 R2 (KB3157569)
PATCH-20999Security Update for Windows 8.1 for x64-based Systems (KB3157569)
PATCH-20997Security Update for Windows 8.1 (KB3157569)
PATCH-20779Cumulative Update for Windows 10 (KB3163017)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234