Home

CVE-2016-3203

Description

Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows 10 Gold and 1511, and Microsoft Edge allow remote attackers to execute arbitrary code via a crafted PDF document, aka Windows PDF Remote Code Execution Vulnerability.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
49.159

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Edge Security Feature Bypass Vulnerability for Windows 10 Version 1511 for x64-based Systems (KB3163018) - CumulativeWindows
Microsoft Edge Security Feature Bypass Vulnerability for Windows 10 Version 1511 (KB3163018) - CumulativeWindows
Microsoft Edge Security Feature Bypass Vulnerability for Windows 10 for x64-based Systems (KB3163017) - CumulativeWindows
Windows PDF Information Disclosure Vulnerability for Windows Server 2012 (KB3157569)Windows
Windows PDF Information Disclosure Vulnerability for Windows Server 2012 R2 (KB3157569)Windows
Windows PDF Information Disclosure Vulnerability for Windows 8.1 for x64-based Systems (KB3157569)Windows
Windows PDF Information Disclosure Vulnerability for Windows 8.1 (KB3157569)Windows
Windows Graphics Component Information Disclosure Vulnerability for Windows 10 (KB3163017)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-20782Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB3163018)
PATCH-20781Cumulative Update for Windows 10 Version 1511 (KB3163018)
PATCH-20780Cumulative Update for Windows 10 for x64-based Systems (KB3163017)
PATCH-20998Security Update for Windows Server 2012 (KB3157569)
PATCH-21000Security Update for Windows Server 2012 R2 (KB3157569)
PATCH-20999Security Update for Windows 8.1 for x64-based Systems (KB3157569)
PATCH-20997Security Update for Windows 8.1 (KB3157569)
PATCH-20779Cumulative Update for Windows 10 (KB3163017)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234