CVE-2018-0823
Description
The Named Pipe File System in Windows 10 version 1709 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Named Pipe File System handles objects, aka Named Pipe File System Elevation of Privilege Vulnerability.
Risk Information
Base Score
6.9
MODERATE
Vector
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
2.65
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Windows Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1709 for x64-based Systems - Meltdown and Spectre (KB4074588) - Cumulative | Windows |
| Windows Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1709 for x64-based Systems - Meltdown and Spectre (KB4074588) - Delta | Windows |
| Windows Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1709 for x86-based Systems - Meltdown and Spectre(KB4074588) - Cumulative | Windows |
| Windows Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1709 for x86-based Systems - Meltdown and Spectre (KB4074588) - Delta | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-23858 | 2018-02 Cumulative Update for Windows 10 Version 1709 for x64-based Systems - Meltdown and Spectre (KB4074588) |
| PATCH-23860 | 2018-02 Delta Update for Windows 10 Version 1709 for x64-based Systems - Meltdown and Spectre (KB4074588) |
| PATCH-23857 | 2018-02 Cumulative Update for Windows 10 Version 1709 for x86-based Systems - Meltdown and Spectre(KB4074588) |
| PATCH-23859 | 2018-02 Delta Update for Windows 10 Version 1709 for x86-based Systems - Meltdown and Spectre (KB4074588) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234