Home

CVE-2018-0964

Description

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka Hyper-V Information Disclosure Vulnerability. This affects Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0957.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
1.601

Associated Vulnerability

VulnerabilityOS Platform
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4093107) - CumulativeWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4093107) - DeltaWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4093107) - CumulativeWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4093107) - DeltaWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1709 for x64-based Systems (KB4093112) - CumulativeWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1709 for x64-based Systems (KB4093112) - DeltaWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1709 for x86-based Systems (KB4093112) - CumulativeWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1709 for x86-based Systems (KB4093112) - DeltaWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4093107) - CumulativeWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4093107) - CumulativeWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4093107) - DeltaWindows
Scripting Engine Information Disclosure Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4093107) - DeltaWindows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-243122018-04 Cumulative Update for Windows 10 Version 1709 for x64-based Systems (KB4093112)
PATCH-243112018-04 Delta Update for Windows 10 Version 1709 for x64-based Systems (KB4093112)
PATCH-243092018-04 Cumulative Update for Windows 10 Version 1709 for x86-based Systems (KB4093112)
PATCH-243102018-04 Delta Update for Windows 10 Version 1709 for x86-based Systems (KB4093112)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234