CVE-2018-8634
Description
A remote code execution vulnerability exists in Windows where Microsoft text-to-speech fails to properly handle objects in the memory, aka Microsoft Text-To-Speech Remote Code Execution Vulnerability. This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers.
Risk Information
Base Score
4.3
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
32.912
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4471327) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4471327) - Delta | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1703 for x86-based Systems (KB4471327) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1703 for x64-based Systems (KB4471327) - Delta | Windows |
| Windows GDI Information Disclosure Vulnerability for Windows 10 Version 1507 for x64-based Systems (KB4471323) - Cumulative | Windows |
| Windows GDI Information Disclosure Vulnerability for Windows 10 Version 1507 for x86-based Systems (KB4471323) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows Server 2016 (1803) for x64-based Systems (KB4471324) - Delta | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows Server 2016 (1803) for x64-based Systems (KB4471324) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1803 for x64-based Systems (KB4471324) - Delta | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1803 for x86-based Systems (KB4471324) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1803 for x64-based Systems (KB4471324) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1803 for x86-based Systems (KB4471324) - Delta | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1809 for x64-based Systems (KB4471332) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows Server 2019 for x64-based Systems (KB4471332) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1809 for x86-based Systems (KB4471332) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows Server 2016 (1709) for x64-based Systems (KB4471329) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1709 for x86-based Systems (KB4471329) - Delta | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1709 for x64-based Systems (KB4471329) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1709 for x64-based Systems (KB4471329) - Delta | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows Server 2016 (1709) for x64-based Systems (KB4471329) - Delta | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1709 for x86-based Systems (KB4471329) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows Server 2016 for x64-based Systems (KB4471321) - Delta | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows Server 2016 for x64-based Systems (KB4471321) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1607 for x64-based Systems (KB4471321) - Delta | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1607 for x64-based Systems (KB4471321) - Cumulative | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1607 for x86-based Systems (KB4471321) - Delta | Windows |
| Chakra Scripting Engine Memory Corruption Vulnerability for Windows 10 Version 1607 for x86-based Systems (KB4471321) - Cumulative | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-25734 | 2018-12 Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB4471323) |
| PATCH-25735 | 2018-12 Cumulative Update for Windows 10 Version 1507 for x86-based Systems (KB4471323) |
| PATCH-25788 | 2018-12 Delta Update for Windows Server 2016 (1803) for x64-based Systems (KB4471324) |
| PATCH-25789 | 2018-12 Cumulative Update for Windows Server 2016 (1803) for x64-based Systems (KB4471324) |
| PATCH-25790 | 2018-12 Delta Update for Windows 10 Version 1803 for x64-based Systems (KB4471324) |
| PATCH-25791 | 2018-12 Cumulative Update for Windows 10 Version 1803 for x86-based Systems (KB4471324) |
| PATCH-25792 | 2018-12 Cumulative Update for Windows 10 Version 1803 for x64-based Systems (KB4471324) |
| PATCH-25793 | 2018-12 Delta Update for Windows 10 Version 1803 for x86-based Systems (KB4471324) |
| PATCH-25794 | 2018-12 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB4471332) |
| PATCH-25795 | 2018-12 Cumulative Update for Windows Server 2019 for x64-based Systems (KB4471332) |
| PATCH-25796 | 2018-12 Cumulative Update for Windows 10 Version 1809 for x86-based Systems (KB4471332) |
| PATCH-25782 | 2018-12 Cumulative Update for Windows Server 2016 (1709) for x64-based Systems (KB4471329) |
| PATCH-25783 | 2018-12 Delta Update for Windows 10 Version 1709 for x86-based Systems (KB4471329) |
| PATCH-25784 | 2018-12 Cumulative Update for Windows 10 Version 1709 for x64-based Systems (KB4471329) |
| PATCH-25785 | 2018-12 Delta Update for Windows 10 Version 1709 for x64-based Systems (KB4471329) |
| PATCH-25786 | 2018-12 Delta Update for Windows Server 2016 (1709) for x64-based Systems (KB4471329) |
| PATCH-25787 | 2018-12 Cumulative Update for Windows 10 Version 1709 for x86-based Systems (KB4471329) |
| PATCH-25728 | 2018-12 Delta Update for Windows Server 2016 for x64-based Systems (KB4471321) |
| PATCH-25729 | 2018-12 Cumulative Update for Windows Server 2016 for x64-based Systems (KB4471321) |
| PATCH-25730 | 2018-12 Delta Update for Windows 10 Version 1607 for x64-based Systems (KB4471321) |
| PATCH-25731 | 2018-12 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB4471321) |
| PATCH-25732 | 2018-12 Delta Update for Windows 10 Version 1607 for x86-based Systems (KB4471321) |
| PATCH-25733 | 2018-12 Cumulative Update for Windows 10 Version 1607 for x86-based Systems (KB4471321) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234