Windows System Information Console Information Disclosure Vulnerability for the msinfo.exe information disclosure vulnerability in Windows Server 2008 (KB4025398)
Risk Information
Base Score
5.4
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
1.506%
CVE Information
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
22742
Patch Description
Security Update for Windows Server 2008 (KB4025398)
References
http://www.securityfocus.com/bid/99387
http://www.securityfocus.com/bid/99398
http://www.securitytracker.com/id/1038855
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8557