CVE-2018-0904 — Vulnetix

Try Vulnetix Request Demo

CVE-2018-0904 PUBLISHED CVSS 4.699999809265137 MEDIUM

The Windows kernel in Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows information disclosure vulnerability due to how memory addresses are handled, aka "Windows Kernel Information Disclosure Vulnerability".

EPSS 3.55% · 87.6th percentile

Risk Scores

CVSS v3.0

4.699999809265137

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS Score

3.55%

87.6th percentile

Affected Products

Vendor	Product	Versions
microsoft	windows_server_2016
microsoft	windows_server	1709
microsoft	windows_server_2008	r2
microsoft	windows_server_2012	r2
Microsoft Corporation	Windows kernel	Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709
microsoft	windows_10	1709, 1703, 1607
microsoft	windows_8.1
microsoft	windows_7
microsoft	windows_rt_8.1

Timeline

Mar 14, 2018 CVE Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Aug 23, 2021 EPSS Score
Dec 25, 2021 EPSS Score
Feb 4, 2022 EPSS Score
Feb 25, 2022 EPSS Score
Apr 28, 2022 EPSS Score
Jun 29, 2022 EPSS Score
Aug 31, 2022 EPSS Score
Jan 2, 2023 EPSS Score
Mar 5, 2023 EPSS Score

References

Open in Interactive Console →