CVE-2018-8495

EPSS 55.8%

Vexday Risk Score

15Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 55.8%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

10 Oct 2018Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

A remote code execution vulnerability exists when Windows Shell improperly handles URIs, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.

Affected products

Microsoft · Windows 10 Microsoft · Windows 10 Servers Microsoft · Windows Server 2016

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://leucosite.com/Microsoft-Edge-RCE/https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8495 http://www.securityfocus.com/bid/105461