CVE-2018-8174
CVSS 3.0 Score 7.5 of 10 (high)
Details
Summary
CVE-2018-8174 is a remote code execution vulnerability affecting multiple Microsoft Windows operating systems. The issue lies in the way the VBScript engine manages objects in memory, making it possible for attackers to execute malicious code. Affected systems include Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, and Windows 10 Servers. Successful exploitation could lead to significant security risks. Users are encouraged to apply relevant patches as soon as possible to mitigate exposure.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Microsoft Windows Server 2008
- Microsoft Windows 7
- Microsoft Windows 10
- Microsoft Windows 8.1
- Microsoft Windows Server 2012
Affected Vendors
- Microsoft