NVD - CVE-2018-8355

Vulnerability Change Records for CVE-2018-8355

Change History

Initial Analysis by NIST 10/18/2018 11:23:46 AM

Action	Type	Old Value	New Value
Added	CPE Configuration		AND OR cpe:2.3:a:microsoft:edge:-::::::: OR cpe:2.3:o:microsoft:windows_10:::::::: cpe:2.3:o:microsoft:windows_10:1607:::::::* cpe:2.3:o:microsoft:windows_10:1703:::::::* cpe:2.3:o:microsoft:windows_10:1709:::::::* cpe:2.3:o:microsoft:windows_10:1803:::::::*
Added	CPE Configuration		AND OR cpe:2.3:a:microsoft:internet_explorer:11::::::: OR cpe:2.3:o:microsoft:windows_10:-:::::::* cpe:2.3:o:microsoft:windows_10:1607:::::::* cpe:2.3:o:microsoft:windows_10:1703:::::::* cpe:2.3:o:microsoft:windows_10:1709:::::::* cpe:2.3:o:microsoft:windows_10:1803:::::::* cpe:2.3:o:microsoft:windows_7::sp1::::::* cpe:2.3:o:microsoft:windows_8.1:::::::: cpe:2.3:o:microsoft:windows_rt_8.1:::::::: cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:::::: cpe:2.3:o:microsoft:windows_server_2012:r2:::::::* cpe:2.3:o:microsoft:windows_server_2016:-:::::::*
Added	CPE Configuration		OR cpe:2.3:a:microsoft:chakracore:-:::::::
Added	CVSS V2		(AV:N/AC:H/Au:N/C:C/I:C/A:C)
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism
Added	CVSS V3		AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Added	CWE		CWE-119
Changed	Reference Type	http://www.securityfocus.com/bid/104978 No Types Assigned	http://www.securityfocus.com/bid/104978 Third Party Advisory, VDB Entry
Changed	Reference Type	http://www.securitytracker.com/id/1041457 No Types Assigned	http://www.securitytracker.com/id/1041457 Third Party Advisory, VDB Entry
Changed	Reference Type	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8355 No Types Assigned	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8355 Patch, Vendor Advisory
Changed	Reference Type	https://www.exploit-db.com/exploits/45432/ No Types Assigned	https://www.exploit-db.com/exploits/45432/ Exploit, Third Party Advisory, VDB Entry