An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.
Microsoft has reserved CVE candidate CVE-2017-8554 ready for announcement, but an early indication for MSRC shows the following OS Versions affected:
Windows 10
Windows 8.1
Windows 7
Server 2016
Server 2012 R2
Server 2012
Server 2008 R2
Server 2008
This vulnerability has been rated CVSS 4.7 resulting in a Medium Risk
No comments:
Post a Comment