CVE-2018-8343
Published: Aug 15, 2018
Modified: Aug 5, 2024
Description
An elevation of privilege vulnerability exists in the Network Driver Interface Specification (NDIS) when ndis.sys fails to check the length of a buffer prior to copying memory to it, aka "Windows NDIS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8342.
| Vendor | Product | Versions |
|---|---|---|
Microsoft | Windows 7 | affected 32-bit Systems Service Pack 1affected x64-based Systems Service Pack 1 |
Microsoft | Windows Server 2012 R2 | affected (Server Core installation) |
Microsoft | Windows RT 8.1 | affected Windows RT 8.1 |
Microsoft | Windows Server 2012 | affected (Server Core installation) |
Microsoft | Windows 8.1 | affected 32-bit systemsaffected x64-based systems |
Microsoft | Windows Server 2016 | affected (Server Core installation) |
Microsoft | Windows Server 2008 R2 | affected Itanium-Based Systems Service Pack 1affected x64-based Systems Service Pack 1affected x64-based Systems Service Pack 1 (Server Core installation) |
Microsoft | Windows 10 | affected 32-bit Systemsaffected Version 1607 for 32-bit Systemsaffected Version 1607 for x64-based Systemsaffected Version 1703 for 32-bit Systemsaffected Version 1703 for x64-based Systems+5 more versions |
Microsoft | Windows 10 Servers | affected version 1709 (Server Core Installation)affected version 1803 (Server Core Installation) |
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now