CVE-2018-8209 Information

Description

An information disclosure vulnerability exists when Windows allows a normal user to access the Wireless LAN profile of an administrative user aka \Windows Wireless Network Profile Information Disclosure Vulnerability.\ This affects Windows Server 2016 Windows 10 Windows 10 Servers.

CVSS Vector

CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reference

http://www.securityfocus.com/bid/104393 http://www.securitytracker.com/id/1041101 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8209

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

8.0