CVE-2018-8387: Detailed Vulnerability Analysis and Overview

CVE-2018-8387 Vulnerability Summary

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-8377.

Need help fixing CVEs? Check out our Step-by-Step Guide on How to Fix CVEs.

CVE-2018-8387: Detailed Information and External References

EPSS

0.02663

EPSS %

0.90102

References

0.02663

• http://www.securityfocus.com/bid/105021
• https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8387
• http://www.securityfocus.com/bid/105021
• https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8387

CWE

CWE-787

Vulnerable Configurations

• cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*
  cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*
• cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*
  cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*

CVSS3 Source

nvd@nist.gov

CVSS3 Type

Primary

CVSS3 Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H