CVE-2017-11818

MEDIUM

Description

The Microsoft Windows Storage component on Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a security feature bypass vulnerability when it fails to validate an integrity-level check, aka "Windows Storage Security Feature Bypass Vulnerability".

References

http://www.securityfocus.com/bid/101101

http://www.securitytracker.com/id/1039526

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11818

Details

Source: MITRE

Published: 2017-10-13

Updated: 2019-05-16

Type: CWE-254

Risk Information

CVSS v2.0

Base Score: 4.4

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 3.4

Severity: MEDIUM

CVSS v3.0

Base Score: 4.5

Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

Impact Score: 3.4

Exploitability Score: 1

Severity: MEDIUM