CVE-2017-8460

MEDIUM

Description

Windows PDF in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows information disclosure when a user opens a specially crafted PDF file, aka "Windows PDF Information Disclosure Vulnerability".

References

http://www.securityfocus.com/bid/98887

http://www.securitytracker.com/id/1038678

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8460

Details

Source: MITRE

Published: 2017-06-15

Updated: 2019-10-03

Type: CWE-200

Risk Information

CVSS v2.0

Base Score: 4.4

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 3.4

Severity: MEDIUM

CVSS v3.0

Base Score: 7.3

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.3

Severity: HIGH