The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
The Windows Adobe Type Manager Font Driver (Atmfd.dll) in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, and Windows Server 2012 and R2 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "OpenType Font Driver Elevation of Privilege Vulnerability".
Base Score: 6.9
Impact Score: 10
Exploitability Score: 3.4
Base Score: 7
Impact Score: 5.9
Exploitability Score: 1
|105554||KB4056899: Windows Server 2012 January 2018 Security Update||Nessus||Windows : Microsoft Bulletins|
|105553||KB4056898: Windows 8.1 and Windows Server 2012 R2 January 2018 Security Update (Meltdown)(Spectre)||Nessus||Windows : Microsoft Bulletins|
|105552||KB4056897: Windows 7 and Windows Server 2008 R2 January 2018 Security Update (Meltdown)(Spectre)||Nessus||Windows : Microsoft Bulletins|