Denial of Service Vulnerability in Microsoft Hyper-V Network Switch on Windows Platforms
CVE-2017-0183

5.8MEDIUM

Key Information:

Vendor: Microsoft
Status: Hyper-v
Vendor: CVE Published:; 12 April 2017

Summary

A vulnerability has been identified in the Microsoft Hyper-V Network Switch that can allow a privileged user on a guest operating system to trigger a denial of service. This issue arises due to the switch's failure to properly validate input, potentially leading to service disruptions. Users running affected versions on their Windows platforms are advised to apply necessary patches to mitigate this security risk.

Affected Version(s)

Hyper-V Windows 10, Windows Server 2008 R2, Windows 8.1, Windows Server 2012 R2, and Windows Server 2016

References

http://www.securityfocus.com/bid/97428

vdb-entryx_refsource_BID

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Apr 12, 2017
Vulnerability Reserved
Sep 9, 2016