CVE-2017-11782

7.8HIGH

Key Information:

Vendor: Microsoft
Status: Server Block Message (smb)
Vendor: CVE Published:; 13 October 2017

Summary

The Microsoft Server Block Message (SMB) on Microsoft Windows 10 1607 and Windows Server 2016, allows an elevation of privilege vulnerability when an attacker sends specially crafted requests to the server, aka "Windows SMB Elevation of Privilege Vulnerability".

Affected Version(s)

Server Block Message (SMB) Microsoft Windows 10 1607 and Windows Server 2016

References

http://www.securitytracker.com/id/1039528

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/101143

vdb-entryx_refsource_BID

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_CONFIRM

EPSS Score

0% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 13, 2017
Vulnerability Reserved
Jul 31, 2017

Collectors

NVD DatabaseMitre Database

.