CVE-2018-8306

5.5MEDIUM

Key Information:

Vendor: Microsoft
Status: Microsoft Wireless Display Adapter V2 Software
Vendor: CVE Published:; 11 July 2018

Summary

A command injection vulnerability exists in the Microsoft Wireless Display Adapter (MWDA) when the Microsoft Wireless Display Adapter does not properly manage user input, aka "Microsoft Wireless Display Adapter Command Injection Vulnerability." This affects Microsoft Wireless Display Adapter V2 Software.

Affected Version(s)

Microsoft Wireless Display Adapter V2 Software Version 2.0.8350

Microsoft Wireless Display Adapter V2 Software Version 2.0.8365

Microsoft Wireless Display Adapter V2 Software Version 2.0.8372

References

http://www.securitytracker.com/id/1041269

vdb-entryx_refsource_SECTRACK

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/104621

vdb-entryx_refsource_BID

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 11, 2018
Vulnerability Reserved
Mar 14, 2018

.