CVE-2017-11818

MEDIUM Year: 2017
CVSS v3 Score
4.5
Medium
CVSS v2 Score
4.4
Medium
Weakness Type
CWE-254
View all →

Vulnerability Description

The Microsoft Windows Storage component on Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a security feature bypass vulnerability when it fails to validate an integrity-level check, aka "Windows Storage Security Feature Bypass Vulnerability".

Related Vulnerabilities

CVE-2016-10894

MEDIUM
CVSS:4.6(Medium)

xtrlock through 2.10 does not block multitouch events. Consequently, an attacker at a locked screen can send input to (and thus control) various programs such as Chromium via events such as pan scroll...

CWE-2542016

CVE-2016-3287

MEDIUM
CVSS:4.4(Medium)

Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to bypass the Secure Boot protection mechanism by leveraging administrative acce...

CWE-2542016

CVE-2016-4412

MEDIUM
CVSS:4.4(Medium)

An issue was discovered in phpMyAdmin. A user can be tricked into following a link leading to phpMyAdmin, which after authentication redirects to another malicious site. The attacker must sniff the us...

CWE-2542016

CVE-2016-5933

MEDIUM
CVSS:4.6(Medium)

IBM Tivoli Monitoring 6.2 and 6.3 is vulnerable to possible host header injection attack that could lead to HTTP cache poisoning or firewall bypass. IBM Reference #: 1997223.

CWE-2542016

CVE-2016-7597

MEDIUM
CVSS:4.6(Medium)

An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "SpringBoard" component, which allows physically proximate attackers to maintain the unlocked sta...

CWE-2542016

CVE-2016-7638

MEDIUM
CVSS:4.6(Medium)

An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Find My iPhone" component, which allows physically proximate attackers to disable this component...

CWE-2542016