How severe is CVE-2018-0888?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.6 out of 10.

What type of vulnerability is CVE-2018-0888?

This is classified as CWE-20, which is a common weakness in software security.

CVE-2018-0888

MEDIUM Year: 2018

CVSS v3 Score

5.6

Medium

CVSS v2 Score

4.7

Medium

Weakness Type

CWE-20

View all →

Vulnerability Description

The Microsoft Hyper-V Network Switch in 64-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how guest operating system input is validated, aka "Hyper-V Information Disclosure Vulnerability".

CVE-2016-4825

MEDIUM

CVSS:5.6(Medium)

The Collne Welcart e-Commerce plugin before 1.8.3 for WordPress allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via crafted serialized data.

CWE-202016

CVE-2017-17565

MEDIUM

CVSS:5.6(Medium)

An issue was discovered in Xen through 4.9.x allowing PV guest OS users to cause a denial of service (host OS crash) if shadow mode and log-dirty mode are in place, because of an incorrect assertion r...

CWE-202017

CVE-2022-28193

MEDIUM

CVSS:5.6(Medium)

NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot module tegrabl_cbo.c, where insufficient validation of untrusted data may allow a local attacker with elevated privileges to ca...

CWE-202022

CVE-2008-7316

MEDIUM

CVSS:5.5(Medium)

mm/filemap.c in the Linux kernel before 2.6.25 allows local users to cause a denial of service (infinite loop) via a writev system call that triggers an iovec of zero length, followed by a page fault ...

CWE-202008