Vulnerability Description
Hyper-V in Microsoft Windows 8.1 and Windows Server 2012 R2 does not properly initialize guest OS system data structures, which allows guest OS users to execute arbitrary code on the host OS or cause a denial of service (buffer overflow) by leveraging guest OS privileges, aka "Hyper-V Buffer Overflow Vulnerability."
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 8.1 | - |
| Microsoft | Windows Server 2012 | r2 |
Related Weaknesses (CWE)
References
- http://www.securitytracker.com/id/1032897
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-06
- http://www.securitytracker.com/id/1032897
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-06
FAQ
What is CVE-2015-2361?
CVE-2015-2361 is a vulnerability with a CVSS score of 7.2 (HIGH). Hyper-V in Microsoft Windows 8.1 and Windows Server 2012 R2 does not properly initialize guest OS system data structures, which allows guest OS users to execute arbitrary code on the host OS or cause ...
How severe is CVE-2015-2361?
CVE-2015-2361 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-2361?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 8.1, Microsoft Windows Server 2012.