Vulnerability Description
Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows improper disclosure of memory contents, aka "Windows Graphics Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-0287, CVE-2017-0288, CVE-2017-0289, CVE-2017-8531, CVE-2017-8532, and CVE-2017-8533.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Office | 2007 |
| Microsoft | Windows 7 | - |
| Microsoft | Windows Server 2008 | r2 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/98891Broken LinkThird Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0286MitigationPatchVendor Advisory
- https://www.exploit-db.com/exploits/42238/Third Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/98891Broken LinkThird Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0286MitigationPatchVendor Advisory
- https://www.exploit-db.com/exploits/42238/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2017-0286?
CVE-2017-0286 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows improper ...
How severe is CVE-2017-0286?
CVE-2017-0286 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-0286?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Office, Microsoft Windows 7, Microsoft Windows Server 2008.