Vulnerability Description
An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Edge. This CVE ID is unique from CVE-2018-0892.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Edge | All versions |
| Microsoft | Windows 10 | 1607 |
| Microsoft | Windows Server 2016 | All versions |
References
- http://www.securityfocus.com/bid/103598Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1040650Third Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0998PatchVendor Advisory
- http://www.securityfocus.com/bid/103598Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1040650Third Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0998PatchVendor Advisory
FAQ
What is CVE-2018-0998?
CVE-2018-0998 is a vulnerability with a CVSS score of 4.3 (MEDIUM). An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability." This affects Microsoft Ed...
How severe is CVE-2018-0998?
CVE-2018-0998 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-0998?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Edge, Microsoft Windows 10, Microsoft Windows Server 2016.