Vulnerability Details : CVE-2018-8126
A security feature bypass vulnerability exists when Internet Explorer fails to validate User Mode Code Integrity (UMCI) policies, aka "Internet Explorer Security Feature Bypass Vulnerability." This affects Internet Explorer 11.
Products affected by CVE-2018-8126
- cpe:2.3:a:microsoft:internet_explorer:11:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-8126
9.90%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 93 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-8126
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST | |
|
8.8
|
HIGH | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
2.8
|
5.9
|
NIST |
References for CVE-2018-8126
-
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8126
CVE-2018-8126 | Internet Explorer Security Feature Bypass VulnerabilityPatch;Vendor Advisory
-
http://www.securitytracker.com/id/1040846
Microsoft Internet Explorer Flaws Let Remote Users Bypass UMCI Policy and Execute Arbitrary Code - SecurityTrackerThird Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/103997
Microsoft Internet Explorer CVE-2018-8126 Security Bypass VulnerabilityThird Party Advisory;VDB Entry
Jump to