CVE-2018-8154 : A remote code execution vulnerability exists in Microsoft Exchange software when

A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server. This CVE ID is unique from CVE-2018-8151.

Published 2018-05-09 19:29:02

Updated 2020-08-24 17:37:01

Source Microsoft Corporation

View at NVD, CVE.org

Vulnerability category: Memory CorruptionExecute code

Products affected by CVE-2018-8154

Microsoft » Exchange Server » Version: 2010 Update SP3
cpe:2.3:a:microsoft:exchange_server:2010:sp3:*:*:*:*:*:*
Matching versions
Microsoft » Exchange Server » Version: 2013 Update SP1
cpe:2.3:a:microsoft:exchange_server:2013:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Exchange Server » Version: 2016 Update Cumulative Update 8
cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_8:*:*:*:*:*:*
Matching versions
Microsoft » Exchange Server » Version: 2013 Update Cumulative Update 19
cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_19:*:*:*:*:*:*
Matching versions
Microsoft » Exchange Server » Version: 2013 Update Cumulative Update 20
cpe:2.3:a:microsoft:exchange_server:2013:cumulative_update_20:*:*:*:*:*:*
Matching versions
Microsoft » Exchange Server » Version: 2016 Update Cumulative Update 9
cpe:2.3:a:microsoft:exchange_server:2016:cumulative_update_9:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2018-8154

Top countries where our scanners detected CVE-2018-8154

Top open port discovered on systems with this issue 10001

IPs affected by CVE-2018-8154 7,551

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2018-8154!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2018-8154

EPSS FAQ

11.27%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 93 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-8154

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
9.8	CRITICAL	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2018-8154

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-8154

http://www.securitytracker.com/id/1040850

Microsoft Exchange Server Multiple Flaws Let Remote Users Spoof Content, Inject Scripting Code, Obtain Potentially Sensitive Information, and Execute Arbitrary Code - SecurityTracker
Third Party Advisory;VDB Entry

CVEs referencing this url
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8154

CVE-2018-8154 | Microsoft Exchange Memory Corruption Vulnerability
Patch;Vendor Advisory
http://www.securityfocus.com/bid/104054

Microsoft Exchange Server CVE-2018-8154 Remote Code Execution Vulnerability
Third Party Advisory;VDB Entry