CVE-2018-8422: Infoleak
First published: Thu Sep 13 2018(Updated: )
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2008 R2. This CVE ID is unique from CVE-2018-8424.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows 7 | =sp1 | |
| Microsoft Windows Server | =2008-r2 | |
| Microsoft Windows Server | =2008-r2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-8422?
CVE-2018-8422 has a severity rating of important, indicating potential significant impact on the affected systems.
How do I fix CVE-2018-8422?
To fix CVE-2018-8422, apply the latest security updates provided by Microsoft for Windows 7 and Windows Server 2008 R2.
Which systems are affected by CVE-2018-8422?
CVE-2018-8422 affects Windows 7 SP1 and Windows Server 2008 R2 SP1 on both Itanium and x64 platforms.
What type of vulnerability is CVE-2018-8422?
CVE-2018-8422 is classified as an information disclosure vulnerability involving the improper disclosure of memory contents.
Can CVE-2018-8422 lead to further attacks?
Yes, information disclosed through CVE-2018-8422 could potentially be leveraged by attackers to execute further attacks.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/author
- agent/remedy
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/microsoft
- canonical/microsoft windows 7
- version/microsoft windows 7/sp1
- canonical/microsoft windows server
- version/microsoft windows server/2008-r2