CVE-2018-8151

An information disclosure vulnerability exists when Microsoft Exchange improperly handles objects in memory, aka "Microsoft Exchange Memory Corruption Vulnerability." This affects Microsoft Exchange Server. This CVE ID is unique from CVE-2018-8154.

Published: May 9, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-8151
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
microsoft / exchange_server	2010-sp3	2010-sp3.x
microsoft / exchange_server	2013-sp1	2013-sp1.x
microsoft / exchange_server	2016-cumulative_update_8	2016-cumulative_update_8.x
microsoft / exchange_server	2013-cumulative_update_19	2013-cumulative_update_19.x
microsoft / exchange_server	2016-cumulative_update_9	2016-cumulative_update_9.x
microsoft / exchange_server	2013-cumulative_update_20	2013-cumulative_update_20.x

http://www.securityfocus.com/bid/104042
http://www.securitytracker.com/id/1040850
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8151

Vulnerability Database

290,206

CVE-2018-8151