CVE-2018-8140 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2018-8140

CWE

https://cwe.mitre.org/data/definitions/.html

An Elevation of Privilege vulnerability exists when Cortana retrieves data from user input services without consideration for status, aka Cortana Elevation of Privilege Vulnerability. This affects Windows 10 Servers, Windows 10.

Affected Software

Name	Vendor	Start Version	End Version
Windows_10	Microsoft	1709 (including)	1709 (including)
Windows_10	Microsoft	1803 (including)	1803 (including)
Windows_server_1803	Microsoft	- (including)	- (including)
Windows_server_2016	Microsoft	1709 (including)	1709 (including)

References

http://www.securityfocus.com/bid/104354
http://www.securitytracker.com/id/1041108
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8140
http://www.securityfocus.com/bid/104354
http://www.securitytracker.com/id/1041108
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8140