Patch Tuesday Archive
Patch Tuesday March 2018
Total CVEs
76
Critical
14
Important
57
Exploited
0
Publicly Disclosed
3
All CVEs this month 76
| CVE | Title | Severity | CVSS | Product | Exploited | Disclosed | Diffed |
|---|---|---|---|---|---|---|---|
| CVE-2018-0808 | ASP.NET Core Denial of Service Vulnerability | Important | - | ASP.NET | - | Yes | - |
| CVE-2018-0811 | Windows Kernel Information Disclosure Vulnerability | Important | 5.5 |
Windows Kernel | - | - | - |
| CVE-2018-0816 | Windows GDI Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Graphics Component | - | - | - |
| CVE-2018-0817 | Windows GDI Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Graphics Component | - | - | - |
| CVE-2018-0868 | Windows Installer Elevation of Privilege Vulnerability | Important | 7.4 |
Windows Installer | - | - | - |
| CVE-2018-0884 | Windows Security Feature Bypass Vulnerability | Important | 5.3 |
Device Guard | - | - | - |
| CVE-2018-0885 | Windows Hyper-V Denial of Service Vulnerability | Important | 5.8 |
Windows Hyper-V | - | - | - |
| CVE-2018-0886 | CredSSP Remote Code Execution Vulnerability | Important | 7.1 |
Microsoft Windows | - | - | - |
| CVE-2018-0888 | Windows Hyper-V Information Disclosure Vulnerability | Important | 7.2 |
Windows Hyper-V | - | - | - |
| CVE-2018-0889 | Scripting Engine Memory Corruption Vulnerability | Moderate | 7.5 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0891 | Scripting Engine Information Disclosure Vulnerability | Important | 7.5 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0893 | Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0894 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-0895 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-0896 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-0897 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-0898 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-0899 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-0900 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-0901 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-0902 | CNG Security Feature Bypass Vulnerability | Important | 5.3 |
Microsoft Windows | - | - | - |
| CVE-2018-0924 | Microsoft Exchange Information Disclosure Vulnerability | Low | - | Microsoft Exchange Server | - | - | - |
| CVE-2018-0926 | Windows Kernel Information Disclosure Vulnerability | Important | 5.5 |
Windows Kernel | - | - | - |
| CVE-2018-0927 | Microsoft Browser Information Disclosure Vulnerability | Important | 4.3 |
Microsoft Browsers | - | - | - |
| CVE-2018-0929 | Internet Explorer Information Disclosure Vulnerability | Low | 4.3 |
Internet Explorer | - | - | - |
| CVE-2018-0930 | Chakra Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0931 | Chakra Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0932 | Microsoft Browser Memory Corruption Vulnerability | Critical | 4.3 |
Microsoft Browsers | - | - | - |
| CVE-2018-0933 | Chakra Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0934 | Chakra Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0935 | Scripting Engine Memory Corruption Vulnerability | Low | 7.5 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0936 | Chakra Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0937 | Chakra Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0939 | Scripting Engine Memory Corruption Vulnerability | Critical | 4.3 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0940 | Microsoft Exchange Elevation of Privilege Vulnerability | Moderate | - | Microsoft Exchange Server | - | Yes | - |
| CVE-2018-0941 | Microsoft Exchange Information Disclosure Vulnerability | Important | - | Microsoft Exchange Server | - | - | - |
| CVE-2018-0942 | Internet Explorer Elevation of Privilege Vulnerability | Important | 3 |
Internet Explorer | - | - | - |
| ADV180006 | March 2018 Adobe Flash Security Update | Critical | - | Adobe Flash Player | - | - | - |
| CVE-2018-0947 | Microsoft Sharepoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0977 | Win32k Elevation of Privilege Vulnerability | Important | 7 |
Windows Kernel | - | - | - |
| CVE-2018-0983 | Windows Storage Services Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Windows | - | - | - |
| CVE-2018-1038 | Windows Kernel Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Kernel | - | Yes | - |
| CVE-2018-0787 | ASP.NET Core Elevation of Privilege Vulnerability | Important | - | ASP .NET | - | - | - |
| CVE-2018-0813 | Windows Kernel Information Disclosure Vulnerability | Important | 5.5 |
Windows Kernel | - | - | - |
| CVE-2018-0814 | Windows Kernel Information Disclosure Vulnerability | Important | 5.5 |
Windows Kernel | - | - | - |
| CVE-2018-0815 | Windows GDI Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Graphics Component | - | - | - |
| CVE-2018-0872 | Chakra Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0873 | Chakra Scripting Engine Memory Corruption Vulnerability | Important | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0874 | Chakra Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0875 | .NET Core Denial of Service Vulnerability | Important | - | .NET Core | - | - | - |
| CVE-2018-0876 | Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0877 | Windows Desktop Bridge VFS Elevation of Privilege Vulnerability | Important | 7 |
Windows Desktop Bridge | - | - | - |
| CVE-2018-0878 | Windows Remote Assistance Information Disclosure Vulnerability | Important | 3.1 |
Microsoft Windows | - | - | - |
| CVE-2018-0879 | Microsoft Edge based on Edge HTML Information Disclosure Vulnerability | Important | 4.3 |
Microsoft Edge | - | - | - |
| CVE-2018-0880 | Windows Desktop Bridge Elevation of Privilege Vulnerability | Important | 7 |
Windows Desktop Bridge | - | - | - |
| CVE-2018-0881 | Microsoft Video Control Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Video Control | - | - | - |
| CVE-2018-0882 | Windows Desktop Bridge Elevation of Privilege Vulnerability | Important | 7 |
Windows Desktop Bridge | - | - | - |
| CVE-2018-0883 | Windows Shell Remote Code Execution Vulnerability | Important | 5 |
Windows Shell | - | - | - |
| CVE-2018-0903 | Microsoft Access Remote Code Execution Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0904 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-0909 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0910 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0907 | Microsoft Office Excel Security Feature Bypass | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0911 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0912 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0913 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0914 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0915 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0916 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0917 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0919 | Microsoft Office Information Disclosure Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0921 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0922 | Microsoft Office Memory Corruption Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0923 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-0925 | Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-0944 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
Threat Categories 5
| Threat Category | CVEs | Critical |
|---|---|---|
| Elevation of Privilege | 27 | - |
| Information Disclosure | 24 | 2 |
| Remote Code Execution | 19 | 12 |
| Denial of Service | 3 | - |
| Security Feature Bypass | 3 | - |
Affected Products 19
| Product | CVEs | Exploited |
|---|---|---|
| Microsoft Office | 17 | - |
| Microsoft Scripting Engine | 16 | - |
| Windows Kernel | 15 | - |
| Microsoft Windows | 4 | - |
| Microsoft Exchange Server | 3 | - |
| Microsoft Graphics Component | 3 | - |
| Windows Desktop Bridge | 3 | - |
| Internet Explorer | 2 | - |
| Microsoft Browsers | 2 | - |
| Windows Hyper-V | 2 | - |
| .NET Core | 1 | - |
| ASP .NET | 1 | - |
| ASP.NET | 1 | - |
| Adobe Flash Player | 1 | - |
| Device Guard | 1 | - |
| Microsoft Edge | 1 | - |
| Microsoft Video Control | 1 | - |
| Windows Installer | 1 | - |
| Windows Shell | 1 | - |