Patch Tuesday Archive
Patch Tuesday June 2018
Total CVEs
54
Critical
12
Important
39
Exploited
0
Publicly Disclosed
1
All CVEs this month 54
| CVE | Title | Severity | CVSS | Product | Exploited | Disclosed | Diffed |
|---|---|---|---|---|---|---|---|
| ADV180010 | June 2018 Oracle Outside In Library Security Update | Unknown | - | Microsoft Exchange Server | - | - | - |
| CVE-2018-8175 | WEBDAV Denial of Service Vulnerability | Important | 5.9 |
Microsoft Windows | - | - | - |
| CVE-2018-8140 | Cortana Elevation of Privilege Vulnerability | Important | 6.8 |
Windows Shell | - | - | - |
| CVE-2018-8201 | Device Guard Code Integrity Policy Security Feature Bypass Vulnerability | Important | 4.5 |
Device Guard | - | - | - |
| CVE-2018-8205 | Windows Denial of Service Vulnerability | Important | 5.5 |
Microsoft Windows | - | - | - |
| CVE-2018-8207 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-8208 | Windows Desktop Bridge Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Windows | - | - | - |
| CVE-2018-8209 | Windows Wireless Network Profile Information Disclosure Vulnerability | Important | 5.5 |
Microsoft Windows | - | - | - |
| CVE-2018-8210 | Windows Remote Code Execution Vulnerability | Important | 7.3 |
Microsoft Windows | - | - | - |
| CVE-2018-8211 | Device Guard Code Integrity Policy Security Feature Bypass Vulnerability | Important | 5.3 |
Device Guard | - | - | - |
| CVE-2018-8212 | Device Guard Code Integrity Policy Security Feature Bypass Vulnerability | Important | 5.3 |
Device Guard | - | - | - |
| CVE-2018-8213 | Windows Remote Code Execution Vulnerability | Critical | 7.8 |
Microsoft Windows | - | - | - |
| CVE-2018-8214 | Windows Desktop Bridge Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Windows | - | - | - |
| CVE-2018-8215 | Device Guard Code Integrity Policy Security Feature Bypass Vulnerability | Important | 5.3 |
Device Guard | - | - | - |
| CVE-2018-8216 | Device Guard Code Integrity Policy Security Feature Bypass Vulnerability | Important | 5.3 |
Device Guard | - | - | - |
| CVE-2018-8217 | Device Guard Code Integrity Policy Security Feature Bypass Vulnerability | Important | 5.3 |
Device Guard | - | - | - |
| CVE-2018-8218 | Windows Hyper-V Denial of Service Vulnerability | Important | 5.7 |
Windows Hyper-V | - | - | - |
| CVE-2018-8219 | Hypervisor Code Integrity Elevation of Privilege Vulnerability | Important | 7.6 |
Windows Hyper-V | - | - | - |
| CVE-2018-8221 | Device Guard Code Integrity Policy Security Feature Bypass Vulnerability | Important | 5.3 |
Device Guard | - | - | - |
| CVE-2018-8224 | Windows Kernel Elevation of Privilege Vulnerability | Important | 7 |
Windows Kernel | - | - | - |
| CVE-2018-8225 | Windows DNSAPI Remote Code Execution Vulnerability | Critical | 8.1 |
Microsoft Windows | - | - | - |
| CVE-2018-8226 | HTTP.sys Denial of Service Vulnerability | Important | 5.3 |
Microsoft Windows | - | - | - |
| CVE-2018-8227 | Chakra Scripting Engine Memory Corruption Vulnerability | Important | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-8229 | Chakra Scripting Engine Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-8231 | HTTP Protocol Stack Remote Code Execution Vulnerability | Critical | 8.1 |
Microsoft Windows | - | - | - |
| CVE-2018-8233 | Win32k Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Kernel | - | - | - |
| CVE-2018-8239 | Windows GDI Information Disclosure Vulnerability | Important | 4.4 |
Microsoft Windows | - | - | - |
| CVE-2018-8243 | Scripting Engine Memory Corruption Vulnerability | Critical | 8.8 |
Microsoft Scripting Engine | - | - | - |
| CVE-2018-8244 | Microsoft Outlook Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-8245 | Microsoft Publisher Remote Code Execution Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-8246 | Microsoft Excel Information Disclosure Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-8247 | Microsoft Office Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-8248 | Microsoft Excel Remote Code Execution Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-8252 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| CVE-2018-8254 | Microsoft SharePoint Elevation of Privilege Vulnerability | Important | - | Microsoft Office | - | - | - |
| ADV180014 | June 2018 Adobe Flash Security Update | Critical | - | Adobe Flash Player | - | - | - |
| ADV180016 | Microsoft Guidance for Lazy FP State Restore | Important | - | Windows 10 | - | - | - |
| CVE-2018-0871 | Microsoft Edge Information Disclosure Vulnerability | Important | 4.3 |
Microsoft Edge | - | - | - |
| CVE-2018-0978 | Internet Explorer Memory Corruption Vulnerability | Low | 7.5 |
Internet Explorer | - | - | - |
| CVE-2018-0982 | Windows Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Windows | - | - | - |
| CVE-2018-1036 | NTFS Elevation of Privilege Vulnerability | Important | 7 |
Microsoft NTFS | - | - | - |
| CVE-2018-1040 | Windows Code Integrity Module Denial of Service Vulnerability | Important | 5.3 |
Microsoft Windows | - | - | - |
| CVE-2018-8110 | Microsoft Edge Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Edge | - | - | - |
| CVE-2018-8111 | Microsoft Edge Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Edge | - | - | - |
| CVE-2018-8113 | Internet Explorer Security Feature Bypass Vulnerability | Important | 4.3 |
Internet Explorer | - | - | - |
| CVE-2018-8121 | Windows Kernel Information Disclosure Vulnerability | Important | 4.7 |
Windows Kernel | - | - | - |
| CVE-2018-8169 | HIDParser Elevation of Privilege Vulnerability | Important | 7 |
HID Parser Library | - | - | - |
| CVE-2018-8234 | Microsoft Edge based on Edge HTML Information Disclosure Vulnerability | Important | 4.3 |
Microsoft Edge | - | - | - |
| CVE-2018-8235 | Microsoft Edge Security Feature Bypass Vulnerability | Important | 4.3 |
Microsoft Edge | - | - | - |
| CVE-2018-8236 | Microsoft Edge Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Edge | - | - | - |
| CVE-2018-8249 | Internet Explorer Memory Corruption Vulnerability | Critical | 7.5 |
Internet Explorer | - | - | - |
| CVE-2018-8251 | Media Foundation Memory Corruption Vulnerability | Critical | 4.2 |
Microsoft Windows | - | - | - |
| CVE-2018-8267 | Scripting Engine Memory Corruption Vulnerability | Critical | 7.5 |
Microsoft Scripting Engine | - | Yes | - |
| ADV180015 | Microsoft Office Defense in Depth Update | None | - | Microsoft Office | - | - | - |
Threat Categories 7
| Threat Category | CVEs | Critical |
|---|---|---|
| Remote Code Execution | 18 | 12 |
| Elevation of Privilege | 13 | - |
| Security Feature Bypass | 9 | - |
| Information Disclosure | 8 | - |
| Denial of Service | 4 | - |
| Defense in Depth | 1 | - |
| Unknown | 1 | - |
Affected Products 14
| Product | CVEs | Exploited |
|---|---|---|
| Microsoft Windows | 14 | - |
| Microsoft Office | 8 | - |
| Device Guard | 7 | - |
| Microsoft Edge | 6 | - |
| Microsoft Scripting Engine | 4 | - |
| Windows Kernel | 4 | - |
| Internet Explorer | 3 | - |
| Windows Hyper-V | 2 | - |
| Adobe Flash Player | 1 | - |
| HID Parser Library | 1 | - |
| Microsoft Exchange Server | 1 | - |
| Microsoft NTFS | 1 | - |
| Windows 10 | 1 | - |
| Windows Shell | 1 | - |