CVE-2018-8316
HIGHInternet Explorer 10 and 11 - Remote Code Execution via Hyperlink Validation Bypass
Title source: llmDescription
A remote code execution vulnerability exists when Internet Explorer improperly validates hyperlinks before loading executable libraries, aka "Internet Explorer Remote Code Execution Vulnerability." This affects Internet Explorer 11, Internet Explorer 10.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/105013
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1041483
Patch, Vendor Advisory x_refsource_confirm
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8316
Scores
CVSS v3
7.5
EPSS
0.1361
EPSS Percentile
96.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-20
Status
published
Products (2)
microsoft/internet_explorer
11
microsoft/internet_explorer
10
Published
Aug 15, 2018
Tracked Since
Feb 18, 2026