CVE-2018-8420

HIGH

Microsoft XML Core Services - RCE

Title source: llm

Description

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka "MS XML Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.

Exploits (3)

github 34 stars

by DarkFunct · cpoc

https://github.com/DarkFunct/CVE_Exploits/tree/main/CVE-2018-8420

nomisec STUB 1 stars

by idkwim · poc

https://github.com/idkwim/CVE-2018-8420

View Code ZIP pw:eip

inthewild

poc

https://github.com/theropord/cve-2018-8420

View on inthewild

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/105259

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1041627

[Patch, Vendor Advisory] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8420

Scores

CVSS v3 8.8

EPSS 0.5314

EPSS Percentile 98.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-611

Status published

Products (10)

microsoft/windows_10

microsoft/windows_10 1607

microsoft/windows_10 1703

microsoft/windows_10 1709

microsoft/windows_10 1803

microsoft/windows_7

microsoft/windows_8.1 (2 CPE variants)

microsoft/windows_server 2008 r2 (3 CPE variants)

microsoft/windows_server 2012 (2 CPE variants)

microsoft/windows_server 2016 (3 CPE variants)

Published Sep 13, 2018

Tracked Since Feb 18, 2026