CVE-2018-8464

HIGH

Microsoft Edge - Remote Code Execution in PDF Reader

Title source: llm
STIX 2.1

Description

An remote code execution vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka "Microsoft Edge PDF Remote Code Execution Vulnerability." This affects Microsoft Edge.

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/105265
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1041623

Scores

CVSS v3 7.5
EPSS 0.4258
EPSS Percentile 98.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (1)
microsoft/edge
Published Sep 13, 2018
Tracked Since Feb 18, 2026