Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2018-0886Improper Authentication in Corporation Windows

CWE-287Improper Authentication16 documents9 sources
Severity
7.0HIGHNVD
EPSS
91.0%
top 0.36%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
22
Microsoft Corporation WindowsMicrosoft Windows 10Microsoft Windows Server 2008+19 more
Timeline
PublishedMar 14
Latest updateMay 14

Description

The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows a remote code execution vulnerability due to how CredSSP validates request during the authentication process, aka "CredSSP Remote Code Execution Vulnerability".

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages20 packages

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

1
GHSA
GHSA-hrh9-4g5w-7q9j: The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 82022-05-14

💥Exploits & PoCs

1
Exploit-DB
Microsoft Credential Security Support Provider - Remote Code Execution2018-04-13

📋Vendor Advisories

2
CISA ICS
PEPPERL+FUCHS VisuNet RM, VisuNet PC, and Box Thin Client2018-07-17
Microsoft
CredSSP Remote Code Execution Vulnerability2018-03-13

🕵️Threat Intelligence

11
Trendmicro
March Patch Tuesday Fixes 75 Security Issues2018-03-14
Trendmicro
March Patch Tuesday Fixes 75 Security Issues2018-03-14
Trendmicro
March Patch Tuesday Fixes 75 Security Issues2018-03-14
Trendmicro
March Patch Tuesday Fixes 75 Security Issues2018-03-14
Trendmicro
March Patch Tuesday Fixes 75 Security Issues2018-03-14
CVE-2018-0886 — Improper Authentication | cvebase