cbcvebase.
CVE-2018-8464
published 2018-09-13

CVE-2018-8464: An remote code execution vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka "Microsoft Edge PDF Remote Code…

PriorityP354high7.5CVSS 3.0
AVNACHPRNUIRSUCHIHAH
EPSS
42.58%
98.5th percentile
An remote code execution vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory, aka "Microsoft Edge PDF Remote Code Execution Vulnerability." This affects Microsoft Edge.

Affected

22 ranges
VendorProductVersion rangeFixed in
microsoftmicrosoft_edge
microsoftmicrosoft_edge
microsoftmicrosoft_edge
microsoftmicrosoft_edge
microsoftmicrosoft_edge
microsoftmicrosoft_edge
microsoftmicrosoft_edge
microsoftmicrosoft_edge
microsoftmicrosoft_edge
microsoftmicrosoft_edge
microsoftmicrosoft_edge
msrcmicrosoft_edge_on_windows_10_for_32-bit_systems
msrcmicrosoft_edge_on_windows_10_for_x64-based_systems
msrcmicrosoft_edge_on_windows_10_version_1607_for_32-bit_systems
msrcmicrosoft_edge_on_windows_10_version_1607_for_x64-based_systems
msrcmicrosoft_edge_on_windows_10_version_1703_for_32-bit_systems
msrcmicrosoft_edge_on_windows_10_version_1703_for_x64-based_systems
msrcmicrosoft_edge_on_windows_10_version_1709_for_32-bit_systems
msrcmicrosoft_edge_on_windows_10_version_1709_for_x64-based_systems
msrcmicrosoft_edge_on_windows_10_version_1803_for_32-bit_systems
msrcmicrosoft_edge_on_windows_10_version_1803_for_x64-based_systems
msrcmicrosoft_edge_on_windows_server_2016

Detection & IOCsextracted from sources · hover to see the quote

  • Exploitation vector is a web-based attack delivering a specially crafted malicious PDF file via a link, targeting Microsoft Edge PDF Reader's memory object handling.
  • Attack requires user interaction — specifically clicking a link to an attacker-controlled site serving malicious PDF content. Monitor for Edge navigating to PDF resources from untrusted/external links.
  • Exploitation is assessed as 'More Likely' for the latest software release; prioritize detection and patching on current Edge (HTML-based) versions.
  • ·Vulnerability is specific to Microsoft Edge (HTML-based) PDF Reader; no other browsers or PDF readers are affected by this CVE.
  • ·As of advisory publication, the vulnerability had not been publicly disclosed or exploited in the wild, limiting available IOC data.

CVSS provenance

nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_msrc4.2MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.