What is CVE-2017-8686?

CVE-2017-8686 is a critical-severity vulnerability in Microsoft Windows_server_2012, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 9.8/10. Published 2017-09-13.

How severe is CVE-2017-8686?

Critical severity. CVSS v3 base score is 9.8 out of 10.

Buffer overflow in Microsoft Windows_server_2012

CVE-2017-8686

The Windows Server DHCP service in Windows Server 2012 Gold and R2, and Windows Server 2016 allows an attacker to either run arbitrary code on the DHCP failover server or cause the DHCP service to become nonresponsive, due to a memory corr…

Vulnerability class: Buffer Overflow

EPSS: 0.081 (92.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Microsoft Windows_server_2012 — versions r2
Microsoft Windows_server_2016
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

secure@microsoft.com (x_refsource_CONFIRM, Patch, Mitigation, Vendor Advisory)
secure@microsoft.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
secure@microsoft.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2017-8686?: CVE-2017-8686 is a critical-severity vulnerability in Microsoft Windows_server_2012, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 9.8/10. Published 2017-09-13.
How severe is CVE-2017-8686?: Critical severity. CVSS v3 base score is 9.8 out of 10.