Vulnerability Name:

CVE-2015-2362 (CCN-104249)

Assigned:2015-07-14
Published:2015-07-14
Updated:2019-05-08
Summary:Hyper-V in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 does not properly initialize guest OS system data structures, which allows guest OS users to execute arbitrary code on the host OS by leveraging guest OS privileges, aka "Hyper-V System Data Structure Vulnerability."
CVSS v3 Severity:8.2 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H)
7.1 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): High
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-254
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2015-2362

Source: CCN
Type: Microsoft Security Bulletin MS15-068
Vulnerabilities in Windows Server Hyper-V Could Allow Remote Code Execution (3072000)

Source: SECTRACK
Type: UNKNOWN
1032897

Source: MS
Type: UNKNOWN
MS15-068

Source: XF
Type: UNKNOWN
ms-hyperv-cve20152362-code-exec(104249)

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows_8:-:*:*:*:*:*:x64:*
  • OR cpe:/o:microsoft:windows_8:-:*:*:*:*:*:x86:*
  • OR cpe:/o:microsoft:windows_8.1:-:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2012:r2:*:*:*:datacenter:*:*:*
  • OR cpe:/o:microsoft:windows_server_2012:r2:*:*:*:essentials:*:*:*
  • OR cpe:/o:microsoft:windows_server_2012:r2:*:*:*:standard:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x64:*
  • OR cpe:/o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
  • OR cpe:/o:microsoft:windows_8:*:*:*:*:*:*:x64:*
  • OR cpe:/o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_8.1:*:*:*:*:*:*:x64:*
  • OR cpe:/o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:29406
    V
    		Hyper-V system data structure vulnerability - CVE-2015-2362 (MS15-068)
    2015-12-22
    BACK
    microsoft windows 8 -
    microsoft windows 8 -
    microsoft windows 8.1 -
    microsoft windows server 2008 * sp2
    microsoft windows server 2008 r2 sp1
    microsoft windows server 2012 -
    microsoft windows server 2012 r2
    microsoft windows server 2012 r2
    microsoft windows server 2012 r2
    microsoft windows server 2008 sp2
    microsoft windows server 2008 r2
    microsoft windows 8 *
    microsoft windows server 2012
    microsoft windows 8.1 *
    microsoft windows server 2012 r2