High severity7.8NVD Advisory· Published Mar 14, 2018· Updated Jun 17, 2026

CVE-2018-0877

Description

The Desktop Bridge Virtual File System (VFS) in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how file paths are managed, aka "Windows Desktop Bridge VFS Elevation of Privilege Vulnerability".

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Microsoft/Windows Serverllm-fuzzy
Range: 2016, 1709
Microsoft/Windows 10llm-fuzzy
Range: 1607, 1703, 1709
Microsoft Corporation/Windows Desktop Bridge Virtual File Systemv5
Range: Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709

Patches

Vulnerability mechanics

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0877nvdPatchVendor Advisory
www.exploit-db.com/exploits/44313/nvdExploitThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/103227nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1040520nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.003
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000