High severity8.0NVD Advisory· Published Jun 14, 2018· Updated Jun 17, 2026

CVE-2018-8209

Description

An information disclosure vulnerability exists when Windows allows a normal user to access the Wireless LAN profile of an administrative user, aka "Windows Wireless Network Profile Information Disclosure Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.

Affected products

Microsoft/Windows 10llm-fuzzy
Range: = 10 (initial release through 1803)
Microsoft/Windows Server 2016llm-fuzzy2 versions
(expand)+ 1 more
- (no CPE)
- (no CPE)range: (Server Core installation)
Microsoft/Windows 10 1909cpe-rescue
Range: 32-bit Systems
Microsoft/Windows Server 2003cpe-rescue
Range: version 1709 (Server Core Installation)

Patches

Vulnerability mechanics

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8209nvdPatchVendor Advisory
www.securityfocus.com/bid/104393nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1041101nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.520
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000