VYPR
Medium severity4.7NVD Advisory· Published Aug 15, 2018· Updated Jun 17, 2026

CVE-2018-8396

CVE-2018-8396

Description

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows Server 2008, Windows 7, Windows Server 2008 R2. This CVE ID is unique from CVE-2018-8394, CVE-2018-8398.

Affected products

4
  • Range: Windows Server 2008, Windows 7, Windows Server 2008 R2
  • Range: 32-bit Systems Service Pack 1
  • Microsoft/Windows Server 2008cpe-rescue2 versions
    32-bit Systems Service Pack 2+ 1 more
    • (no CPE)range: 32-bit Systems Service Pack 2
    • (no CPE)range: Itanium-Based Systems Service Pack 1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.