Published: 12/04/2018 Updated: 24/08/2020

CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9

CVSS v3 Base Score: 7.5 | Impact Score: 5.9 | Exploitability Score: 1.6

VMScore: 676

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Explorer 10. This CVE ID is unique from CVE-2018-0870, CVE-2018-0991, CVE-2018-0997, CVE-2018-1018.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet_explorer 10
microsoft internet_explorer 11
microsoft internet_explorer 9

It's April 2018 – and Patch Tuesday shows Windows security is still foiled by fiendish fonts

The Register • Shaun Nichols in San Francisco • 10 Apr 2018

Adobe's Flash also up the spout Mad March Meltdown! Microsoft's patch for a patch for a patch may need another patch

Microsoft has released the April edition of its monthly security update, this time addressing a total of 63 CVE-listed vulnerabilities. This month's update includes critical fixes for the usual suspects: Windows, Edge, Internet Explorer, and Office, as well as one flaw Redmond previously fixed with an unscheduled update. You should install these fixes as soon as you can, if your system hasn't already. Just one of this month's patches is for a zero-day flaw; CVE-2018-1034 is an elevation of privi...

CVE-2018-1020

Vulnerability Summary

Recent Articles

References

Vulmon Search

About

Products

Connect