← ExploitWatch
HomeExploited Vulnerabilities

CVE-2018-8174 — Actively Exploited: Windows (Microsoft)

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution"

CVE IDCVE-2018-8174
VendorMicrosoft
ProductWindows
Vulnerability nameMicrosoft Windows VBScript Engine Out-of-Bounds Write Vulnerability
Date added2022-02-15
Remediation due2022-08-15
Known ransomware useKnown
Required actionApply updates per vendor instructions.
DescriptionA remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution"
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →