CVE-2017-8465

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 8.1 through 10 (including Windows RT 8.1, Windows Server 2012 R2, Windows Server 2016, and versions 1511, 1607, 1703)

Description The issue is related to the improper handling of data in device memory by the Windows kernel, allowing a local attacker to execute code in the context of a privileged process. This can enable an attacker to run processes in an elevated context. The vulnerability is also described as an elevation-of-privilege issue that affects the system.

Recommendations For Microsoft Windows versions 8.1 through 10, update to a version that includes the fix for this issue to prevent exploitation. For Windows Server 2012 R2 and Windows Server 2016, apply the necessary patch or update to resolve the vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability for other affected versions, so ensure to monitor for updates from Microsoft.