PT-2018-1496 · Microsoft · Windows 10 Servers+2

Bee13Oy

Published

2018-08-14

Updated

2022-05-23

CVE-2018-8399

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Windows 10 Servers Windows 10

Description The issue is related to the Win32k component's failure to properly handle objects in memory, which can lead to an elevation of privilege. This can potentially allow an attacker to execute arbitrary code in kernel mode using a specially crafted application.

Recommendations For Windows 10 Servers, apply the necessary patch to fix the Win32k component's handling of objects in memory. For Windows 10, apply the necessary patch to fix the Win32k component's handling of objects in memory.

Fix

LPE

Buffer Overflow

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-404

Related Identifiers

BDU:2018-01047

CVE-2018-8399

Affected Products

Windows

Windows 10

Windows 10 Servers

PT-2018-1496 · Microsoft · Windows 10 Servers+2

CVE-2018-8399

Weakness Enumeration

Related Identifiers

Affected Products

References · 9