| |
Vulnerability CVE-2018-0977
Published: 2018-03-14
Description: |
The Windows kernel mode driver in Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how objects are handled in memory, aka "Win32k Elevation of Privilege Vulnerability". |
Type:
CWE-noinfo
CVSS2 => (AV:L/AC:M/Au:N/C:C/I:C/A:C)
CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
6.9/10 |
10/10 |
3.4/10 |
Exploit range |
Attack complexity |
Authentication |
Local |
Medium |
No required |
Confidentiality impact |
Integrity impact |
Availability impact |
Complete |
Complete |
Complete |
References: |
http://www.securityfocus.com/bid/103380
http://www.securitytracker.com/id/1040520
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0977
|
|
|
Copyright 2024, cxsecurity.com
|
|
|