CVE-2015-6175

CVSS 7.8 HIGHEPSS 5.2%● KEV

In short

A flaw in Windows 10's kernel allows someone with local access to run a specially crafted program that tricks the system into giving them higher privileges, bypassing security restrictions.

Technical detail

Local privilege escalation vulnerability in the Windows kernel that requires execution of a malicious application. An attacker with standard user privileges can exploit memory handling flaws to gain SYSTEM-level access, compromising system integrity and confidentiality.

Summary generated and translated by AI from the official description.

The kernel in Microsoft Windows 10 Gold allows local users to gain privileges via a crafted application, aka "Windows Kernel Memory Elevation of Privilege Vulnerability."

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-135 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2015-6175 http://www.securitytracker.com/id/1034334