CVE-2018-8639
CVE-2018-8639
In short
A flaw in Windows' Win32k component allows a local user to gain higher privileges (administrator rights) by exploiting improper memory handling. This is dangerous because an attacker with basic user access can take complete control of the system.
Technical detail
Win32k fails to properly handle object references in memory, allowing a local attacker to trigger a use-after-free or similar memory corruption condition. Exploitation requires local code execution context; successful exploitation results in elevation to SYSTEM privileges, enabling full system compromise.
Summary generated and translated by AI from the official description.
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8641.
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Microsoft · Windows 10Microsoft · Windows 10 ServersMicrosoft · Windows 7Microsoft · Windows 8.1Microsoft · Windows RT 8.1Microsoft · Windows Server 2008Microsoft · Windows Server 2008 R2Microsoft · Windows Server 2012Microsoft · Windows Server 2012 R2Microsoft · Windows Server 2016Microsoft · Windows Server 2019public PoCs found — 2
githubgithub.com/ze0r/CVE-2018-8639-exp★ 126githubgithub.com/timwhitez/CVE-2018-8639-EXP★ 5⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →