CVE-2016-3258Race Condition in Microsoft Windows 10

CWE-264CWE-362Race Condition5 documents4 sources
Severity
4.7MEDIUMNVD
EPSS
0.2%
top 55.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
11
Microsoft Windows 10Microsoft Windows Server 2012Msrc Windows 10 FOR 32-bit Systems+8 more
Timeline
PublishedJul 13
Latest updateMay 14

Description

Race condition in the kernel in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to bypass the Low Integrity protection mechanism and write to files by leveraging unspecified object-manager features, aka "Windows File System Security Feature Bypass."

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 1.0 | Impact: 3.6

Affected Packages11 packages

🔴Vulnerability Details

1
GHSA
GHSA-4vw5-pwf9-rvmv: Race condition in the kernel in Microsoft Windows 82022-05-14

📋Vendor Advisories

1
Microsoft
Windows File System Security Feature Bypass Vulnerability2016-07-12

🕵️Threat Intelligence

2
Talos
Microsoft Patch Tuesday - July 20162016-07-12
Talos
Microsoft Patch Tuesday - July 20162016-07-12