CVE-2016-3341Microsoft Windows 10 vulnerability

CWE-2644 documents4 sources
Severity
7.8HIGHNVD
EPSS
9.8%
top 7.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
13
Microsoft Windows 10Microsoft Windows Server 2012Msrc Windows 10 FOR 32-bit Systems+10 more
Timeline
PublishedOct 14
Latest updateMay 14

Description

The kernel-mode drivers in Transaction Manager in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allow local users to gain privileges via a crafted application, aka "Windows Transaction Manager Elevation of Privilege Vulnerability."

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages13 packages

NVDmicrosoft/windows_101511, 1607+1

🔴Vulnerability Details

1
GHSA
GHSA-5hxw-v5g5-x67w: The kernel-mode drivers in Transaction Manager in Microsoft Windows 82022-05-14

📋Vendor Advisories

1
Microsoft
Windows Transaction Manager Elevation of Privilege Vulnerability2016-10-11

🕵️Threat Intelligence

1
Zscaler
Zscaler found Multiple Security Vulnerabilities | 11-10-2016