Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2018-0746 — Improper Initialization in Corporation Windows Kernel

CWE-665 — Improper Initialization10 documents5 sources

Severity

4.7MEDIUMNVD

EPSS

17.2%

top 4.97%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Corporation Windows Kernel Microsoft Windows 10 Microsoft Windows Server 2008 +17 more

Timeline

PublishedJan 4

Latest updateMay 13

Description

The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0745 and CVE-2018-0747.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.0 | Impact: 3.6

Affected Packages18 packages

▶msrcmsrc/windows_server_2012

▶msrcmsrc/windows_server_2016

▶msrcmsrc/windows_server_2012_r2

▶msrcmsrc/windows_10_version_1709_for_32-bit_systems

▶msrcmsrc/windows_10_version_1709_for_x64-based_systems

🔴Vulnerability Details

GHSA

GHSA-4h5w-mr29-x8j7: The Windows kernel in Windows 7 SP1, Windows 8↗2022-05-13

▶

GHSA

GHSA-vj57-vwp3-5mfp: The Windows kernel in Windows 8↗2022-05-13

▶

GHSA

GHSA-x7ph-2vff-2hx7: The Windows kernel in Windows 10 version 1703↗2022-05-13

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows - 'nt!NtQuerySystemInformation (information class 138_ QueryMemoryTopologyInformation)' Kernel Pool Memory Disclosure↗2018-01-09

▶

📋Vendor Advisories

Microsoft

Windows Kernel Information Disclosure Vulnerability↗2018-01-09

▶

🕵️Threat Intelligence

Talos

Microsoft Patch Tuesday - January 2018↗2018-01-09

▶

Talos

Microsoft Patch Tuesday - January 2018↗2018-01-09

▶