Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2018-0748Improper Privilege Management in Corporation Windows Kernel

CWE-269Improper Privilege Management6 documents5 sources
Severity
7.8HIGHNVD
EPSS
5.8%
top 9.49%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
18
Microsoft Corporation Windows KernelMicrosoft Windows 10Microsoft Windows Server 2008+15 more
Timeline
PublishedJan 4
Latest updateMay 13

Description

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way memory addresses are handled, aka "Windows Elevation of Privilege Vulnerability".

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages16 packages

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

1
GHSA
GHSA-c5cp-qfj2-j929: The Windows kernel in Windows 7 SP1, Windows 82022-05-13

💥Exploits & PoCs

1
Exploit-DB
Microsoft Windows - NTFS Owner/Mandatory Label Privilege Bypass2018-01-11

📋Vendor Advisories

1
Microsoft
Windows Elevation of Privilege Vulnerability2018-01-09

🕵️Threat Intelligence

2
Talos
Microsoft Patch Tuesday - January 20182018-01-09
Talos
Microsoft Patch Tuesday - January 20182018-01-09
CVE-2018-0748 — Improper Privilege Management | cvebase