CVE-2018-8592 — Microsoft Windows 10 vulnerability

3 documents3 sources

Severity

6.4MEDIUMNVD

EPSS

1.2%

top 21.33%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows 10 Microsoft Windows Server 2019 Msrc Windows 10 Version 1809 FOR 32-bit Systems +3 more

Timeline

PublishedNov 14

Latest updateMay 13

Description

An elevation of privilege vulnerability exists in Windows 10 version 1809 when installed from physical media (USB, DVD, etc, aka "Windows Elevation Of Privilege Vulnerability." This affects Windows 10, Windows Server 2019.

CVSS vector

CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 0.5 | Impact: 5.9

Affected Packages7 packages

▶msrcmsrc/windows_server_2019

▶CVEListV5microsoft/windows_server_2019(Server Core installation)

▶msrcmsrc/windows_10_version_1809_for_32-bit_systems

▶msrcmsrc/windows_10_version_1809_for_x64-based_systems

▶msrcmsrc/windows_10_version_1809_for_arm64-based_systems

Patches

Patch: portal.msrc.microsoft.com ↗Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-qc85-45h3-w2fg: An elevation of privilege vulnerability exists in Windows 10 version 1809 when installed from physical media (USB, DVD, etc, aka "Windows Elevation Of↗2022-05-13

▶

📋Vendor Advisories

Microsoft

Windows Elevation Of Privilege Vulnerability↗2018-11-13

▶