CVE-2018-8638
published 2018-12-12CVE-2018-8638: An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Information Disclosure Vulnerability." This…
PriorityP275medium5.5CVSS 3.0
AVLACLPRLUINSUCHINAN
ITWVulnCheck KEV
Exploited in the wild
EPSS
1.82%
76.0th percentile
An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Information Disclosure Vulnerability." This affects Windows 10, Windows Server 2019.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_10 | — | — |
| microsoft | windows_10 | — | — |
| microsoft | windows_10 | — | — |
| microsoft | windows_10 | — | — |
| microsoft | windows_server_2019 | — | — |
| msrc | windows_10_version_1809_for_32-bit_systems | — | — |
| msrc | windows_10_version_1809_for_arm64-based_systems | — | — |
| msrc | windows_10_version_1809_for_x64-based_systems | — | — |
| msrc | windows_server_2019 | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability is triggered by a specially crafted application run by an authenticated attacker; monitor for unusual DirectX/Microsoft Graphics Component API usage from user-space processes. ↗
- →The disclosed information is uninitialized memory via DirectX improper object handling; look for anomalous memory read patterns in DirectX-related kernel calls. ↗
- ·Affects only Windows 10 and Windows Server 2019; detection efforts should be scoped to these platforms. ↗
- ·As of advisory publication, the vulnerability had not been publicly disclosed or exploited in the wild, but was rated 'Exploitation More Likely' for the latest software release. ↗
CVSS provenance
nvdv3.05.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:P/I:N/A:N
vulncheck5.5MEDIUM
vendor_msrc4.7MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Microsoft
DirectX Information Disclosure Vulnerability
vendor_msrc·2018-12-11·CVSS 4.7
CVE-2018-8638 [MEDIUM] DirectX Information Disclosure Vulnerability
DirectX Information Disclosure Vulnerability
Description: An information disclosure vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.
An authenticated attacker could exploit this vulnerability by running a specially crafted application.
The update addresses the vulnerability by correcting how DirectX handles objects in memory.
FAQ: What type of information could be disclosed by this vulnerability?
The type of information that could be disclosed if an attacker successfully exploited this vulnerability is uninitialized memory.
Microsoft Graphics Component: Microsoft Graphics Component
Impact: Information Disclosure
Exploit Status: Publicly Dis
GHSA
GHSA-h5v6-7crj-9x7q: An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Information Disclosure Vulnerability
ghsa_unreviewed·2022-05-13
CVE-2018-8638 [MEDIUM] GHSA-h5v6-7crj-9x7q: An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Information Disclosure Vulnerability
An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Information Disclosure Vulnerability." This affects Windows 10, Windows Server 2019.
VulnCheck
Microsoft Windows DirectX Information Disclosure Vulnerability
vulncheck·2018·CVSS 5.5
CVE-2018-8638 [MEDIUM] Microsoft Windows DirectX Information Disclosure Vulnerability
Microsoft Windows DirectX Information Disclosure Vulnerability
An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Information Disclosure Vulnerability." This affects Windows 10, Windows Server 2019.
Affected: Microsoft Windows
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.tenable.com/blog/daisy-chaining-how-vulnerabilities-can-be-greater-than-the-sum-of-their-parts
No detection rules found.
No public exploits indexed.
2018-12-12
Published
Exploited in the wild