CVE-2018-8589 - Microsoft Win32k Privilege Escalation Vulnerability
Project:Microsoft
Product:Win32k
Date Added:2022-05-23Due Date:2022-06-13
Vulnerability Name
Microsoft Win32k Privilege Escalation Vulnerability
Description
A privilege escalation vulnerability exists when Windows improperly handles calls to Win32k.sys. An attacker who successfully exploited this vulnerability could run remote code in the security context of the local system.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-8589