BDU:2018-01220
Scores
EPSS
Percentile: 0.0%
CVSS
CVSS Score: 7.0/10
All CVSS Scores
Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Vector Breakdown
CVSS (Common Vulnerability Scoring System) vector provides detailed metrics about vulnerability characteristics
CVSS
Attack Vector
Local (L)
Describes how the vulnerability is exploited
Attack Complexity
High (H)
Describes the conditions beyond the attacker's control
Privileges Required
Low (L)
Describes the level of privileges an attacker must possess
User Interaction
None (N)
Captures the requirement for a human user participation
Scope
Unchanged (U)
Determines if a successful attack impacts components beyond the vulnerable component
Confidentiality Impact
High (H)
Measures the impact to the confidentiality of information
Integrity Impact
High (H)
Measures the impact to integrity of a successfully exploited vulnerability
Availability Impact
High (H)
Measures the impact to the availability of the impacted component
Vector: AV:L/AC:H/Au:N/C:C/I:C/A:C
Vector Breakdown
CVSS (Common Vulnerability Scoring System) vector provides detailed metrics about vulnerability characteristics
CVSS
Attack Vector
Local (L)
Describes how the vulnerability is exploited
Attack Complexity
High (H)
Describes the conditions beyond the attacker's control
Authentication
None (N)
Describes the level of privileges an attacker must possess
Confidentiality Impact
Complete
Measures the impact to the confidentiality of information
Integrity Impact
Complete
Measures the impact to integrity of a successfully exploited vulnerability
Availability Impact
Complete
Measures the impact to the availability of the impacted component
Description
Уязвимость компонента Win32k (win32k.sys) операционных систем Windows связана с использованием памяти после ее освобождения. Эксплуатация уязвимости может позволить нарушителю повысить свои привилегии и выполнить произвольный код с помощью специально созданного приложения
Scaner-VS 7 — a modern vulnerability management solution
Sources
Related Vulnerabilities
Reference Links
Recommendations
Source: bdu
Использование рекомендаций:
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8453
Vulnerable Software (106)
Type: Configuration
Vendor: microsoft corp
Product: windows_10
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_10 1703
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_10 1709
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_10 1803
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_10 1809
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_7 service pack 1
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_8.1
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_rt 8.1
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_1709
Operating System: * *
{ "version_exact": "(server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_1803
Operating System: * *
{ "version_exact": "(server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2008
Operating System: * *
{ "version_exact": "r2 service pack 1"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2008
Operating System: * *
{ "version_exact": "service pack 2 (server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2008
Operating System: * *
{ "version_exact": "r2 service pack 1 (server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2008
Operating System: * *
{ "version_exact": "service pack 2"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2012
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2012
Operating System: * *
{ "version_exact": "(server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2016
Operating System: * *
{ "version_exact": "(server core installation)"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2016
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2019
Operating System: * *
{ "version_exact": "*"}
Source: bdu
Type: Configuration
Vendor: microsoft corp
Product: windows_server_2019
Operating System: * *
{ "version_exact": "(server core installation)"}
Source: bdu
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6085
Operating System: Windows 14393 build 6085
Identifier: KB5028169
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4462931
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6529
Operating System: Windows 14393 build 6529
Identifier: KB5033373
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5989
Operating System: Windows 14393 build 5989
Identifier: KB5027219
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5996
Operating System: Windows 14393 build 5996
Identifier: KB5028623
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5850
Operating System: Windows 14393 build 5850
Identifier: KB5025228
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5648
Operating System: Windows 14393 build 5648
Identifier: KB5022289
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5717
Operating System: Windows 14393 build 5717
Identifier: KB5022838
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5501
Operating System: Windows 14393 build 5501
Identifier: KB5019964
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5502
Operating System: Windows 14393 build 5502
Identifier: KB5021654
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5582
Operating System: Windows 14393 build 5582
Identifier: KB5021235
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5429
Operating System: Windows 14393 build 5429
Identifier: KB5020439
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5291
Operating System: Windows 14393 build 5291
Identifier: KB5016622
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5246
Operating System: Windows 14393 build 5246
Identifier: KB5015808
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5192
Operating System: Windows 14393 build 5192
Identifier: KB5014702
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8519
Operating System: Windows 14393 build 8519
Identifier: KB5066836
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8422
Operating System: Windows 14393 build 8422
Identifier: KB5065427
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8246
Operating System: Windows 14393 build 8246
Identifier: KB5062560
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8148
Operating System: Windows 14393 build 8148
Identifier: KB5061010
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8066
Operating System: Windows 14393 build 8066
Identifier: KB5058383
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7969
Operating System: Windows 14393 build 7969
Identifier: KB5055521
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7606
Operating System: Windows 14393 build 7606
Identifier: KB5048671
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7515
Operating System: Windows 14393 build 7515
Identifier: KB5046612
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7336
Operating System: Windows 14393 build 7336
Identifier: KB5043051
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7070
Operating System: Windows 14393 build 7070
Identifier: KB5039214
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6897
Operating System: Windows 14393 build 6897
Identifier: KB5036899
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6800
Operating System: Windows 14393 build 6800
Identifier: KB5037423
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6796
Operating System: Windows 14393 build 6796
Identifier: KB5035855
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6709
Operating System: Windows 14393 build 6709
Identifier: KB5034767
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6614
Operating System: Windows 14393 build 6614
Identifier: KB5034119
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6351
Operating System: Windows 14393 build 6351
Identifier: KB5031362
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6252
Operating System: Windows 14393 build 6252
Identifier: KB5030213
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6167
Operating System: Windows 14393 build 6167
Identifier: KB5029242
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6981
Operating System: Windows 14393 build 6981
Identifier: KB5037763
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5921
Operating System: Windows 14393 build 5921
Identifier: KB5026363
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5786
Operating System: Windows 14393 build 5786
Identifier: KB5023697
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5427
Operating System: Windows 14393 build 5427
Identifier: KB5018411
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5356
Operating System: Windows 14393 build 5356
Identifier: KB5017305
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8594
Operating System: Windows 14393 build 8594
Identifier: KB5068864
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8524
Operating System: Windows 14393 build 8524
Identifier: KB5070882
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.8330
Operating System: Windows 14393 build 8330
Identifier: KB5063871
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7973
Operating System: Windows 14393 build 7973
Identifier: KB5058921
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7785
Operating System: Windows 14393 build 7785
Identifier: KB5052006
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7876
Operating System: Windows 14393 build 7876
Identifier: KB5053594
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7699
Operating System: Windows 14393 build 7699
Identifier: KB5049993
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7428
Operating System: Windows 14393 build 7428
Identifier: KB5044293
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7259
Operating System: Windows 14393 build 7259
Identifier: KB5041773
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.7159
Operating System: Windows 14393 build 7159
Identifier: KB5040434
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5125
Operating System: Windows 14393 build 5125
Identifier: KB5013952
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5127
Operating System: Windows 14393 build 5127
Identifier: KB5015019
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.5066
Operating System: Windows 14393 build 5066
Identifier: KB5012596
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.2969
Operating System: Windows 14393 build 2969
Identifier: KB4494440
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.3659
Operating System: Windows 14393 build 3659
Identifier: KB4550947
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.3595
Operating System: Windows 14393 build 3595
Identifier: KB4541329
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.4771
Operating System: Windows 14393 build 4771
Identifier: KB5008601
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.4532
Operating System: Windows 14393 build 4532
Identifier: KB5005393
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.4288
Operating System: Windows 14393 build 4288
Identifier: KB5001633
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.4889
Operating System: Windows 14393 build 4889
Identifier: KB5010790
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.4048
Operating System: Windows 14393 build 4048
Identifier: KB4594441
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.3755
Operating System: Windows 14393 build 3755
Identifier: KB4567517
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.3542
Operating System: Windows 14393 build 3542
Identifier: KB4537806
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.3474
Operating System: Windows 14393 build 3474
Identifier: KB4534307
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.4827
Operating System: Windows 14393 build 4827
Identifier: KB5010195
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.2906
Operating System: Windows 14393 build 2906
Identifier: KB4493470
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.2908
Operating System: Windows 14393 build 2908
Identifier: KB4499418
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4467107
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.2608
Operating System: Windows 14393 build 2608
Identifier: KB4467691
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.2641
Operating System: Windows 14393 build 2641
Identifier: KB4478877
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4467697
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4467706
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4467701
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 17763.55
Operating System: Windows 17763 build 55
Identifier: KB4464330
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 16299.726
Operating System: Windows 16299 build 726
Identifier: KB4462918
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 15063.1387
Operating System: Windows 15063 build 1387
Identifier: KB4462937
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.2551
Operating System: Windows 14393 build 2551
Identifier: KB4462917
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.2580
Operating System: Windows 14393 build 2580
Identifier: KB4462928
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 10240.18005
Operating System: Windows 10240 build 18005
Identifier: KB4462922
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 17134.345
Operating System: Windows 17134 build 345
Identifier: KB4462919
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4462926
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4462923
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4463097
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4463104
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4462915
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4462941
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Operating System: Windows
Identifier: KB4462929
Source: msrc
Type: Windows KB
Vendor: Microsoft
Product: Windows
Version: 14393.6452
Operating System: Windows 14393 build 6452
Identifier: KB5032197
Source: msrc