CVE-2018-8589
Microsoft Win32k Privilege Escalation Vulnerability
CVSS
—
Sin CVSS
EPSS
3.0%
p86
KEV
SÍ
23 may 2022
Exploit Today
76
0-100
Publicado: — · Última mod.: —
3.0%EPSS · 30 días3.0%
2026-06-302026-07-17
Producto
Microsoft / Win32k
Vulnerabilidad
Microsoft Win32k Privilege Escalation Vulnerability
Añadido a KEV
23 may 2022
Remediar antes de
13 jun 2022
Uso conocido en ransomware
No
Descripción resumida
A privilege escalation vulnerability exists when Windows improperly handles calls to Win32k.sys. An attacker who successfully exploited this vulnerability could run remote code in the security context of the local system.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2018-8589
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2014-4113—99.7%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2016-7255—99.6%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2021-1732—99.5%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2019-1458—99.4%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2018-8120—99.4%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2018-8453—99.3%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—