CVE-2018-8639

216.73.216.233

· Published 03/03/2025 01:00 · Modified 20/12/2025 23:21 · Author: Cybersecurity and Infrastructure Security Agency

Labels: CVE-2018-8639

Essential information

Published: 03/03/2025 01:00
Modified: 20/12/2025 23:21
Author: Cybersecurity and Infrastructure Security Agency
Creator: Cybersecurity and Infrastructure Security Agency
CISA KEV: Yes
CWE: —
CVSS vector

Description

Microsoft Windows Win32k contains an improper resource shutdown or release vulnerability that allows for local, authenticated privilege escalation. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.

NVD status

NVD: View on NVD

CVE-2018-8639

Essential information

Description

NVD status

Related entities

Attack reports (1)