EUVD-2018-15776

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Exploitable pool corruption in WIBU-SYSTEMS WibuKey.sys can lead to privilege escalation via IRP request

Reporter	Title	Published	Views	Family All 13
Circl	CVE-2018-3990	29 Jan 201915:18	–	circl
CNVD	Wibu-Systems WibuKey Elevation of Privilege Vulnerability	15 Feb 201900:00	–	cnvd
CVE	CVE-2018-3990	5 Feb 201922:00	–	cve
Cvelist	CVE-2018-3990	5 Feb 201922:00	–	cvelist
ICS	WIBU SYSTEMS AG WibuKey Digital Rights Management (Update D)	12 Feb 201900:00	–	ics
ICS	WIBU SYSTEMS AG WibuKey Digital Rights Management (Update B)	12 Mar 201900:00	–	ics
NVD	CVE-2018-3990	5 Feb 201923:29	–	nvd
OSV	CVE-2018-3990	5 Feb 201923:29	–	osv
Prion	Memory corruption	5 Feb 201923:29	–	prion
Talos	WIBU-SYSTEMS WibuKey.sys 0x8200E804 pool corruption privilege escalation vulnerability	28 Jan 201900:00	–	talos

[
  {
    "enisaIdVendor": [
      {
        "id": "c9083b28-392e-3ad7-b724-37c0778d1010",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "3a109c59-5340-3fea-be70-09ee041286e3",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/107005
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-844562.pdf
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-760124.pdf
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-902727.pdf
talosintelligence	www.talosintelligence.com/vulnerability_reports/TALOS-2018-0658
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

8.6High risk

Vulners AI Score8.6

CVSS 37.8 - 9.3

CVSS 27.2

EPSS0.00172