Lucene search

K
mscveMicrosoftMS:CVE-2018-0748
HistoryJan 03, 2018 - 8:00 a.m.

Windows Elevation of Privilege Vulnerability

2018-01-0308:00:00
Microsoft
msrc.microsoft.com
12

0.003 Low

EPSS

Percentile

68.9%

An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions. An attacker who successfully exploited the vulnerability could impersonate processes, interject cross-process communication, or interrupt system functionality.

To exploit the vulnerability, a locally authenticated attacker could run a specially crafted application.

The security update addresses the vulnerability by helping to ensure that the Windows Kernel API properly enforces permissions.

0.003 Low

EPSS

Percentile

68.9%