Lucene search
Symantec Security ResponseSMNTC-106095HistoryDec 11, 2018 - 12:00 a.m.
Microsoft Windows Kernel 'Win32k.sys' CVE-2018-8637 Information Disclosure Vulnerability
2018-12-1100:00:00
Symantec Security Response
www.symantec.com
14
0.001 Low
EPSS
Percentile
26.3%
Description
Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information, bypass certain security restrictions and perform unauthorized actions. Successful exploits may lead to other attacks.
Technologies Affected
- Microsoft Windows 10 Version 1803 for 32-bit Systems
- Microsoft Windows 10 Version 1803 for ARM64-based Systems
- Microsoft Windows 10 Version 1803 for x64-based Systems
- Microsoft Windows 10 Version 1809 for 32-bit Systems
- Microsoft Windows 10 Version 1809 for ARM64-based Systems
- Microsoft Windows 10 Version 1809 for x64-based Systems
- Microsoft Windows Server 1803
- Microsoft Windows Server 2019
Recommendations
Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Ensure that only trusted users have local, interactive access to affected computers.
Updates are available. Please see the references or vendor advisory for more information.
Related
prion
prion
Information disclosure
2018-12-12 00:29:00
mscve
mscve
Win32k Information Disclosure Vulnerability
2018-12-11 08:00:00
cvelist
cvelist
CVE-2018-8637
2018-12-12 00:00:00
nvd
nvd
CVE-2018-8637
2018-12-12 00:29:01
cve
cve
CVE-2018-8637
2018-12-12 00:29:01
nessus
nessus
kaspersky
kaspersky
KLA11385 Multiple vulnerabilities in Microsoft Windows
2018-12-11 00:00:00
mskb
mskb
December 11, 2018âKB4471324 (OS Build 17134.471)
2018-12-11 08:00:00
December 11, 2018âKB4471332 (OS Build 17763.194)
2018-12-11 08:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4471332)
2018-12-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4471324)
2018-12-12 00:00:00
talosblog
talosblog