Описание
Win32k Elevation of Privilege Vulnerability
Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
FAQ
What privileges could be gained by an attacker who successfully exploited the vulnerability?
A local, authenticated attacker could gain elevated local system or administrator privileges through a vulnerability in the Win32k.sys driver.
Обновления
| Продукт | Статья | Обновление |
|---|---|---|
| Windows 10 Version 1809 for 32-bit Systems | ||
| Windows 10 Version 1809 for x64-based Systems | ||
| Windows Server 2019 | ||
| Windows Server 2019 (Server Core installation) | ||
| Windows Server 2022 | ||
| Windows Server 2022 (Server Core installation) | ||
| Windows 10 Version 21H2 for 32-bit Systems | ||
| Windows 10 Version 21H2 for ARM64-based Systems | ||
| Windows 10 Version 21H2 for x64-based Systems | ||
| Windows 11 Version 22H2 for ARM64-based Systems |
Показывать по
10
Возможность эксплуатации
Publicly Disclosed
No
Exploited
No
Latest Software Release
Exploitation Less Likely
DOS
N/A
EPSS
Процентиль: 13%
0.00044
Низкий
7.8 High
CVSS3
Связанные уязвимости
CVSS3: 7.8
nvd
9 дней назад
Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
CVSS3: 7.8
github
9 дней назад
Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
EPSS
Процентиль: 13%
0.00044
Низкий
7.8 High
CVSS3