SecOps Solution Website

Summary

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.

Severity

High

Severity Score

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-ID

CWE-404

Vulnerability ID

CVE-2018-8611

Severity

High

Severity Score

7.8

Summary

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8611 http://www.securityfocus.com/bid/106082

Mitigation and Patches

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8611

Exploits

https://securelist.com/zero-day-in-windows-kernel-transaction-manager-cve-2018-8611/89253/ https://github.com/lsw29475/CVE-2018-8611 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8611 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8611 https://securelist.com/zero-day-in-windows-kernel-transaction-manager-cve-2018-8611/89253/ https://github.com/lsw29475/CVE-2018-8611 https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Metasploit Payload

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE ID

CWE-404

CVE-2018-8611

Summary

Severity

Severity Score

Vector

CWE-ID

See SecOps Solution
in action

Products

Compare

Company

Resources

Try It

CVE-2018-8611

Summary

Severity

Severity Score

Vector

CWE-ID

See SecOps Solutionin action

Products

Compare

Company

Resources

Try It

See SecOps Solution
in action