CVE-2018-8639

⚠ KEVEPSS 33.2%

Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability

Added to CISA KEV: 3/3/2025

Description

Microsoft Windows Win32k contains an improper resource shutdown or release vulnerability that allows for local, authenticated privilege escalation. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.

Affected packages (0)

No package mapping in OSV.