Elevation of Privilege Vulnerability in Microsoft Windows 10
CVE-2017-0082

7.8HIGH

Key Information:

Vendor: Microsoft
Status: Win32k
Vendor: CVE Published:; 17 March 2017

🔔 Create Microsoft Vulnerability Alert

What is CVE-2017-0082?

A vulnerability exists within the kernel-mode drivers of Microsoft Windows 10 versions Gold and 1511, allowing local users to escalate their privileges through a specially crafted application. This flaw creates a security risk as it can potentially enable unauthorized access or manipulation of system resources, making it critical for users to apply relevant patches to safeguard their systems.

Affected Version(s)

Win32k The kernel-mode drivers in Microsoft Windows 10 Gold and 1511

References

http://www.securityfocus.com/bid/96635

vdb-entryx_refsource_BID

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1038017

vdb-entryx_refsource_SECTRACK

EPSS Score

6% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 17, 2017
Vulnerability Reserved
Sep 9, 2016

.