Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-26218
7.8HIGH

Key Information

Vendor
Microsoft
Status
Windows 10 Version 1809
Windows Server 2019
Windows Server 2019 (server Core Installation)
Windows Server 2022
Vendor
CVE Published:
9 April 2024

Badges

👾 Exploit Exists📰 News Worthy

Summary

The CVE-2024-26218 is a Windows Kernel Elevation of Privilege Vulnerability with undefined exploitation by ransomware groups. This vulnerability affects Microsoft and has the potential impact of allowing attackers to elevate privileges. There is no information on any known exploitation in the wild at this time.

Affected Version(s)

Windows 10 Version 1809 < 10.0.17763.5696

Windows Server 2019 < 10.0.17763.5696

Windows Server 2019 (Server Core installation) < 10.0.17763.5696

News Articles

favicon imageCN-SEC

研究人员发布了 Windows 内核 EoP 漏洞的 PoC 漏洞 (CVE-2024-26218)

网络安全研究员 Gabe Kirkpatrick 分享了影响Windows 内核的高严重性特权提升漏洞( CVE-2024-26218 ) 错误的技术细节和概念验证 (PoC) 漏洞代码。 微软于 4 月 9 日(本月的补丁星期二)发布了安全更新,以在所有易受攻击的平台上解决该问题。 CVE-2024-26218 的详细信息 此特定漏洞源于 Windows...

4 months ago

favicon imageCyber Security Informer

Top Cyber Security Informer Penetration Testing Security Awareness Content for April, 2024

Best content around Penetration Testing Security Awareness selected by the Cyber Security Informer community.

5 months ago

favicon imageButtondown

Cybersecurity Newsletter 29th April 2024

Cybersecurity Newsletter 29th April 2024 In this week’s news: UNICEF breached, Post Office phishing site gets more traffic than real one, Venture Capitalists...

7 months ago

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • 👾

    Exploit exists.

  • First article discovered by GBHackers on Security

  • Vulnerability published.

  • Vulnerability Reserved.

Collectors

NVD DatabaseMitre DatabaseMicrosoft Feed5 News Article(s)
.