CVE-2015-2381

Windows 8, 8.1, RT, RT 8.1, Server 2012, Server 2012 R2 - Kernel Memory Information Disclosure via win32k.sys

Title source: llm
STIX 2.1

Description

win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to obtain sensitive information from kernel memory via a crafted application, aka "Win32k Information Disclosure Vulnerability," a different vulnerability than CVE-2015-2382.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1032904

Scores

EPSS 0.0276
EPSS Percentile 84.5%

Details

CWE
CWE-200
Status published
Products (7)
microsoft/windows_7
microsoft/windows_8
microsoft/windows_8.1
microsoft/windows_rt
microsoft/windows_rt_8.1
microsoft/windows_server_2012
microsoft/windows_server_2012 r2 (3 CPE variants)
Published Jul 14, 2015
Tracked Since Feb 18, 2026