CVE-2017-0058
MEDIUMMicrosoft Windows 10 - Information Disclosure
Title source: ruleDescription
A Win32k information disclosure vulnerability exists in Microsoft Windows when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system, aka "Win32k Information Disclosure Vulnerability."
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Google Security Research · textdoswindows
https://www.exploit-db.com/exploits/41879
References (4)
Scores
CVSS v3
4.7
EPSS
0.1649
EPSS Percentile
94.8%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Classification
CWE
CWE-200
Status
published
Affected Products (14)
microsoft/windows_10
microsoft/windows_10
microsoft/windows_10
microsoft/windows_10
microsoft/windows_7
microsoft/windows_8.1
microsoft/windows_rt_8.1
microsoft/windows_server_2008
microsoft/windows_server_2008
microsoft/windows_server_2012
microsoft/windows_server_2012
microsoft/windows_server_2016
microsoft/windows_vista
Microsoft Corporation/Windows
< Windows
Timeline
Published
Apr 12, 2017
Tracked Since
Feb 18, 2026