CVE-2018-8453

HIGH KEV RANSOMWARE

Windows - Privilege Escalation

Title source: llm

Description

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.

Exploits (6)

exploitdb WORKING POC VERIFIED
by Metasploit · rubylocalwindows
https://www.exploit-db.com/exploits/47134
nomisec WORKING POC 122 stars
by ze0r · local
https://github.com/ze0r/cve-2018-8453-exp
nomisec WRITEUP 14 stars
by thepwnrip · poc
https://github.com/thepwnrip/leHACK-Analysis-of-CVE-2018-8453
nomisec WORKING POC 2 stars
by Mkv4 · local
https://github.com/Mkv4/cve-2018-8453-exp
metasploit WORKING POC MANUAL
by ze0r, Kaspersky Lab, Jacob Robles · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/cve_2018_8453_win32k_priv_esc.rb
patchapalooza NO CODE
by Ascotbe · local
https://github.com/Ascotbe/Kernelhub

References (6)

Scores

CVSS v3 7.8
EPSS 0.8133
EPSS Percentile 99.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-01-21
VulnCheck KEV 2018-08-17
InTheWild.io 2018-08-17
ENISA EUVD EUVD-2018-20088
Ransomware Use Confirmed
Status published
Products (17)
microsoft/windows_10_1507
microsoft/windows_10_1607
microsoft/windows_10_1703
microsoft/windows_10_1709
microsoft/windows_10_1803
microsoft/windows_10_1809
microsoft/windows_7
microsoft/windows_8.1
microsoft/windows_rt_8.1
microsoft/windows_server_1709
... and 7 more
Published Oct 10, 2018
KEV Added Jan 21, 2022
Tracked Since Feb 18, 2026