CVE-2018-8639

HIGH KEV RANSOMWARE

Windows - Privilege Escalation

Title source: llm

Description

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8641.

Exploits (6)

nomisec WORKING POC 127 stars
by ze0r · local
https://github.com/ze0r/CVE-2018-8639-exp
nomisec WORKING POC 6 stars
by timwhitez · poc
https://github.com/timwhitez/CVE-2018-8639-EXP
patchapalooza WRITEUP
by Ascotbe · local
https://github.com/Ascotbe/Kernelhub
patchapalooza WORKING POC
by cbwang505 · poc
https://gitee.com/cbwang505/CVE-2018-8639-EXP

References (3)

Scores

CVSS v3 7.8
EPSS 0.3487
EPSS Percentile 97.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2025-03-03
VulnCheck KEV 2022-01-26
ENISA EUVD EUVD-2018-20250
Ransomware Use Confirmed
CWE
CWE-404
Status published
Products (15)
microsoft/windows_10_1507
microsoft/windows_10_1607
microsoft/windows_10_1703
microsoft/windows_10_1709
microsoft/windows_10_1803
microsoft/windows_10_1809
microsoft/windows_7
microsoft/windows_8.1
microsoft/windows_rt_8.1
microsoft/windows_server_2008
... and 5 more
Published Dec 12, 2018
KEV Added Mar 03, 2025
Tracked Since Feb 18, 2026