CVE-2018-8639CISA KEV: Actively Exploited

Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability

Published Mar 3, 2025·Updated Mar 3, 2025

Description

Microsoft Windows Win32k contains an improper resource shutdown or release vulnerability that allows for local, authenticated privilege escalation. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.

Public Exploits & PoCs1 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free