Fixed Intel

CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Apr 18, 2022

CVE-2018-8405

High
EPSS 50.0%CISA KEVRansomware
Microsoft/DirectX Graphics Kernel (DXGKRNL)

Description

An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory.

EPSS — Exploit Probability

50.0%

Higher than 97.8% of all CVEs

Required Action

https://nvd.nist.gov/vuln/detail/CVE-2018-8405

Risk Assessment

HIGH
In CISA KEV
Ransomware

Details

Severity
High
EPSS
50.0%
CISA KEV
Yes
Ransomware
Known
Articles
0

Timeline

Published

Mar 28, 2022

Added to KEV

Mar 28, 2022

Remediation Due

Apr 18, 2022

Affected Product

Microsoft

DirectX Graphics Kernel (DXGKRNL)

View all Microsoft CVEs

External Links

NVD (NIST)CVE DetailsMITRE CVE