CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: Jun 13, 2022
High
CISA KEVCVE-2018-8589
Microsoft—Win32k
A privilege escalation vulnerability exists when Windows improperly handles calls to Win32k.sys. An attacker who successfully exploited this vulnerability could run remote code in the security context of the local system.
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2018-8589
Vulnerability Overview
- Severity
- High
- CISA KEV
- Yes
- Ransomware
- Unknown
- Published
- May 23, 2022
- KEV Added
- May 23, 2022
- Due Date
- Jun 13, 2022
- Related Articles
- 0
Vendor
Microsoft
Win32k