CVE-2018-8440

high-risk
Published 2018-09-13

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.

Do I need to act?

!
75.4% chance of exploitation in next 30 days
EPSS score — higher than 25% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.8/10 High
LOCAL / LOW complexity

Affected Products (12)

Affected Vendors

Microsoft

References (11)

Third Party Advisory http://www.securityfocus.com/bid/105153
Third Party Advisory http://www.securitytracker.com/id/1041578
Exploit https://blog.0patch.com/2018/08/how-we-micropatched-publicly-dropped.html
Third Party Advisory https://blog.0patch.com/2018/09/comparing-our-micropatch-with.html
Patch https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8440
Third Party Advisory http://www.securityfocus.com/bid/105153
Third Party Advisory http://www.securitytracker.com/id/1041578
Exploit https://blog.0patch.com/2018/08/how-we-micropatched-publicly-dropped.html
Third Party Advisory https://blog.0patch.com/2018/09/comparing-our-micropatch-with.html
Patch https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8440
US Government Resource https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-...
68
/ 100
high-risk
Severity 24/34 · High
Exploitability 27/34 · High
Exposure 17/34 · Moderate