CVE-2018-8406

Known Exploited (CISA KEV)HIGH

7.8

CVSS Severity Score

EPSS Score34.6730%

EPSS Percentile89.37th

Published2018年8月15日

Last Modified2025年10月28日

Vulnerability Description

An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8400, CVE-2018-8401, CVE-2018-8405.

Affected Platforms (CPE)

💻

Microsoft

Windows 10 1507

All versions

💻

Microsoft

Windows 10 1507

All versions

💻

Microsoft

Windows 10 1607

All versions

💻

Microsoft

Windows 10 1607

All versions

💻

Microsoft

Windows 10 1703

All versions

💻

Microsoft

Windows 10 1703

All versions

💻

Microsoft

Windows 10 1709

All versions

💻

Microsoft

Windows 10 1709

All versions

💻

Microsoft

Windows 10 1803

All versions

💻

Microsoft

Windows 10 1803

All versions

💻

Microsoft

Windows Server 1709

All versions

💻

Microsoft

Windows Server 1803

All versions

💻

Microsoft

Windows Server 2016

All versions

References & Advisories

🔗 http://www.securityfocus.com/bid/105012

🔗 http://www.securitytracker.com/id/1041461

🔗 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8406

🔗 http://www.securityfocus.com/bid/105012

🔗 http://www.securitytracker.com/id/1041461

🔗 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8406

🔗 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-8406

Vulnerability Description

Affected Platforms (CPE)

Windows 10 1507

Windows 10 1507

Windows 10 1607

Windows 10 1607

Windows 10 1703

Windows 10 1703

Windows 10 1709

Windows 10 1709

Windows 10 1803

Windows 10 1803

Windows Server 1709

Windows Server 1803

Windows Server 2016

References & Advisories

関連する脆弱性情報