Win32k Information Disclosure Vulnerability - CVE-2018-8637ID: oval:org.secpod.oval:def:49702 | Date: (C)2018-12-12 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
An information disclosure vulnerability exists in Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (KASLR) bypass. An attacker who successfully exploited this vulnerability could retrieve the memory address of a kernel object. To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The security update addresses the vulnerability by correcting how the Windows kernel handles memory addresses.
Platform: |
Microsoft Windows Server |
Microsoft Windows Server 2019 |
Microsoft Windows 10 |