CVE-2018-0822
NTFS in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way NTFS handles objects, aka "Windows NTFS Global Reparse Point Elevation of Privilege Vulnerability".
Published
2018-02-15T02:29:01.920
Last Modified
2024-11-21T03:39:01.550
Status
Modified
Source
[email protected]
Severity
CVSSv3.0: 7.0 (HIGH)
CVSSv2 Vector
AV:L/AC:M/Au:N/C:P/I:P/A:P
- Access Vector: LOCAL
- Access Complexity: MEDIUM
- Authentication: NONE
- Confidentiality Impact: PARTIAL
- Integrity Impact: PARTIAL
- Availability Impact: PARTIAL
Exploitability Score
3.4
Impact Score
6.4
Weaknesses
-
Type: Primary
NVD-CWE-noinfo
Affected Vendors & Products
References
-
http://www.securityfocus.com/bid/102942
Third Party Advisory, VDB Entry
([email protected])
-
http://www.securitytracker.com/id/1040378
Third Party Advisory, VDB Entry
([email protected])
-
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0822
Patch, Vendor Advisory
([email protected])
-
https://www.exploit-db.com/exploits/44147/
Exploit, Third Party Advisory, VDB Entry
([email protected])
-
http://www.securityfocus.com/bid/102942
Third Party Advisory, VDB Entry
(af854a3a-2127-422b-91ae-364da2661108)
-
http://www.securitytracker.com/id/1040378
Third Party Advisory, VDB Entry
(af854a3a-2127-422b-91ae-364da2661108)
-
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0822
Patch, Vendor Advisory
(af854a3a-2127-422b-91ae-364da2661108)
-
https://www.exploit-db.com/exploits/44147/
Exploit, Third Party Advisory, VDB Entry
(af854a3a-2127-422b-91ae-364da2661108)