Attacker Value

Unknown

(0 users assessed)

Exploitability

Unknown

(0 users assessed)

User Interaction

Unknown

Privileges Required

Unknown

Attack Vector

Unknown

CVE-2018-8120

Disclosure Date: May 09, 2018 •

CVE-2018-8120

Exploited in the Wild

Reported by AttackerKB Worker and 2 more...
View Source Details

Metasploit Module

Windows SetImeInfoEx Win32k NULL Pointer Dereference

Description

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka “Win32k Elevation of Privilege Vulnerability.” This affects Windows Server 2008, Windows 7, Windows Server 2008 R2. This CVE ID is unique from CVE-2018-8124, CVE-2018-8164, CVE-2018-8166.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

None

Impact Score:

Unknown

Exploitability Score:

Unknown

Vector:

Unknown

Attack Vector (AV):

Unknown

Attack Complexity (AC):

Unknown

Privileges Required (PR):

Unknown

User Interaction (UI):

Unknown

Scope (S):

Unknown

Confidentiality (C):

Unknown

Integrity (I):

Unknown

Availability (A):

Unknown

Vendors

microsoft

Products

windows 7 -,
windows server 2008 -,
windows server 2008 r2

Metasploit Modules

Windows SetImeInfoEx Win32k NULL Pointer Dereference (https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/ms18_8120_win32k_privesc.rb)

Exploited in the Wild

Reported by:

AttackerKB Worker

Reported: September 25, 2020 8:39pm UTC (4 years ago)

gwillcox-r7 indicated sources as

Government or Industry Alert (https://www.cisa.gov/sites/default/files/publications/202008131030_COVID-19%20Cyber%20Threats%20Update_TLP_WHITE.pdf)
Threat Feed (https://www.cisa.gov/uscert/ncas/current-activity/2022/03/15/cisa-adds-15-known-exploited-vulnerability-catalog)
News Article or Blog (https://www.tenable.com/blog/contileaks-chats-reveal-over-30-vulnerabilities-used-by-conti-ransomware-affiliates)

Reported: November 03, 2021 3:51pm UTC (3 years ago) • Edited 2 years ago

AttackerKB Worker indicated source as Government or Industry Alert (https://www.cisa.gov/known-exploited-vulnerabilities-catalog)

Reported: November 08, 2024 8:19am UTC (1 month ago)

References

Canonical

CVE-2018-8120 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8120)

BID-104034 (http://www.securityfocus.com/bid/104034)

Advisory

EXPLOIT-DB-45653 (https://www.exploit-db.com/exploits/45653)

SECTRACK-1040849 (http://www.securitytracker.com/id/1040849)

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8120

Rapid7

Unknown

CVE-2018-8120

Unknown

Unknown

Unknown

Unknown

Unknown

CVE-2018-8120

Description