Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-0816

EPSS 1.13% · P78
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-0816

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The Windows Graphics Device Interface (GDI) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows GDI Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-0815 and CVE-2018-0817.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Windows Graphics Device Interface 权限许可和访问控制问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Windows Server 2008 SP2等都是美国微软(Microsoft)公司的一系列操作系统。Windows Graphics Device Interface(GDI)是其中的一个应用程序接口,它的主要任务是负责系统与绘图程序之间的信息交换,以及处理所有Windows程序的图形输出。 Microsoft Windows GDI中存在提权漏洞。本地攻击者可利用该漏洞在内核模式下执行任意代码。以下系统版本受到影响:Microsoft Windows Server 2008 SP
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
Microsoft CorporationWindows Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 -

II. Public POCs for CVE-2018-0816

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2018-0816

登录查看更多情报信息。

Same Patch Batch · Microsoft Corporation · 2018-03-14 · 74 CVEs total

CVE-2018-0916Microsoft Project Server和SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0940Microsoft Exchange Outlook Web Access 权限许可和访问控制问题漏洞
CVE-2018-0926Microsoft Windows kernel 信息泄露漏洞
CVE-2018-0925Microsoft ChakraCore 缓冲区错误漏洞
CVE-2018-0924Microsoft Exchange Server 信息泄露漏洞
CVE-2018-0923Microsoft SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0922Microsoft Office 缓冲区错误漏洞
CVE-2018-0921Microsoft SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0919Microsoft Office 信息泄露漏洞
CVE-2018-0917Microsoft SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0927Microsoft Internet Explorer和Edge 信息泄露漏洞
CVE-2018-0915Microsoft Project Server和SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0914Microsoft Project Server和SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0913Microsoft Project Server和SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0912Microsoft Project Server和SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0911Microsoft Project Server和SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0910Microsoft Project Server和SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0909Microsoft Project Server和SharePoint Enterprise Server 权限许可和访问控制问题漏洞
CVE-2018-0907Microsoft Office 安全漏洞
CVE-2018-0904Microsoft Windows kernel 信息泄露漏洞

Showing top 20 of 74 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Windows
Same vendor: Microsoft Corporation

V. Comments for CVE-2018-0816

No comments yet

Leave a comment