CVE Identifier: CVE-2017-11831 Vulnerability Type: Security Vulnerability Release Date: Nov 14, 2017 Assigning CNA: Microsoft CVE.org Link: CVE-2017-11831 Executive Summary: When the Windows kernel fails to properly initialize a memory address, an information disclosure vulnerability exists. A successful exploit could allow an attacker to obtain information that could then be used to further compromise the user's system. To do so, an attacker would need to log on to an affected system and run a specially crafted application. The security update addresses this vulnerability by correcting how the Windows kernel initializes memory. Exploitability: - Publicly Disclosed: No - Exploited: No - Exploitability Assessment: Exploitation More Likely Acknowledgements: Mateusz Jurczyk of Google Project Zero was recognized for discovering this vulnerability.