Vulnerability detail
Enriched intelligence for a single CVE
High
CVE-2018-8120
PUBLISHEDAn elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k...
- Vendor
- Microsoft
- Product
- Windows Server 2008, Windows 7, Windows Server 2008 R2
- Published
- May 09, 2018
- EPSS
- —
Description
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows Server 2008, Windows 7, Windows Server 2008 R2. This CVE ID is unique from CVE-2018-8124, CVE-2018-8164, CVE-2018-8166.
CVSS scores
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
AV:L/AC:L/Au:N/C:C/I:C/A:C
SSVC decision points
- Exploitation
- active
- Automatable
- No
- Technical impact
- total
Known exploited vulnerability sources
Catalogues that list this CVE as a known exploited vulnerability.
| Source | Added |
|---|---|
| CISA | Mar 15, 2022 |
Scanner integrations
| Scanner | Reference | Detected |
|---|---|---|
| Metasploit | https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/ms18_8120_win32k_privesc.rb | Apr 28, 2025 |
Potential proof of concepts
These PoCs are unverified and could contain malware. Use at your own risk.
github · Created 2018-12-19 10:58:55 UTC · 0 stars
github · Created 2018-08-16 10:51:00 UTC · 1 stars
CVE-2018-8120 Windows LPE exploit
github · Created 2018-06-07 08:30:07 UTC · 293 stars
CVE-2018-8120 Exploit for Win2003 Win2008 WinXP Win7
github · Created 2018-05-19 02:43:15 UTC · 497 stars
CVE-2018-8120 Windows LPE exploit
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Exploit Used in Malware
-
Added to KEVIntel
-
Detected by Metasploit