CVE-2018-8589CISA KEVEPSS p85.8%

CVE-2018-8589Microsoft Win32k Privilege Escalation Vulnerability

Microsoft / Win32k

Description

A privilege escalation vulnerability exists when Windows improperly handles calls to Win32k.sys. An attacker who successfully exploited this vulnerability could run remote code in the security context of the local system.

Scoring

EPSS3.05% probability of exploitation · percentile 85.8% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2022-05-23

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Win32k Privilege Escalation Vulnerabilitykev-cve-2018-85890%live

Related by meaning· 1

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.