CVE-2018-8639CISA KEVEPSS p97.4%

CVE-2018-8639Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability

Microsoft / Windows

Description

Microsoft Windows Win32k contains an improper resource shutdown or release vulnerability that allows for local, authenticated privilege escalation. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.

Scoring

EPSS22.35% probability of exploitation · percentile 97.4% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2025-03-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Windows Win32k Improper Resource Shutdown or Release Vulnerabilitykev-cve-2018-86390%live

Related by meaning· 2

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Microsoft Win32k Privilege Escalation Vulnerability
CVE
Microsoft Windows Kernel Privilege Escalation Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.