An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions, aka Windows Elevation of Privilege Vulnerability. This affects Windows Server 2016, Windows 10, Windows 10 Servers.
The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Windows_10 | Microsoft | 1607 (including) | 1607 (including) |
Windows_10 | Microsoft | 1703 (including) | 1703 (including) |
Windows_10 | Microsoft | 1709 (including) | 1709 (including) |
Windows_10 | Microsoft | 1803 (including) | 1803 (including) |
Windows_server_2016 | Microsoft | * | * |
Windows_server_2016 | Microsoft | 1709 (including) | 1709 (including) |
Windows_server_2016 | Microsoft | 1803 (including) | 1803 (including) |