← back
CVE-2016-0040highunder attack

CVE-2016-0040

93Vexday Risk Score

Patch now. It under exploitation confirmed by CISA and has a working public exploit.

ssvc Actcvss 7.8epss 25%
from disclosure to weapon16 days
Published on NVDFeb 10
1st PoC+16d
metasploitDec 4
CISA KEV+2238d
exploitation probability
25%top 2% of all CVEs
observed exploitation
yesCISA + VulnCheck
5 public exploit(s)
Action required by CISAfederal deadline: 2022-04-18

Apply updates per vendor instructions.

In short

A flaw in the Windows kernel allows a local user to run a specially crafted program that gives them higher system privileges than they should have. This is dangerous because it lets an attacker take full control of the computer.

Technical detail

A privilege escalation vulnerability in the Windows kernel (Vista SP2, Server 2008 SP2/R2 SP1, Windows 7 SP1) allows a local attacker to execute a malicious application that exploits insufficient validation in kernel mode operations, resulting in elevation to SYSTEM privileges. The attack requires local code execution capability but grants unrestricted kernel-level access.

Summary generated and translated by AI from the official description.
The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to gain privileges via a crafted application, aka "Windows Elevation of Privilege Vulnerability."
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.