CVE-2018-8638
CVE-2018-8638
Vexday Risk Score
25Low
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS —EPSS 1.8%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
12 Dec 2018Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Information Disclosure Vulnerability." This affects Windows 10, Windows Server 2019.