Vulnerability Details : CVE-2018-8405
Used for ransomware!
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8400, CVE-2018-8401, CVE-2018-8406.
Vulnerability category: Gain privilege
Products affected by CVE-2018-8405
- cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_1709:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_1803:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*
- cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*
- cpe:2.3:o:microsoft:windows_10_1703:-:*:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_10_1703:-:*:*:*:*:*:x86:*
- cpe:2.3:o:microsoft:windows_10_1709:-:*:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_10_1709:-:*:*:*:*:*:x86:*
- cpe:2.3:o:microsoft:windows_10_1803:-:*:*:*:*:*:x64:*
- cpe:2.3:o:microsoft:windows_10_1803:-:*:*:*:*:*:x86:*
CVE-2018-8405 is in the CISA Known Exploited Vulnerabilities Catalog
This issue is known to have been leveraged as part of a ransomware campaign.
CISA vulnerability name:
Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability
CISA required action:
Apply updates per vendor instructions.
CISA description:
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory.
Notes:
https://nvd.nist.gov/vuln/detail/CVE-2018-8405
Added on
2022-03-28
Action due date
2022-04-18
Exploit prediction scoring system (EPSS) score for CVE-2018-8405
14.91%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 94 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-8405
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST | |
|
7.8
|
HIGH | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST | |
|
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
134c704f-9b21-4f2e-91b3-4a467353bcc0 | 2025-02-07 |
|
7.8
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST | 2025-04-10 |
CWE ids for CVE-2018-8405
-
The product does not release or incorrectly releases a resource before it is made available for re-use.Assigned by:
- 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
- nvd@nist.gov (Primary)
References for CVE-2018-8405
-
http://www.securitytracker.com/id/1041461
Microsoft DirectX Graphics Kernel Driver Bugs Let Local Users Gain Elevated Privileges - SecurityTrackerBroken Link;Third Party Advisory;VDB Entry
-
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8405
CVE-2018-8405 | DirectX Graphics Kernel Elevation of Privilege VulnerabilityPatch;Vendor Advisory
-
http://www.securityfocus.com/bid/105011
Microsoft Windows DirectX Graphics Kernel CVE-2018-8405 Local Privilege Escalation VulnerabilityBroken Link;Third Party Advisory;VDB Entry
Jump to