CVE-2018-8592 - An elevation of privilege vulnerability exists in Windows 10 version 1809 when installed from physic

CVE-2018-8592

Summary

An elevation of privilege vulnerability exists in Windows 10 version 1809 when installed from physical media (USB, DVD, etc, aka "Windows Elevation Of Privilege Vulnerability." This affects Windows 10, Windows Server 2019.

References

http://www.securityfocus.com/bid/105809
http://www.securitytracker.com/id/1042126
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8592

Vulnerable Configurations

cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*

CVSS

Base:	6.9 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:M/Au:N/C:C/I:C/A:C

refmap via4

bid	105809
confirm	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8592
sectrack	1042126

Last major update

03-10-2019 - 00:03

Published

14-11-2018 - 01:29

Last modified

03-10-2019 - 00:03