vulnerability

Microsoft Windows: CVE-2017-0189: Win32k Elevation of Privilege Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Apr 11, 2017	Apr 11, 2017	Sep 5, 2025

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Apr 11, 2017

Added

Apr 11, 2017

Modified

Sep 5, 2025

Description

An elevation of privilege vulnerability exists in Windows 10 when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode, aka "Win32k Elevation of Privilege Vulnerability." This CVE ID is unique from CVE-2017-0188.

Solutions

microsoft-windows-windows_10-1507-kb4015221microsoft-windows-windows_10-1511-kb4015219microsoft-windows-windows_10-1607-kb4015217microsoft-windows-windows_10-1703-kb4015583microsoft-windows-windows_server_2016-1607-kb4015217

References

BID-97420
CVE-2017-0189
https://attackerkb.com/topics/CVE-2017-0189
URL-https://support.microsoft.com/help/4015217
URL-https://support.microsoft.com/help/4015219
URL-https://support.microsoft.com/help/4015221
URL-https://support.microsoft.com/help/4015583

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today