vulnerability

Microsoft Windows: CVE-2017-8579: DirectX Elevation of Privilege Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Jun 19, 2017	Jun 22, 2017	Sep 5, 2025

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Jun 19, 2017

Added

Jun 22, 2017

Modified

Sep 5, 2025

Description

The DirectX component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted application, aka "DirectX Elevation of Privilege Vulnerability."

Solutions

microsoft-windows-windows_10-1507-kb4022727microsoft-windows-windows_10-1511-kb4022714microsoft-windows-windows_10-1607-kb4022715microsoft-windows-windows_10-1703-kb4022725microsoft-windows-windows_server_2016-1607-kb4022715

References

BID-99212
CVE-2017-8579
https://attackerkb.com/topics/CVE-2017-8579
CWE-281
https://support.microsoft.com/help/4022714
https://support.microsoft.com/help/4022715
https://support.microsoft.com/help/4022725
https://support.microsoft.com/help/4022727

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report