CVE-2016-3309
| CVE Published | 2016-08-09 |
|---|---|
| Related Vendor(s) | microsoft |
| Related Product(s) | windows_10_1507, windows_8.1, windows_server_2008, windows_server_2012, windows_10, windows_vista, windows_10_1607, windows_10_1511, windows_7, windows_rt_8.1 |
| Exploitation Reported (CISA KEV) | 2022-03-15 |
| CVSS 3 Base Score | 7.8 (HIGH) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | LOCAL |
The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-3308, CVE-2016-3310, and CVE-2016-3311.
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph