Low severity3.3NVD Advisory· Published Apr 12, 2017· Updated May 13, 2026

CVE-2017-0188

Description

A Win32k information disclosure vulnerability exists in Windows 8.1, Windows RT 8.1, Windows Server 2012, Windows Server 2012 R2, Windows 10, and Windows Server 2016 when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system, aka "Win32k Information Disclosure Vulnerability." This CVE ID is unique from CVE-2017-0189.

Affected products

Microsoft/Windows Server 2012llm-fuzzy
Microsoft/Windows 8.1llm-fuzzy
Microsoft/Windows 10 1909llm-fuzzy
Microsoft/Windowsv5
Range: Windows 8.1, Windows RT 8.1, Windows Server 2012, Windows Server 2012 R2, Windows 10, and Windows Server 2016

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0188nvdMitigationPatchVendor Advisory
www.securityfocus.com/bid/97475nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1038239nvd

News mentions

No linked articles in our index yet.

cvss	0.214
epss	0.004
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000