High severity7.8NVD Advisory· Published Apr 12, 2017· Updated May 13, 2026

CVE-2017-0189

Description

An elevation of privilege vulnerability exists in Windows 10 when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode, aka "Win32k Elevation of Privilege Vulnerability." This CVE ID is unique from CVE-2017-0188.

Affected products

Microsoft/Windowsv5
Range: Windows 10

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0189nvdPatchVendor Advisory
www.securityfocus.com/bid/97420nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1038239nvd

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000