Unrated severityCISA KEVNVD Advisory· Published Aug 15, 2018· Updated Oct 21, 2025

CVE-2018-8406

Description

An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8400, CVE-2018-8401, CVE-2018-8405.

Affected products

Microsoft/Windows 10v5
Range: 32-bit Systems
Microsoft/Windows 10 Serversv5
Range: version 1709 (Server Core Installation)
Microsoft/Windows Server 2016v5
Range: (Server Core installation)

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/105012mitrevdb-entryx_refsource_BID
www.securitytracker.com/id/1041461mitrevdb-entryx_refsource_SECTRACK
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8406mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.040
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.060