Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability

When

2025-03-03 00:00 UTC · day precision

Where

Global (internet)

Category

cyber_exploit · ransomware

Microsoft Windows Win32k contains an improper resource shutdown or release vulnerability that allows for local, authenticated privilege escalation. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.

Involved actors & entities

People, organizations and places machine-extracted from the source reporting — they power search and the correlation graph. Extracted automatically, so they can include noise, especially on events still marked unverified.

• Microsoft
• Windows
• CVE-2018-8639

Sources

• CISA ↗ · first seen 2025-03-03 00:00 UTC

Defaxon links out to the original reporting and never republishes article text.

Correlated events

Computed by the Defaxon correlation engine — linked by shared actors, co-location, and temporal proximity. Scored hypotheses, never causal claims.

No correlated events found in the current window. As more events arrive, connections form automatically.

← Back to the live map