Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2016-7255

Microsoft | Win32kAdded 2021-11-03Remediation Deadline 2022-05-03

Microsoft Win32k Privilege Escalation Vulnerability

Microsoft Win32k kernel-mode driver fails to properly handle objects in memory which allows for privilege escalation. Successful exploitation allows an attacker to run code in kernel mode.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-264

References