CVE-2016-7271

EUVD-2016-8127
The Secure Kernel Mode implementation in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allows local users to bypass the virtual trust level (VTL) protection mechanism via a crafted application, aka "Secure Kernel Mode Elevation of Privilege Vulnerability."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 30%
Affected Products (NVD)
VendorProductVersion
microsoftwindows_10
-
microsoftwindows_server_2016
*
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
(x64, x86)
KB3205383
1511 (x64, x86)
KB3205386
1607 (x64, x86)
KB3206632
Windows Server 2016
Server Core
KB3206632
Standard
KB3206632
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/94734
http://www.securitytracker.com/id/1037451
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-150
http://www.securityfocus.com/bid/94734
http://www.securitytracker.com/id/1037451
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-150