|Number of vulnerabilities||1|
|CVE ID|| CVE-2018-8611
|Public exploit||This vulnerability is being exploited in the wild.|
|Vulnerable software versions||
Windows Server 2012
Windows Server 2012 R2
Windows Server 2008
The vulnerability allows a local user to execute arbitrary code with elevated privileges.
The vulnerability exists due to a race condition within the Kernel Transaction Manager driver (ntoskrnl.exe) when processing transacted file operations in kernel mode. A local user can create a specially program, and run arbitrary code on the system n kernel mode.
Note: the vulnerability is being exploited in the wild.
Install updates from vendor's website.External links