Is CVE-2018-1038 known to be exploited?

37 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Microsoft Corporation Windows

CVE-2018-1038

The Windows kernel in Windows 7 SP1 and Windows Server 2008 R2 SP1 allows an elevation of privilege vulnerability due to the way it handles objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability."

EPSS: 0.613 (98.3th percentile) — read the EPSS interpretation.

Affected products

Microsoft Corporation Windows — versions Windows 7 SP1 and Windows Server 2008 R2 SP1

Public proof-of-concept exploits

References

103549 (vdb-entry, x_refsource_BID)
44581 (exploit, x_refsource_EXPLOIT-DB)
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1038 (x_refsource_CONFIRM)
blog.xpnsec.com/total-meltdown-cve-2018-1038/ (x_refsource_MISC)
1040632 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2018-1038?: CVE-2018-1038 is a vulnerability in Microsoft Corporation Windows. Published 2018-04-02.
Is CVE-2018-1038 known to be exploited?: 37 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.