### [CVE-2018-8120](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8120) ![](https://img.shields.io/static/v1?label=Product&message=Windows%207&color=blue) ![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008%20R2&color=blue) ![](https://img.shields.io/static/v1?label=Product&message=Windows%20Server%202008&color=blue) ![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) ![](https://img.shields.io/static/v1?label=Vulnerability&message=Elevation%20of%20Privilege&color=brighgreen) ### Description An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows Server 2008, Windows 7, Windows Server 2008 R2. This CVE ID is unique from CVE-2018-8124, CVE-2018-8164, CVE-2018-8166. ### POC #### Reference - https://www.exploit-db.com/exploits/45653/ - https://www.exploit-db.com/exploits/45653/ #### Github - https://github.com/0xT11/CVE-POC - https://github.com/1o24er/RedTeam - https://github.com/20142995/sectool - https://github.com/ARPSyndicate/cvemon - https://github.com/ASR511-OO7/windows-kernel-exploits - https://github.com/Al1ex/APT-GUID - https://github.com/Al1ex/Red-Team - https://github.com/Al1ex/WindowsElevation - https://github.com/Apri1y/Red-Team-links - https://github.com/Ascotbe/Kernelhub - https://github.com/CVEDB/PoC-List - https://github.com/CVEDB/awesome-cve-repo - https://github.com/CVEDB/top - https://github.com/Charseki/Bookmarks - https://github.com/CnHack3r/Penetration_PoC - https://github.com/Cruxer8Mech/Idk - https://github.com/DreamoneOnly/CVE-2018-8120 - https://github.com/EVOL4/CVE-2018-8120 - https://github.com/EchoGin404/- - https://github.com/EchoGin404/gongkaishouji - https://github.com/Echocipher/Resource-list - https://github.com/GhostTroops/TOP - https://github.com/HacTF/poc--exp - https://github.com/Hacker-One/WindowsExploits - https://github.com/JERRY123S/all-poc - https://github.com/Jkrasher/WindowsThreatResearch_JKrasher - https://github.com/L1ves/windows-pentesting-resources - https://github.com/LegendSaber/exp - https://github.com/Micr067/windows-kernel-exploits - https://github.com/Mr-xn/Penetration_Testing_POC - https://github.com/MrTcsy/Exploit - https://github.com/Neo01010/windows-kernel-exploits - https://github.com/Ondrik8/RED-Team - https://github.com/Ostorlab/KEV - https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors - https://github.com/QChiLan/win-exploit - https://github.com/S3cur3Th1sSh1t/WinPwn - https://github.com/SecWiki/windows-kernel-exploits - https://github.com/SexurityAnalyst/WinPwn - https://github.com/SexyBeast233/SecBooks - https://github.com/Smi1eSEC/Web-Security-Note - https://github.com/SofianeHamlaoui/Conti-Clear - https://github.com/SomUrim/windows-kernel-exploits-clone - https://github.com/StartZYP/CVE-2018-8120 - https://github.com/ThunderJie/CVE - https://github.com/Tyro-Shan/gongkaishouji - https://github.com/Y0n0Y/cve-2018-8120-exp - https://github.com/YIXINSHUWU/Penetration_Testing_POC - https://github.com/ZTK-009/Penetration_PoC - https://github.com/ZTK-009/windows-kernel-exploits - https://github.com/albinjoshy03/windows-kernel-exploits - https://github.com/alian87/windows-kernel-exploits - https://github.com/alpha1ab/CVE-2018-8120 - https://github.com/anquanscan/sec-tools - https://github.com/areuu/CVE-2018-8120 - https://github.com/asr511/windows-kernel-exploits - https://github.com/bigric3/cve-2018-8120 - https://github.com/cyberanand1337x/bug-bounty-2022 - https://github.com/demilson/Windows - https://github.com/demonsec666/Security-Toolkit - https://github.com/distance-vector/window-kernel-exp - https://github.com/dk47os3r/hongduiziliao - https://github.com/emtee40/win-pwn - https://github.com/fei9747/WindowsElevation - https://github.com/geeksniper/windows-privilege-escalation - https://github.com/hack-parthsharma/WinPwn - https://github.com/hasee2018/Penetration_Testing_POC - https://github.com/hasee2018/Safety-net-information - https://github.com/hectorgie/PoC-in-GitHub - https://github.com/hktalent/TOP - https://github.com/hktalent/bug-bounty - https://github.com/hudunkey/Red-Team-links - https://github.com/huike007/penetration_poc - https://github.com/huike007/poc - https://github.com/hwiwonl/dayone - https://github.com/jbmihoub/all-poc - https://github.com/john-80/-007 - https://github.com/k0imet/CVE-POCs - https://github.com/kdandy/WinPwn - https://github.com/landscape2024/RedTeam - https://github.com/lawbyte/Windows-and-Active-Directory - https://github.com/leeqwind/HolicPOC - https://github.com/lions2012/Penetration_Testing_POC - https://github.com/lnick2023/nicenice - https://github.com/lp008/Hack-readme - https://github.com/lyshark/Windows-exploits - https://github.com/mishmashclone/SecWiki-windows-kernel-exploits - https://github.com/n3masyst/n3masyst - https://github.com/n8v79a/win-exploit - https://github.com/ne1llee/cve-2018-8120 - https://github.com/netkid123/WinPwn-1 - https://github.com/nicolas-gagnon/windows-kernel-exploits - https://github.com/nobiusmallyu/kehai - https://github.com/ozkanbilge/CVE-2018-8120 - https://github.com/paramint/windows-kernel-exploits - https://github.com/password520/Penetration_PoC - https://github.com/password520/windows-kernel-exploits - https://github.com/pwninx/WinPwn - https://github.com/qazbnm456/awesome-cve-poc - https://github.com/qiantu88/CVE-2018-8120 - https://github.com/qiantu88/cve - https://github.com/qq431169079/HackTool - https://github.com/redteampa1/Windows - https://github.com/renzu0/Windows-exp - https://github.com/reph0r/poc-exp - https://github.com/reph0r/poc-exp-tools - https://github.com/retr0-13/WinPwn - https://github.com/rip1s/CVE-2018-8120 - https://github.com/root26/bug - https://github.com/safesword/WindowsExp - https://github.com/seeu-inspace/easyg - https://github.com/slimdaddy/RedTeam - https://github.com/suljov/Windows-and-Active-Directory - https://github.com/suljov/Windwos-and-Active-Directory - https://github.com/svbjdbk123/- - https://github.com/twensoo/PersistentThreat - https://github.com/uhub/awesome-cpp - https://github.com/unamer/CVE-2018-8120 - https://github.com/valentinoJones/Windows-Kernel-Exploits - https://github.com/washgo/HackTool - https://github.com/wateroot/poc-exp - https://github.com/weeka10/-hktalent-TOP - https://github.com/wikiZ/cve-2018-8120 - https://github.com/winterwolf32/CVE-S---Penetration_Testing_POC- - https://github.com/xbl3/awesome-cve-poc_qazbnm456 - https://github.com/xfinest/windows-kernel-exploits - https://github.com/xiaoZ-hc/redtool - https://github.com/xuetusummer/Penetration_Testing_POC - https://github.com/ycdxsb/WindowsPrivilegeEscalation - https://github.com/yedada-wei/- - https://github.com/yedada-wei/gongkaishouji - https://github.com/yige666/windows-kernel-exploits - https://github.com/yisan1/hh - https://github.com/yiyebuhuijia/windows-kernel-exploits - https://github.com/yut0u/RedTeam-BlackBox - https://github.com/zyjsuper/windows-kernel-exploits