1. Home
  2. CVE Database
  3. CVE-2015-2382
LOW · 2.1

CVE-2015-2382

win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to obtain sensitive information from kernel m...

Vulnerability Description

win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to obtain sensitive information from kernel memory via a crafted application, aka "Win32k Information Disclosure Vulnerability," a different vulnerability than CVE-2015-2381.

CVSS Score

2.1

LOW

AV:L/AC:L/Au:N/C:P/I:N/A:N
Confidentiality
PARTIAL
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
MicrosoftWindows 8-
MicrosoftWindows 8.1-
MicrosoftWindows Rt-
MicrosoftWindows Rt 8.1-
MicrosoftWindows Server 2012-

Related Weaknesses (CWE)

CWE-200

References

FAQ

What is CVE-2015-2382?

CVE-2015-2382 is a vulnerability with a CVSS score of 2.1 (LOW). win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to obtain sensitive information from kernel m...

How severe is CVE-2015-2382?

CVE-2015-2382 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-2382?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 8, Microsoft Windows 8.1, Microsoft Windows Rt, Microsoft Windows Rt 8.1, Microsoft Windows Server 2012.