2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.2%
An information disclosure vulnerability exists when DirectX improperly handles objects in memory, aka âDirectX Information Disclosure Vulnerability.â This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2008 R2.
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | windows_7 | 32-bit Systems Service Pack 1 | cpe:2.3:o:microsoft:windows_7:32-bit Systems Service Pack 1:*:*:*:*:*:*:* |
microsoft | windows_7 | x64-based Systems Service Pack 1 | cpe:2.3:o:microsoft:windows_7:x64-based Systems Service Pack 1:*:*:*:*:*:*:* |
microsoft | windows_server_2012_r2 | (Server Core installation) | cpe:2.3:o:microsoft:windows_server_2012_r2:(Server Core installation):*:*:*:*:*:*:* |
microsoft | windows_rt_8.1 | Windows RT 8.1 | cpe:2.3:o:microsoft:windows_rt_8.1:Windows RT 8.1:*:*:*:*:*:*:* |
microsoft | windows_server_2012 | (Server Core installation) | cpe:2.3:o:microsoft:windows_server_2012:(Server Core installation):*:*:*:*:*:*:* |
microsoft | windows_8.1 | 32-bit systems | cpe:2.3:o:microsoft:windows_8.1:32-bit systems:*:*:*:*:*:*:* |
microsoft | windows_8.1 | x64-based systems | cpe:2.3:o:microsoft:windows_8.1:x64-based systems:*:*:*:*:*:*:* |
microsoft | windows_server_2008_r2 | Itanium-Based Systems Service Pack 1 | cpe:2.3:o:microsoft:windows_server_2008_r2:Itanium-Based Systems Service Pack 1:*:*:*:*:*:*:* |
microsoft | windows_server_2008_r2 | x64-based Systems Service Pack 1 | cpe:2.3:o:microsoft:windows_server_2008_r2:x64-based Systems Service Pack 1:*:*:*:*:*:*:* |
microsoft | windows_server_2008_r2 | x64-based Systems Service Pack 1 (Server Core installation) | cpe:2.3:o:microsoft:windows_server_2008_r2:x64-based Systems Service Pack 1 (Server Core installation):*:*:*:*:*:*:* |
[
{
"product": "Windows 7",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "32-bit Systems Service Pack 1"
},
{
"status": "affected",
"version": "x64-based Systems Service Pack 1"
}
]
},
{
"product": "Windows Server 2012 R2",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "(Server Core installation)"
}
]
},
{
"product": "Windows RT 8.1",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Windows RT 8.1"
}
]
},
{
"product": "Windows Server 2012",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "(Server Core installation)"
}
]
},
{
"product": "Windows 8.1",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "32-bit systems"
},
{
"status": "affected",
"version": "x64-based systems"
}
]
},
{
"product": "Windows Server 2008 R2",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "Itanium-Based Systems Service Pack 1"
},
{
"status": "affected",
"version": "x64-based Systems Service Pack 1"
},
{
"status": "affected",
"version": "x64-based Systems Service Pack 1 (Server Core installation)"
}
]
}
]
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
23.2%