472 matches found
CVE-2023-21552
Windows GDI Elevation of Privilege Vulnerability...
CVE-2023-21552
Windows GDI Elevation of Privilege Vulnerability...
PT-2023-1139 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in synchronization when using a shared resource in the Windows GDI component. This can allow an attacker to elevate their privileges. The vulnerability affect...
USN-5728-3: Linux kernel (GCP) vulnerabilities
Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-427...
The vulnerability of the Windows GDI component in Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Windows GDI component in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the Windows GDI component of the Windows operating system, which allows attackers to escalate their privileges
The vulnerability of the Windows GDI component of the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges...
USN-5729-2: Linux kernel vulnerabilities
It was discovered that a race condition existed in the instruction emulator of the Linux kernel on Arm 64-bit systems. A local attacker could use this to cause a denial of service system crash. CVE-2022-20422 Hsin-Wei Hung discovered that the BPF subsystem in the Linux kernel contained an...
PT-2025-37606
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the init mtd function within the MTD core subsystem. A resource leak can occur during initialization, potentially leading to errors when registering t...
Microsoft Graphics Device Interface Buffer Overflow (CVE-2019-1439)
A heap-based buffer overflow vulnerability exists in the MF3216 component of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. A remote attacker could exploit the vulnerability by enticing a user to open a specially crafted file and take actions...
Microsoft Graphics Device Interface Remote Code Execution (CVE-2018-8397)
A remote code execution vulnerability exists in the GDI components of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. A remote attacker could exploit the vulnerability by enticing a user to open a specially crafted document...
CVE-2022-34729
Windows GDI Elevation of Privilege Vulnerability...
PT-2022-5657 · Microsoft · Windows Graphics +1
Name of the Vulnerable Software and Affected Versions: Windows Graphics Component affected versions not specified Description: The issue is related to a lack of protection for sensitive data in the Windows Graphics Component. Exploitation of this issue may allow an attacker to disclose protected...
PT-2022-22146 · Wms · Wms
Name of the Vulnerable Software and Affected Versions: WMS version 3.7 Description: The issue allows an attacker to potentially exploit a Path Traversal Vulnerability in the Device API, gaining unauthorized read access to files stored on the server filesystem with the privileges of the running we...
Dell Wyse Management Suite 路径遍历漏洞
Wyse Management Suite is a scalable solution for managing and optimizing Wyse endpoints from Dell, USA. The product includes features such as centralized management of Wyse endpoints, asset tracking and automated device discovery. A security vulnerability exists in Wyse Management Suite version...
CVE-2022-30213
Windows GDI+ Information Disclosure Vulnerability...
Microsoft Windows Graphics Device Interface (GDI) Remote Code Execution Vulnerability
A remote code execution vulnerability exists due to the way the Windows GDI component handles objects in the memory. An attacker who successfully exploits this vulnerability could take control of the affected system...
CVE-2022-29878
A vulnerability has been identified in SICAM T All versions V3.0. Affected devices use a limited range for challenges that are sent during the unencrypted challenge-response communication. An unauthenticated attacker could capture a valid challenge-response pair generated by a legitimate user, an...
Microsoft GDI Remote Code Execution Vulnerability
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system...
CVE-2021-44625
A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in /cloudconfig/clouddevice/info interface, which allows a malicious user to executee arbitrary code on the system via a crafted post request...
USN-5299-1: Linux kernel vulnerabilities
Mathy Vanhoef discovered that the Linux kernel’s WiFi implementation could reassemble mixed encrypted and plaintext fragments. A physically proximate attacker could possibly use this issue to inject packets or exfiltrate selected fragments. CVE-2020-26147 It was discovered that the bluetooth...