Lucene search
K

472 matches found

OSV
OSV
added 2023/01/10 10:15 p.m.2 views

CVE-2023-21552

Windows GDI Elevation of Privilege Vulnerability...

7.8CVSS7.1AI score0.03537EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/01/10 10:15 p.m.6 views

CVE-2023-21552

Windows GDI Elevation of Privilege Vulnerability...

7.8CVSS7.1AI score0.03537EPSS
Exploits0References3Affected Software25
Positive Technologies
Positive Technologies
added 2023/01/10 12:0 a.m.4 views

PT-2023-1139 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in synchronization when using a shared resource in the Windows GDI component. This can allow an attacker to elevate their privileges. The vulnerability affect...

7CVSS8.1AI score0.00448EPSS
Exploits0References10
Ubuntu
Ubuntu
added 2022/11/29 7:5 p.m.54 views

USN-5728-3: Linux kernel (GCP) vulnerabilities

Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-427...

8.8CVSS7.1AI score0.04947EPSS
Exploits7
BDU FSTEC
BDU FSTEC
added 2022/11/28 12:0 a.m.7 views

The vulnerability of the Windows GDI component in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Windows GDI component in Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.8CVSS8.2AI score0.00968EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/11/25 12:0 a.m.8 views

The vulnerability of the Windows GDI component of the Windows operating system, which allows attackers to escalate their privileges

The vulnerability of the Windows GDI component of the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges...

7.8CVSS7.4AI score0.10529EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2022/11/18 9:16 p.m.65 views

USN-5729-2: Linux kernel vulnerabilities

It was discovered that a race condition existed in the instruction emulator of the Linux kernel on Arm 64-bit systems. A local attacker could use this to cause a denial of service system crash. CVE-2022-20422 Hsin-Wei Hung discovered that the BPF subsystem in the Linux kernel contained an...

7.8CVSS6.9AI score0.00405EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2022/11/07 12:0 a.m.5 views

PT-2025-37606

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the init mtd function within the MTD core subsystem. A resource leak can occur during initialization, potentially leading to errors when registering t...

7.8CVSS6.8AI score0.00591EPSS
Exploits0References414
Check Point Advisories
Check Point Advisories
added 2022/09/18 12:0 a.m.3 views

Microsoft Graphics Device Interface Buffer Overflow (CVE-2019-1439)

A heap-based buffer overflow vulnerability exists in the MF3216 component of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. A remote attacker could exploit the vulnerability by enticing a user to open a specially crafted file and take actions...

4.3CVSS3.8AI score0.75859EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2022/09/18 12:0 a.m.3 views

Microsoft Graphics Device Interface Remote Code Execution (CVE-2018-8397)

A remote code execution vulnerability exists in the GDI components of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. A remote attacker could exploit the vulnerability by enticing a user to open a specially crafted document...

9.3CVSS4.4AI score0.67874EPSS
Exploits0
OSV
OSV
added 2022/09/13 7:15 p.m.2 views

CVE-2022-34729

Windows GDI Elevation of Privilege Vulnerability...

7.8CVSS7.3AI score0.10529EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.2 views

PT-2022-5657 · Microsoft · Windows Graphics +1

Name of the Vulnerable Software and Affected Versions: Windows Graphics Component affected versions not specified Description: The issue is related to a lack of protection for sensitive data in the Windows Graphics Component. Exploitation of this issue may allow an attacker to disclose protected...

5.5CVSS5.8AI score0.03718EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2022/08/10 12:0 a.m.2 views

PT-2022-22146 · Wms · Wms

Name of the Vulnerable Software and Affected Versions: WMS version 3.7 Description: The issue allows an attacker to potentially exploit a Path Traversal Vulnerability in the Device API, gaining unauthorized read access to files stored on the server filesystem with the privileges of the running we...

6.5CVSS6.2AI score0.00701EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/08/10 12:0 a.m.3 views

Dell Wyse Management Suite 路径遍历漏洞

Wyse Management Suite is a scalable solution for managing and optimizing Wyse endpoints from Dell, USA. The product includes features such as centralized management of Wyse endpoints, asset tracking and automated device discovery. A security vulnerability exists in Wyse Management Suite version...

6.5CVSS6.5AI score0.00701EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/12 11:15 p.m.1 views

CVE-2022-30213

Windows GDI+ Information Disclosure Vulnerability...

5.5CVSS6.7AI score0.007EPSS
Exploits0References3Affected Software25
CISA KEV Catalog
CISA KEV Catalog
added 2022/05/25 12:0 a.m.26 views

Microsoft Windows Graphics Device Interface (GDI) Remote Code Execution Vulnerability

A remote code execution vulnerability exists due to the way the Windows GDI component handles objects in the memory. An attacker who successfully exploits this vulnerability could take control of the affected system...

9.3CVSS3.8AI score0.68684EPSS
In wildExploits0
OSV
OSV
added 2022/05/20 1:15 p.m.3 views

CVE-2022-29878

A vulnerability has been identified in SICAM T All versions V3.0. Affected devices use a limited range for challenges that are sent during the unencrypted challenge-response communication. An unauthenticated attacker could capture a valid challenge-response pair generated by a legitimate user, an...

7.5CVSS7.2AI score0.01018EPSS
Exploits0References3
CISA KEV Catalog
CISA KEV Catalog
added 2022/03/25 12:0 a.m.18 views

Microsoft GDI Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system...

9.3CVSS4.3AI score0.21713EPSS
In wildExploits0
Cvelist
Cvelist
added 2022/03/09 9:31 p.m.20 views

CVE-2021-44625

A Buffer Overflow vulnerability exists in TP-LINK WR-886N 20190826 2.3.8 in /cloudconfig/clouddevice/info interface, which allows a malicious user to executee arbitrary code on the system via a crafted post request...

9.5AI score0.01755EPSS
Exploits1References1
Ubuntu
Ubuntu
added 2022/02/22 10:16 a.m.145 views

USN-5299-1: Linux kernel vulnerabilities

Mathy Vanhoef discovered that the Linux kernel’s WiFi implementation could reassemble mixed encrypted and plaintext fragments. A physically proximate attacker could possibly use this issue to inject packets or exfiltrate selected fragments. CVE-2020-26147 It was discovered that the bluetooth...

7.8CVSS8.2AI score0.07604EPSS
Exploits6
Rows per page
Query Builder