Lucene search
K

84 matches found

Kaspersky
Kaspersky
added 2025/08/12 12:0 a.m.6 views

KLA86584 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, spoof user interface, cause denial of service. Below is a complete list of vulnerabilitie...

9.8CVSS10AI score0.36074EPSS
Exploits5References65
CNNVD
CNNVD
added 2025/08/12 12:0 a.m.5 views

Microsoft Windows GDI+ 安全漏洞

Microsoft Windows GDI+ is a graphical device interface for the Windows operating system from Microsoft USA. The software is part of the .NET Framework and is responsible for drawing graphical images and displaying information on screens and printers. A security vulnerability exists in Microsoft...

9.8CVSS7AI score0.06706EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.4 views

KB5063889: Windows 10 LTS 1507 Security Update (August 2025)

The remote Windows host is missing security update 5063889. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network. CVE-2025-53766 - Concurrent execution using shared resource with improper...

9.8CVSS9.3AI score0.36074EPSS
Exploits5References37
RedhatCVE
RedhatCVE
added 2025/05/22 5:18 p.m.3 views

CVE-2020-0964

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'...

9.3CVSS8.8AI score0.16701EPSS
Exploits0References1
CVE
CVE
added 2025/01/14 6:4 p.m.126 views

CVE-2025-21338

CVE-2025-21338 is a GDI+ Remote Code Execution vulnerability. The CVE affects Windows components that use GDI+ and has a CVSSv3.1 base score of 7.8 (HIGH) with LOCAL attack vector, LOW privileges required, no user interaction, and impacts to confidentiality, integrity, and availability as describ...

7.8CVSS7.9AI score0.00479EPSS
Exploits0References1Affected Software17
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.3 views

Microsoft Windows GDI+ 输入验证错误漏洞

Microsoft Windows GDI+ is a graphical device interface for the Windows operating system from Microsoft USA. The software is part of the .NET Framework and is responsible for drawing graphical images and displaying information on screens and printers. An input validation error vulnerability exists...

7.8CVSS8.6AI score0.00479EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/09/12 12:0 a.m.19 views

Microsoft Windows GDI Security Vulnerability

Microsoft Windows GDI+ is a graphical device interface for the Windows operating system from Microsoft USA. The software is part of the .NET Framework and is responsible for drawing graphical images and displaying information on screens and printers. A security vulnerability exists in Microsoft...

7.8CVSS6.4AI score0.01229EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.7 views

Microsoft Windows GDI+ 安全漏洞

Microsoft Windows GDI+ is a graphical device interface for the Windows operating system from Microsoft USA. The software is part of the .NET Framework and is responsible for drawing graphical images and displaying information on screens and printers. A security vulnerability exists in Microsoft...

7.8CVSS8.1AI score0.05829EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:12 a.m.3 views

SUSE CVE-2007-2237

Microsoft Windows Graphics Device Interface GDI+, GdiPlus.dll allows context-dependent attackers to cause a denial of service crash via an ICO file with an InfoHeader containing a Height of zero, which triggers a divide-by-zero error...

7.1CVSS6.7AI score0.15424EPSS
Exploits4References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:7 a.m.3 views

SUSE CVE-2008-3014

Buffer overflow in gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digita...

9.3CVSS8.6AI score0.36722EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2022/11/17 12:0 a.m.9 views

The vulnerability of the Windows GDI+ interface on Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Windows GDI+ graphics device interfaces on Windows operating systems is related to insufficient protection of system data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information using a specially created malicious file...

5.5CVSS6.6AI score0.00723EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/11/08 12:0 a.m.4 views

PT-2022-5494 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient protection of internal data in the Windows GDI+ interface, which can allow an attacker to gain unauthorized access to protected information using a...

5.5CVSS6.1AI score0.00723EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2022/10/11 7:15 p.m.5 views

CVE-2022-33635

Windows GDI+ Remote Code Execution Vulnerability...

7.8CVSS5.9AI score0.00968EPSS
Exploits0References3Affected Software25
BDU FSTEC
BDU FSTEC
added 2022/08/12 12:0 a.m.6 views

The vulnerability of the Windows GDI+ component in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows GDI+ component in Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.5CVSS6.5AI score0.0073EPSS
Exploits0References4
OSV
OSV
added 2022/07/12 11:15 p.m.3 views

CVE-2022-30213

Windows GDI+ Information Disclosure Vulnerability...

5.5CVSS7.3AI score0.0073EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/07/12 12:0 a.m.4 views

PT-2022-4078 · Microsoft · Windows Gdi +1

Name of the Vulnerable Software and Affected Versions: Windows GDI+ affected versions not specified Description: The issue is related to insufficient protection of internal data in the Windows GDI+ component, which can be exploited to gain unauthorized access to protected information. This can...

5.5CVSS6AI score0.0073EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2022/02/25 12:0 a.m.7 views

The vulnerability of the Windows GDI+ component in Windows operating systems allows a perpetrator to gain unauthorized access to the device.

The vulnerability of the Windows GDI+ component in Windows operating systems is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker, acting remotely, to gain unauthorized access to the device...

7.8CVSS7.3AI score0.03883EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/02/10 12:0 a.m.13 views

The vulnerability of the Windows GDI+ component in Windows operating systems allows attackers to disclose sensitive information that is protected by security measures.

The vulnerability of the Windows GDI+ component in Windows operating systems is related to deficiencies in the system’s controlled areas. Exploiting this vulnerability can allow attackers to disclose sensitive information that should be protected...

6.8CVSS6.8AI score0.02738EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/01/11 9:15 p.m.8 views

CVE-2022-21915

Windows GDI+ Information Disclosure Vulnerability...

6.5CVSS6.9AI score0.02738EPSS
Exploits0References3Affected Software26
OSV
OSV
added 2022/01/11 9:15 p.m.3 views

CVE-2022-21880

Windows GDI+ Information Disclosure Vulnerability...

7.5CVSS7.3AI score0.03883EPSS
Exploits0References2
Rows per page
Query Builder