84 matches found
KLA86584 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, spoof user interface, cause denial of service. Below is a complete list of vulnerabilitie...
Microsoft Windows GDI+ 安全漏洞
Microsoft Windows GDI+ is a graphical device interface for the Windows operating system from Microsoft USA. The software is part of the .NET Framework and is responsible for drawing graphical images and displaying information on screens and printers. A security vulnerability exists in Microsoft...
KB5063889: Windows 10 LTS 1507 Security Update (August 2025)
The remote Windows host is missing security update 5063889. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network. CVE-2025-53766 - Concurrent execution using shared resource with improper...
CVE-2020-0964
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'...
CVE-2025-21338
CVE-2025-21338 is a GDI+ Remote Code Execution vulnerability. The CVE affects Windows components that use GDI+ and has a CVSSv3.1 base score of 7.8 (HIGH) with LOCAL attack vector, LOW privileges required, no user interaction, and impacts to confidentiality, integrity, and availability as describ...
Microsoft Windows GDI+ 输入验证错误漏洞
Microsoft Windows GDI+ is a graphical device interface for the Windows operating system from Microsoft USA. The software is part of the .NET Framework and is responsible for drawing graphical images and displaying information on screens and printers. An input validation error vulnerability exists...
Microsoft Windows GDI Security Vulnerability
Microsoft Windows GDI+ is a graphical device interface for the Windows operating system from Microsoft USA. The software is part of the .NET Framework and is responsible for drawing graphical images and displaying information on screens and printers. A security vulnerability exists in Microsoft...
Microsoft Windows GDI+ 安全漏洞
Microsoft Windows GDI+ is a graphical device interface for the Windows operating system from Microsoft USA. The software is part of the .NET Framework and is responsible for drawing graphical images and displaying information on screens and printers. A security vulnerability exists in Microsoft...
SUSE CVE-2007-2237
Microsoft Windows Graphics Device Interface GDI+, GdiPlus.dll allows context-dependent attackers to cause a denial of service crash via an ICO file with an InfoHeader containing a Height of zero, which triggers a divide-by-zero error...
SUSE CVE-2008-3014
Buffer overflow in gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digita...
The vulnerability of the Windows GDI+ interface on Windows operating systems allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of Windows GDI+ graphics device interfaces on Windows operating systems is related to insufficient protection of system data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information using a specially created malicious file...
PT-2022-5494 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient protection of internal data in the Windows GDI+ interface, which can allow an attacker to gain unauthorized access to protected information using a...
CVE-2022-33635
Windows GDI+ Remote Code Execution Vulnerability...
The vulnerability of the Windows GDI+ component in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of the Windows GDI+ component in Windows operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...
CVE-2022-30213
Windows GDI+ Information Disclosure Vulnerability...
PT-2022-4078 · Microsoft · Windows Gdi +1
Name of the Vulnerable Software and Affected Versions: Windows GDI+ affected versions not specified Description: The issue is related to insufficient protection of internal data in the Windows GDI+ component, which can be exploited to gain unauthorized access to protected information. This can...
The vulnerability of the Windows GDI+ component in Windows operating systems allows a perpetrator to gain unauthorized access to the device.
The vulnerability of the Windows GDI+ component in Windows operating systems is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker, acting remotely, to gain unauthorized access to the device...
The vulnerability of the Windows GDI+ component in Windows operating systems allows attackers to disclose sensitive information that is protected by security measures.
The vulnerability of the Windows GDI+ component in Windows operating systems is related to deficiencies in the system’s controlled areas. Exploiting this vulnerability can allow attackers to disclose sensitive information that should be protected...
CVE-2022-21915
Windows GDI+ Information Disclosure Vulnerability...
CVE-2022-21880
Windows GDI+ Information Disclosure Vulnerability...