Lucene search
K

398 matches found

ATTACKERKB
ATTACKERKB
added 2022/07/12 11:15 p.m.1 views

CVE-2022-30213

Windows GDI+ Information Disclosure Vulnerability...

5.5CVSS6.7AI score0.007EPSS
Exploits0References3Affected Software25
CISA KEV Catalog
CISA KEV Catalog
added 2022/05/25 12:0 a.m.26 views

Microsoft Windows Graphics Device Interface (GDI) Remote Code Execution Vulnerability

A remote code execution vulnerability exists due to the way the Windows GDI component handles objects in the memory. An attacker who successfully exploits this vulnerability could take control of the affected system...

9.3CVSS3.8AI score0.68684EPSS
In wildExploits0
CISA KEV Catalog
CISA KEV Catalog
added 2022/03/25 12:0 a.m.18 views

Microsoft GDI Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system...

9.3CVSS4.3AI score0.21713EPSS
In wildExploits0
BDU FSTEC
BDU FSTEC
added 2022/02/16 12:0 a.m.6 views

The vulnerability of the Windows GDI component in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Windows GDI component in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

7CVSS7.3AI score0.0078EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/02/16 12:0 a.m.6 views

The vulnerability of the Windows GDI component in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Windows GDI component in Windows operating systems is related to the disclosure of information in the erroneous data area. Exploiting this vulnerability can allow an attacker, working remotely, to gain unauthorized access to protected information...

7.5CVSS7.3AI score0.035EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/01/12 12:0 a.m.4 views

The vulnerability of the Windows GDI component in Microsoft Windows operating systems allows attackers to escalate their privileges and execute arbitrary code.

The vulnerability of the Windows GDI component in Microsoft Windows systems is related to deficiencies in access control when processing raster objects. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary code...

7.8CVSS7.5AI score0.00982EPSS
Exploits0References7
OSV
OSV
added 2022/01/11 9:15 p.m.0 views

CVE-2022-21904

Windows GDI Information Disclosure Vulnerability...

7.5CVSS5.8AI score0.035EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/01/11 9:15 p.m.4 views

CVE-2022-21903

Windows GDI Elevation of Privilege Vulnerability...

7.8CVSS7.2AI score0.0078EPSS
Exploits0References3Affected Software21
ATTACKERKB
ATTACKERKB
added 2022/01/11 9:15 p.m.5 views

CVE-2022-21880

Windows GDI+ Information Disclosure Vulnerability...

7.8CVSS7.2AI score0.03883EPSS
Exploits0References3Affected Software26
Positive Technologies
Positive Technologies
added 2022/01/11 12:0 a.m.2 views

PT-2022-1564 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an information disclosure in the Windows GDI component, which can allow a remote attacker to gain unauthorized access to protected information. This can potentially...

7.5CVSS9.2AI score0.035EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2022/01/11 12:0 a.m.2 views

PT-2022-1521 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient access controls in the Windows GDI+ component, which can be exploited to disclose protected information. This can allow an attacker to obtain sensitive...

6.8CVSS9AI score0.02738EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2021/11/15 12:0 a.m.7 views

The vulnerability of the GDI component in Windows operating systems allows attackers to execute arbitrary code.

The vulnerability of the Windows Graphics Device Interface GDI component in operating systems is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created web page from a remote location...

10CVSS8.2AI score0.68684EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/11/11 10:7 a.m.4 views

freerdp: improper region checks in all clients allow out of bound write to memory

A flaw was found in the FreeRDP client where it fails to validate input data when using connections with GDI or SurfaceCommands. This flaw could allow a malicious server sending graphics updates to a client to cause an out of bounds write in client memory using a specially crafted input. The...

8.8CVSS7.5AI score0.01553EPSS
Exploits0References4
OSV
OSV
added 2021/10/21 7:15 p.m.1 views

DEBIAN-CVE-2021-41160

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. In affected versions a malicious server might trigger out of bound writes in a connected client. Connections using GDI or SurfaceCommands to send graphics updates to the client might send 0...

8.8CVSS6.6AI score0.01553EPSS
Exploits0References1
OSV
OSV
added 2021/10/21 7:15 p.m.1 views

UBUNTU-CVE-2021-41160

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. In affected versions a malicious server might trigger out of bound writes in a connected client. Connections using GDI or SurfaceCommands to send graphics updates to the client might send 0...

8.8CVSS6.7AI score0.01553EPSS
Exploits0References4
OSV
OSV
added 2021/07/14 6:15 p.m.1 views

CVE-2021-34496

Windows GDI Information Disclosure Vulnerability...

5.5CVSS5.8AI score0.01836EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/07/13 12:0 a.m.3 views

Microsoft Graphics Component 信息泄露漏洞

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA, Microsoft Windows is an operating system for personal devices, and Microsoft Windows Server is a server operating system. An information disclosure vulnerability exists in GDI in Microsoft Windows/Windo...

5.5CVSS5.6AI score0.0076EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/07/13 12:0 a.m.5 views

Microsoft Windows 资源管理错误漏洞

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA Microsoft Windows is a set of operating systems for personal devices Microsoft Windows Server is a set of server operating systems. An elevation of privilege vulnerability exists in GDI in Microsoft...

7.8CVSS5.5AI score0.00982EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/07/13 12:0 a.m.5 views

Microsoft Graphics Component 信息泄露漏洞

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA.Microsoft Windows is a set of operating systems for personal devices.Microsoft Windows Server is a set of server operating systems. An information disclosure vulnerability exists in GDI in Microsoft...

5.5CVSS5.5AI score0.01836EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/07/13 12:0 a.m.3 views

PT-2021-6041 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the disclosure of protected information in the Windows GDI interface. It allows an attacker to gain unauthorized access to sensitive information. Recommendations: At...

5.5CVSS5.5AI score0.01836EPSS
Exploits0References6
Rows per page
Query Builder