CVE-2025-49743

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

CVE-2025-49743

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

CVE-2025-50165 Windows Graphics Component Remote Code Execution Vulnerability

...

CVE-2025-50165

CVE-2025-50165 targets the Windows/Microsoft Graphics Component through an untrusted pointer dereference in JPEG decoding, enabling remote code execution. Exploitation relies on specially crafted images (e.g., JPEG metadata segments) to trigger code execution without user interaction on affected ...

CVE-2025-50165 Windows Graphics Component Remote Code Execution Vulnerability

...

CVE-2025-49743 Windows Graphics Component Elevation of Privilege Vulnerability

...

CVE-2025-49743 Windows Graphics Component Elevation of Privilege Vulnerability

...

CVE-2025-49743

CVE-2025-49743 is a local privilege-escalation vulnerability in the Microsoft Graphics Component caused by a race condition due to improper synchronization when a shared resource is accessed concurrently. The issue affects Windows graphics-related code paths and can let an authorized, local attac...

Windows Graphics Component Remote Code Execution Vulnerability

Untrusted pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network...

Windows Graphics Component Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

KB5063899: Windows Server version 23H2 Security Update (August 2025)

The remote Windows host is missing security update 5063899. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network. CVE-2025-53766 - Missing synchronization in Windows Hyper-V allows an...

KB5063889: Windows 10 LTS 1507 Security Update (August 2025)

The remote Windows host is missing security update 5063889. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network. CVE-2025-53766 - Concurrent execution using shared resource with improper...

KB5063927: Windows Server 2008 R2 Security Update (August 2025)

The remote Windows host is missing security update 5063927. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network. CVE-2025-53766 - Concurrent execution using shared resource with improper...

KB5063948: Windows Server 2008 Security Update (August 2025)

The remote Windows host is missing security update 5063948. It is, therefore, affected by multiple vulnerabilities - Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network. CVE-2025-53766 - Concurrent execution using shared resource with improper...

Microsoft Graphics Component 安全漏洞

Microsoft Graphics Component is a graphics driver component from Microsoft Corporation USA. A security vulnerability exists in Microsoft Graphics Component. An attacker could exploit this vulnerability to execute code. The following products and versions are affected: Windows Server 2025 Server...

Microsoft Graphics Component 资源管理错误漏洞

Microsoft Graphics Component is a graphics driver component from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Graphics Component. An attacker could exploit this vulnerability to elevate privileges. The following products and editions are affected:Window...

PT-2025-32767 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions affected versions not specified Description: A race condition exists in the Microsoft Graphics Component due to improper synchronization during concurrent execution using a shared resource. This allows an authorized...

PT-2025-32788

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions affected versions not specified Description A critical issue exists in the Microsoft Windows Graphics Component, specifically within the windowscodecs.dll library. This flaw is an untrusted pointer dereference that...

Microsoft Graphics Component elevation of privilege vulnerability (CNVD-2025-17137)

Microsoft Graphics Component is a graphics driver component of Microsoft Corporation USA. A security vulnerability exists in Microsoft Graphics Component. An attacker could exploit the vulnerability to elevate privileges...

Microsoft Graphics Component Code Execution Vulnerability

Microsoft Graphics Component is a graphics driver component of Microsoft Corporation USA. A security vulnerability exists in Microsoft Graphics Component. An attacker can exploit this vulnerability to remotely execute code...