CVE-2025-53152

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally...

CVE-2025-53152

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally...

CVE-2025-53152

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally...

CVE-2025-50153

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...

CVE-2025-50153

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...

CVE-2025-53152 Desktop Windows Manager Remote Code Execution Vulnerability

...

CVE-2025-50153

Technical details about CVE-2025-50153 (affected components, root cause, impact specifics, and fixes) are not provided in the connected documents. Monitor for updates from MSRC/NVD for technical disclosure.

CVE-2025-50153 Desktop Window Manager Elevation of Privilege Vulnerability

...

Desktop Windows Manager Remote Code Execution Vulnerability

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally...

Desktop Window Manager Elevation of Privilege Vulnerability

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...

Microsoft Desktop Windows Manager 资源管理错误漏洞

Microsoft Desktop Windows Manager is a desktop window manager from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Desktop Windows Manager. An attacker exploiting this vulnerability could execute code. The following products and editions are affected:Windo...

The vulnerability of the Windows DWM library in Windows operating systems allows attackers to gain unauthorized access to protected information.

The vulnerability of the Windows DWM library in Windows operating systems is related to the use of an uninitialized resource. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

[SECURITY] Fedora 42 Update: kwin-6.3.5-3.fc42

KDE Window manager...

CVE-2023-21177

In requestAppKeyboardShortcuts of WindowManagerService.java, there is a possible way to infer the app a user is interacting with due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-21026

In updateInputChannel of WindowManagerService.java, there is a possible way to set a touchable region beyond its own SurfaceControl due to a logic error in the code. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-21348

In Window Manager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitati...

CVE-2022-39899

Improper authentication vulnerability in Samsung WindowManagerService prior to SMR Dec-2022 Release 1 allows attacker to send the input event using S Pen gesture...

The vulnerability of the Microsoft DWM Core Library in the Windows operating system allows attackers to escalate their privileges.

The vulnerability of the Microsoft DWM Core Library in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerability of the Microsoft DWM Core Library on Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Microsoft DWM Core Library on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Microsoft DWM Core Library on Windows operating systems allows attackers to escalate their privileges.

The vulnerability of the Microsoft DWM Core Library on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...