CVE-2025-22434

In handleKeyGestureEvent of PhoneWindowManager.java, there is a possible lock screen bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-22434

In handleKeyGestureEvent of PhoneWindowManager.java, there is a possible lock screen bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-22434

In handleKeyGestureEvent of PhoneWindowManager.java, there is a possible lock screen bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2025-35633

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: A logic error exists in the handleKeyGestureEvent function of PhoneWindowManager.java that may allow a lock screen bypass. Successful exploitation could lead to local privilege escalation...

Linux Distros Unpatched Vulnerability : CVE-2017-7875

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In wallpaper.c in feh before v2.18.3, if a malicious client pretends to be the E17 window manager, it is possible to trigger an out-of-boundary heap write while...

CVE-2025-53152

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally...

CVE-2025-53152

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally...

CVE-2025-53152

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally...

CVE-2025-50153

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...

CVE-2025-50153

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...

CVE-2025-53152 Desktop Windows Manager Remote Code Execution Vulnerability

...

CVE-2025-50153 Desktop Window Manager Elevation of Privilege Vulnerability

...

CVE-2025-50153

Technical details about CVE-2025-50153 (affected components, root cause, impact specifics, and fixes) are not provided in the connected documents. Monitor for updates from MSRC/NVD for technical disclosure.

Desktop Windows Manager Remote Code Execution Vulnerability

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally...

Desktop Window Manager Elevation of Privilege Vulnerability

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...

Microsoft Desktop Windows Manager 资源管理错误漏洞

Microsoft Desktop Windows Manager is a desktop window manager from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Desktop Windows Manager. An attacker exploiting this vulnerability could execute code. The following products and editions are affected:Windo...

The vulnerability of the Windows DWM library in Windows operating systems allows attackers to gain unauthorized access to protected information.

The vulnerability of the Windows DWM library in Windows operating systems is related to the use of an uninitialized resource. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

[SECURITY] Fedora 42 Update: kwin-6.3.5-3.fc42

KDE Window manager...

CVE-2023-21177

In requestAppKeyboardShortcuts of WindowManagerService.java, there is a possible way to infer the app a user is interacting with due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

CVE-2023-21026

In updateInputChannel of WindowManagerService.java, there is a possible way to set a touchable region beyond its own SurfaceControl due to a logic error in the code. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for...