PT-2026-32877

CVE-2026-33104 Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Win32K - GRFX allows an authorized attacker to elevate privileg… https://t.co/UuLyDyKlAd...

CVE-2026-25190

Untrusted search path in Windows GDI allows an unauthorized attacker to execute code locally...

CVE-2026-25190 Windows GDI Remote Code Execution Vulnerability

...

CVE-2026-25180

CVE-2026-25180 describes an out-of-bounds read in the Microsoft Graphics Component that can allow an unauthorized local attacker to disclose information. Connected sources (NVD, CVE listing, ENISA/NCSC advisories) confirm the affected component as Microsoft Graphics Component and the impact as lo...

CVE-2026-25169

Technical details about CVE-2026-25169 are not provided in the supplied documents. No affected products, vulnerable components, impact, or remediation are specified here. Monitor for updates.

CVE-2026-25168 Windows Graphics Component Denial of Service Vulnerability

...

CVE-2026-25168

CVE-2026-25168 is a Windows Graphics Component denial-of-service vulnerability. Exploitation requires local access with low complexity and no user interaction, and can cause an availability impact flagged as HIGH. The CVSSv3.1 score is 6.2 (MEDIUM overall) with an exploit that is unproven and rem...

CVE-2026-25168 Windows Graphics Component Denial of Service Vulnerability

...

CVE-2026-23668

CVE-2026-23668 affects the Windows Graphics Component and is an elevation-of-privilege vulnerability. The advisory indicates a local attack vector with high attack complexity, requiring low privileges and no user interaction (UI: NONE). The vulnerability impacts confidentiality, integrity, and av...

CVE-2026-23668 Windows Graphics Component Elevation of Privilege Vulnerability

...

Windows Graphics Component Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...

Windows Graphics Component Information Disclosure Vulnerability

Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose information locally...

Windows Graphics Component Denial of Service Vulnerability

Divide by zero in Microsoft Graphics Component allows an unauthorized attacker to deny service locally...

Windows Graphics Component Denial of Service Vulnerability

Null pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to deny service locally...

Microsoft Windows GDI Bitmap Parsing Out-Of-Bound Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows. Interaction with the GDI library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

PT-2026-24314

Уязвимость компонента Graphics Device Interface GDI операционных систем Windows связана с использованием ненадёжного пути поиска. Эксплуатация уязвимости может позволить нарушителю выполнить произвольный код...

KLA90925 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code...

CVE-2026-20846

Buffer over-read in Windows GDI+ allows an unauthorized attacker to deny service over a network...

CVE-2026-20846

Buffer over-read in Windows GDI+ allows an unauthorized attacker to deny service over a network...

CVE-2026-21235 Windows Graphics Component Elevation of Privilege Vulnerability

...