852 matches found
CVE-2026-21235
CVE-2026-21235 describes a use-after-free vulnerability in Microsoft Graphics Component that can allow an authorized attacker to elevate privileges locally. Reported CVSS v3.1Base score 7.3 (HIGH) with LOCAL attack vector, low attack complexity, requiring user interaction and low privileges. Impa...
CVE-2026-21246
CVE-2026-21246 is a heap-based buffer overflow in the Microsoft Graphics Component that enables local privilege escalation for an authorized attacker. The CVSS 3.1 vector (LOCAL, LOW complexity, LOW privileges, NONE user interaction) yields a base score of 7.8 (HIGH impact on confidentiality, int...
CVE-2026-21246 Windows Graphics Component Elevation of Privilege Vulnerability
...
Windows Graphics Component Elevation of Privilege Vulnerability
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...
Windows Graphics Component Elevation of Privilege Vulnerability
Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft
SCTT-2026-33-0002: DWM Visual-Field Singularity 📡 Theoret...
CVE-2026-20822 Windows Graphics Component Elevation of Privilege Vulnerability
...
Windows Graphics Component Elevation of Privilege Vulnerability
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally...
CVE-2025-62458
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...
EUVD-2025-202252
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...
Exploit for Use of Uninitialized Resource in Microsoft
CVE-2025-50165 Windows Graphics Component RCE x64 Critica...
Exploit for Use of Uninitialized Resource in Microsoft
Proof-of-Concept exploit for the Untrusted Pointer Dereferenc...
Exploit for Use of Uninitialized Resource in Microsoft
Proof-of-Concept exploit for the Untrusted Pointer Dereferenc...
Exploit for Use of Uninitialized Resource in Microsoft
Proof-of-Concept exploit for the Untrusted Pointer Dereferenc...
Exploit for Use of Uninitialized Resource in Microsoft
Proof-of-Concept exploit for the Untrusted Pointer Dereferenc...
PT-2025-47132
Microsoft's latest security updates patch over 60 vulnerabilities, including a zero-day vulnerability CVE-2025-62215 and a critical flaw CVE-2025-60274 in a core Windows graphic component, exposing systems to potential exploitation and remote code execution. Defenders should prioritize patching...
CVE-2025-59261 Windows Graphics Component Elevation of Privilege Vulnerability
...
CVE-2025-59261
CVE-2025-59261 concerns the Microsoft Windows Graphics Component. The vulnerability is a time-of-check time-of-use (TOCTOU) race condition that could allow an authorized local attacker to achieve elevated privileges on the system. The impact is privilege escalation on affected Windows builds wher...
CVE-2025-59205
CVE-2025-59205 is described as a race-condition vulnerability in the Microsoft Graphics Component caused by concurrent access to a shared resource, enabling an authorized local attacker to elevate privileges. The connected EUVD-2025-34293 entry reiterates the root cause and local privilege escala...
CVE-2025-59205 Windows Graphics Component Elevation of Privilege Vulnerability
...