Lucene search
+L

462 matches found

nvd
nvd
added 3 days ago3 views

CVE-2026-50387

Stack-based buffer overflow in Windows GDI allows an authorized attacker to elevate privileges locally...

7.8CVSS0.01725EPSS
Exploits0References1
cvelist
cvelist
added 3 days ago27 views

CVE-2026-50387 Windows GDI Elevation of Privilege Vulnerability

...

7.8CVSS0.01725EPSS
Exploits0References1
vulnrichment
vulnrichment
added 3 days ago4 views

CVE-2026-50387 Windows GDI Elevation of Privilege Vulnerability

...

7.8CVSS6.1AI score0.01725EPSS
Exploits0References1
cvelist
cvelist
added 3 days ago23 views

CVE-2026-50380 Windows GDI+ Remote Code Execution Vulnerability

...

9.6CVSS0.00625EPSS
Exploits0References1
cve
cve
added 3 days ago14 views

CVE-2026-49796

CVE-2026-49796 is a heap-based buffer overflow in Windows GDI+ that can let a local attacker execute code. Affected: Windows GDI+ component; root cause is a heap buffer overflow. Impact per CVSS: local attack with user interaction required, high confidentiality, integrity, and availability impact...

7.8CVSS6.2AI score0.00398EPSS
Exploits0References1Affected Software12
vulnrichment
vulnrichment
added 3 days ago2 views

CVE-2026-49796 Windows GDI+ Remote Code Execution Vulnerability

...

7.8CVSS6.1AI score0.00398EPSS
Exploits0References1
cve
cve
added 3 days ago11 views

CVE-2026-54122

CVE-2026-54122 describes a heap-based buffer overflow in Windows GDI+ that enables local code execution by an unauthenticated attacker. The vulnerability affects the Windows GDI+ component and is rated high (CVSS 3.1: AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H, 8.4). The available documents confirm the ...

8.4CVSS6.2AI score0.0029EPSS
Exploits0References1Affected Software12
mscve
mscve
added 3 days ago5 views

Windows GDI+ Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network...

9.6CVSS6.3AI score0.00625EPSS
Exploits0
euvd
euvd
added last week7 views

EUVD-2026-43004

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating bitmap-data only for the smaller DstWidth and...

7.5CVSS6.1AI score0.00526EPSS
Exploits1References4
osv
osv
added 2026/05/29 8:16 p.m.8 views

DEBIAN-CVE-2026-44421

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client by sending crafted RDPGFX PDUs. The bug is in gdiCacheToSurface: it validates a destination rectangle that is clamped to UINT16MA...

8.8CVSS5.9AI score0.0042EPSS
Exploits1References1
attackerkb
attackerkb
added 2026/05/28 9:36 a.m.8 views

CVE-2026-46156

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix potential ADE in loongsongpufixupdmahang The switch case in loongsongpufixupdmahang may not DC2 or DC3, and readlcrtcreg will access with random address, because the "device" is from "base+PCIDEVICEID", "base" is...

5.8AI score0.00095EPSS
Exploits0References7Affected Software1
debiancve
debiancve
added 2026/05/26 2:8 p.m.12 views

CVE-2026-40033

FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdiCacheToSurface that allows remote attackers to write out-of-bounds heap memory. The vulnerability occurs because rectangle validation clamps coordinates to UINT16MAX but performs copy operations using unclamped cache entry...

8.8CVSS6.4AI score0.00827EPSS
Exploits1
redhatcve
redhatcve
added 2026/05/13 8:22 p.m.9 views

CVE-2026-35421

Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally...

7.8CVSS6.1AI score0.00532EPSS
Exploits0References1
euvd
euvd
added 2026/05/12 6:30 p.m.38 views

EUVD-2026-29628

Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally...

7.8CVSS6.1AI score0.00532EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/05/12 4:58 p.m.12 views

CVE-2026-35421 Windows GDI Remote Code Execution Vulnerability

...

7.8CVSS5.8AI score0.00532EPSS
Exploits0References1
cve
cve
added 2026/05/12 4:58 p.m.87 views

CVE-2026-35421

CVE-2026-35421 describes a heap-based buffer overflow in Windows GDI that permits a local attacker to execute arbitrary code. The entry lists a CVSS v3.1 base score of 7.8 (HIGH) with LOCAL attack vector, LOW attack complexity, NO privileges required, user interaction required, and impacts to con...

7.8CVSS6.1AI score0.00532EPSS
Exploits0References1Affected Software14
mscve
mscve
added 2026/05/12 2:0 p.m.19 views

Windows GDI Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally...

7.8CVSS6.1AI score0.00532EPSS
Exploits0
ptsecurity
ptsecurity
added 2026/05/12 12:0 a.m.16 views

PT-2026-40182

Name of the Vulnerable Software and Affected Versions Windows affected versions not specified Description A heap-based buffer overflow in the Windows GDI Graphics Device Interface, which is the graphics subsystem of Windows, allows an unauthorized attacker to execute arbitrary code. This issue ca...

7.8CVSS6.4AI score0.00532EPSS
Exploits0References11
kaspersky
kaspersky
added 2026/05/12 12:0 a.m.24 views

KLA91038 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of...

9.8CVSS6.8AI score0.72253EPSS
Exploits32References65
euvd
euvd
added 2026/04/14 6:30 p.m.4 views

EUVD-2026-22486

Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally...

5.5CVSS5.6AI score0.00384EPSS
Exploits0References2
Rows per page
Query Builder