29 matches found
EUVD-2026-31159
Inappropriate implementation in UI in Google Chrome on Windows prior to 148.0.7778.179 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Critical...
EUVD-2026-22451
Concurrent execution using shared resource with improper synchronization 'race condition' in Windows User Interface Core allows an authorized attacker to elevate privileges locally...
wechat-monitor-poc
WeChat Message Monitoring PoC Project Project Description...
PT-2026-2677
Name of the Vulnerable Software and Affected Versions Tablet Windows User Interface TWINUI Subsystem affected versions not specified Description The TWINUI Subsystem contains a flaw that could allow an attacker to disclose sensitive information locally. An authorized attacker can exploit this iss...
EUVD-2025-27348
Malicious code in bioql PyPI...
CVE-2025-54111
Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges locally...
CVE-2025-54111
Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges locally...
CVE-2025-54913
CVE-2025-54913 affects Windows UI XAML Maps MapControlSettings. It is a race condition caused by concurrent execution using a shared resource with improper synchronization, allowing an authorized attacker to locally elevate privileges. Reported CVSS base score ~7.8 (HIGH) with LOCAL attack vector...
Windows UI XAML Phone DatePickerFlyout Elevation of Privilege Vulnerability
Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges locally...
PT-2025-36878
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: A flaw exists in the Windows UI XAML Maps MapControlSettings component due to improper synchronization during concurrent execution using a shared resource, leading to a race condition. This...
New Coyote Malware Variant Exploits Windows UI Automation to Steal Banking Credentials
The Windows banking trojan known as Coyote has become the first known malware strain to exploit the Windows accessibility framework calledUI AutomationUIA to harvest sensitive information. "The new Coyote variant is targeting Brazilian users, and uses UIA to extract credentials linked to 75 banki...
New Malware Technique Could Exploit Windows UI Framework to Evade EDR Tools
A newly devised technique leverages a Windows accessibility framework called UI Automation UIA to perform a wide range of malicious activities without tipping off endpoint detection and response EDR solutions. "To exploit this technique, a user must be convinced to run a program that uses UI...
Teaching an Old Framework New Tricks: The Dangers of Windows UI Automation
...
Teaching an Old Framework New Tricks: The Dangers of Windows UI Automation
...
CVE-2024-0082
NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause improper privilege management by sending open file requests to the application. A successful exploit of this vulnerability might lead to local escalation of privileges, information disclosure, and data...
CVE-2023-36393 Windows User Interface Application Core Remote Code Execution Vulnerability
...
Remote code execution
Tablet Windows User Interface Application Core Remote Code Execution Vulnerability...
CVE-2023-28122
A local privilege escalation LPE vulnerability in UI Desktop for Windows Version 0.59.1.71 and earlier allows a malicious actor with local access to a Windows device running said application to submit arbitrary commands as SYSTEM.This vulnerability is fixed in Version 0.62.3 and later...
PT-2023-2464 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to errors in the representation of information by the user interface in Windows operating systems. Exploitation of this issue may allow an attacker to conduct spoofing...
CVE-2022-35257
A local privilege escalation vulnerability in UI Desktop for Windows Version 0.55.1.2 and earlier allows a malicious actor with local access to a Windows device with UI Desktop to run arbitrary commands as SYSTEM...