Medium severity5.0NVD Advisory· Published Jun 15, 2017· Updated May 13, 2026

CVE-2017-0286

Description

Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows improper disclosure of memory contents, aka "Windows Graphics Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-0287, CVE-2017-0288, CVE-2017-0289, CVE-2017-8531, CVE-2017-8532, and CVE-2017-8533.

Affected products

Microsoft/Office2 versions
cpe:2.3:a:microsoft:office:2007:sp3:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:office:2007:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office:2010:sp2:*:*:*:*:*:*
Microsoft/Windows 7
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
Microsoft/Windows Server 2008
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
Microsoft Corporation/Uniscribev5
Range: Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0286nvdMitigationPatchVendor Advisory
www.securityfocus.com/bid/98891nvdBroken LinkThird Party AdvisoryVDB Entry
www.exploit-db.com/exploits/42238/nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.325
epss	0.008
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000