Graphics Component
by Microsoft
CVEs (97)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-60724 | Cri | 0.64 | 9.8 | 0.06 | Nov 11, 2025 | Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network. | ||
| CVE-2018-8432 | Hig | 0.52 | 7.8 | 0.20 | Oct 10, 2018 | A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Remote Code Execution Vulnerability." This affects Windows 7, Microsoft Office, Microsoft Office Word Viewer, Office 365… | ||
| CVE-2026-42986 | Hig | 0.51 | 7.8 | 0.02 | Jun 9, 2026 | Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally. | ||
| CVE-2024-38250 | Hig | 0.51 | 7.8 | 0.01 | Sep 10, 2024 | Windows Graphics Component Elevation of Privilege Vulnerability | ||
| CVE-2022-26934 | Med | 0.44 | 6.5 | 0.03 | May 10, 2022 | Windows Graphics Component Information Disclosure Vulnerability | ||
| CVE-2026-25180 | Med | 0.36 | 5.5 | 0.01 | Mar 10, 2026 | Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose information locally. | ||
| CVE-2018-8116 | Med | 0.36 | 5.5 | 0.01 | Apr 12, 2018 | A denial of service vulnerability exists in the way that Windows handles objects in memory, aka "Microsoft Graphics Component Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1,… | ||
| CVE-2023-21823 | 0.12 | — | 0.06 | KEV | Feb 14, 2023 | Windows Graphics Component Remote Code Execution Vulnerability | ||
| CVE-2020-1153 | 0.03 | — | 0.12 | May 21, 2020 | A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'. | |||
| CVE-2020-0907 | 0.03 | — | 0.12 | Apr 15, 2020 | A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'. | |||
| CVE-2019-1153 | 0.03 | — | 0.03 | Aug 14, 2019 | An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this… | |||
| CVE-2019-1148 | 0.03 | — | 0.03 | Aug 14, 2019 | An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this… | |||
| CVE-2025-50165 | 0.02 | — | 0.04 | Aug 12, 2025 | Untrusted pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network. | |||
| CVE-2022-38006 | 0.02 | — | 0.02 | Sep 13, 2022 | Windows Graphics Component Information Disclosure Vulnerability | |||
| CVE-2022-26927 | 0.02 | — | 0.04 | May 10, 2022 | Windows Graphics Component Remote Code Execution Vulnerability | |||
| CVE-2021-24093 | 0.02 | — | 0.44 | Feb 25, 2021 | Windows Graphics Component Remote Code Execution Vulnerability | |||
| CVE-2021-1696 | 0.02 | — | 0.04 | Jan 12, 2021 | Windows Graphics Component Information Disclosure Vulnerability | |||
| CVE-2020-1412 | 0.02 | — | 0.14 | Jul 14, 2020 | A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'. | |||
| CVE-2019-1361 | 0.02 | — | 0.06 | Oct 10, 2019 | An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Information Disclosure Vulnerability'. | |||
| CVE-2019-0822 | 0.02 | — | 0.14 | Apr 9, 2019 | A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'. |
- risk 0.64cvss 9.8epss 0.06
Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network.
- risk 0.52cvss 7.8epss 0.20
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Remote Code Execution Vulnerability." This affects Windows 7, Microsoft Office, Microsoft Office Word Viewer, Office 365…
- risk 0.51cvss 7.8epss 0.02
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Windows Graphics Component Elevation of Privilege Vulnerability
- risk 0.44cvss 6.5epss 0.03
Windows Graphics Component Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose information locally.
- risk 0.36cvss 5.5epss 0.01
A denial of service vulnerability exists in the way that Windows handles objects in memory, aka "Microsoft Graphics Component Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1,…
- risk 0.12cvss —epss 0.06
Windows Graphics Component Remote Code Execution Vulnerability
- CVE-2020-1153May 21, 2020risk 0.03cvss —epss 0.12
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'.
- CVE-2020-0907Apr 15, 2020risk 0.03cvss —epss 0.12
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'.
- CVE-2019-1153Aug 14, 2019risk 0.03cvss —epss 0.03
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this…
- CVE-2019-1148Aug 14, 2019risk 0.03cvss —epss 0.03
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this…
- CVE-2025-50165Aug 12, 2025risk 0.02cvss —epss 0.04
Untrusted pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network.
- CVE-2022-38006Sep 13, 2022risk 0.02cvss —epss 0.02
Windows Graphics Component Information Disclosure Vulnerability
- CVE-2022-26927May 10, 2022risk 0.02cvss —epss 0.04
Windows Graphics Component Remote Code Execution Vulnerability
- CVE-2021-24093Feb 25, 2021risk 0.02cvss —epss 0.44
Windows Graphics Component Remote Code Execution Vulnerability
- CVE-2021-1696Jan 12, 2021risk 0.02cvss —epss 0.04
Windows Graphics Component Information Disclosure Vulnerability
- CVE-2020-1412Jul 14, 2020risk 0.02cvss —epss 0.14
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'.
- CVE-2019-1361Oct 10, 2019risk 0.02cvss —epss 0.06
An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Information Disclosure Vulnerability'.
- CVE-2019-0822Apr 9, 2019risk 0.02cvss —epss 0.14
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'.
Page 1 of 5