Windows DirectX
by Microsoft
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-50172 | 0.03 | — | 0.01 | Aug 12, 2025 | Allocation of resources without limits or throttling in Windows DirectX allows an authorized attacker to deny service over a network. | |||
| CVE-2003-0346 | 0.03 | — | 0.33 | Aug 27, 2003 | Multiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote attackers to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buffer… | |||
| CVE-2025-62465 | 0.00 | — | 0.00 | Dec 9, 2025 | Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally. | |||
| CVE-2025-53135 | 0.00 | — | 0.00 | Aug 12, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to elevate privileges locally. | |||
| CVE-2021-24106 | 0.00 | — | 0.01 | Feb 25, 2021 | Windows DirectX Information Disclosure Vulnerability |
- CVE-2025-50172Aug 12, 2025risk 0.03cvss —epss 0.01
Allocation of resources without limits or throttling in Windows DirectX allows an authorized attacker to deny service over a network.
- CVE-2003-0346Aug 27, 2003risk 0.03cvss —epss 0.33
Multiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote attackers to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buffer…
- CVE-2025-62465Dec 9, 2025risk 0.00cvss —epss 0.00
Null pointer dereference in Windows DirectX allows an authorized attacker to deny service locally.
- CVE-2025-53135Aug 12, 2025risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to elevate privileges locally.
- CVE-2021-24106Feb 25, 2021risk 0.00cvss —epss 0.01
Windows DirectX Information Disclosure Vulnerability