VYPR

Windows GDI+

by Microsoft

CVEs (17)

  • CVE-2008-3465CriDec 10, 2008
    Microsoft
    Windows 2000
    risk 0.67cvss 9.8epss 0.46

    Heap-based buffer overflow in an API in GDI in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows context-dependent attackers to cause a denial of service or execute arbitrary code via a WMF file with a malformed…

  • CVE-2017-8685MedSep 13, 2017
    Microsoft
    Windows Server 2008
    risk 0.41cvss 5.5epss 0.27

    Windows GDI+ on Microsoft Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows information disclosure by the way it discloses kernel memory addresses, aka "Windows GDI+ Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8684 and CVE-2017-8688.

  • CVE-2017-11816MedOct 13, 2017
    Microsoft
    Windows Server 2008
    risk 0.36cvss 5.5epss 0.03

    The Microsoft Windows Graphics Device Interface (GDI) on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure…

  • CVE-2017-8688MedSep 13, 2017
    Microsoft
    Windows GDI+
    risk 0.36cvss 5.5epss 0.06

    Windows GDI+ on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, allows information disclosure by the way it discloses kernel memory…

  • CVE-2019-1050Jun 12, 2019
    Microsoft
    Windows Server 2012
    risk 0.01cvss epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an…

  • CVE-2019-1049Jun 12, 2019
    Microsoft
    Windows Server 2008
    risk 0.01cvss epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an…

  • CVE-2019-1046Jun 12, 2019
    Microsoft
    Windows Server 2008
    risk 0.01cvss epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an…

  • CVE-2019-1048Jun 12, 2019
    Microsoft
    Windows Server 2008
    risk 0.01cvss epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an…

  • CVE-2019-1013Jun 12, 2019
    Microsoft
    Windows Server 2008
    risk 0.01cvss epss 0.13

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an…

  • CVE-2019-1015Jun 12, 2019
    Microsoft
    Windows Server 2008
    risk 0.01cvss epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an…

  • CVE-2019-1016Jun 12, 2019
    Microsoft
    Windows Server 2008
    risk 0.01cvss epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an…

  • CVE-2019-1011Jun 12, 2019
    Microsoft
    Windows Server 2008
    risk 0.01cvss epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an…

  • CVE-2019-1010Jun 12, 2019
    Microsoft
    Windows Server 2008
    risk 0.01cvss epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an…

  • CVE-2019-0977Jun 12, 2019
    Microsoft
    Windows Server 2008
    risk 0.01cvss epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an…

  • CVE-2023-36804Sep 12, 2023
    Microsoft
    Windows Server 2008
    risk 0.00cvss epss 0.00

    Windows GDI Elevation of Privilege Vulnerability

  • CVE-2023-38161Sep 12, 2023
    Microsoft
    Windows Server 2008
    risk 0.00cvss epss 0.00

    Windows GDI Elevation of Privilege Vulnerability

  • CVE-2022-30213Jul 12, 2022
    Microsoft
    Windows Server 2003
    risk 0.00cvss epss 0.01

    Windows GDI+ Information Disclosure Vulnerability