VYPR

Windows IME

by Microsoft

CVEs (2)

  • CVE-2016-7221HigNov 10, 2016
    risk 0.51cvss 7.8epss 0.02

    Input Method Editor (IME) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandles DLL loading, which allows local users to…

  • CVE-2020-0707Feb 11, 2020
    risk 0.00cvss epss 0.01

    An elevation of privilege vulnerability exists when the Windows IME improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows IME Elevation of Privilege Vulnerability'.