Описание
Windows Graphics Component Elevation of Privilege Vulnerability
Меры по смягчению последствий
The following mitigating factors might be helpful in your situation:
Only Windows computers that have the XPS document writer feature installed are vulnerable to this exploit. On Windows 10 the XPS Document Writer is installed by default. The XPS Document Writer feature is not installed by default on Windows 11.
FAQ
What privileges could be gained by an attacker who successfully exploited this vulnerability?
An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.
Обновления
| Продукт | Статья | Обновление |
|---|---|---|
| Windows Server 2012 | ||
| Windows Server 2012 (Server Core installation) | ||
| Windows Server 2012 R2 | ||
| Windows Server 2012 R2 (Server Core installation) | ||
| Windows 10 for 32-bit Systems | ||
| Windows 10 for x64-based Systems | ||
| Windows Server 2016 | ||
| Windows 10 Version 1607 for 32-bit Systems | ||
| Windows 10 Version 1607 for x64-based Systems | ||
| Windows Server 2016 (Server Core installation) |
Показывать по
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
DOS
EPSS
7.8 High
CVSS3
Связанные уязвимости
Windows Graphics Component Elevation of Privilege Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
Уязвимость компонента Graphics операционной системы Windows, позволяющая нарушителю выполнить произвольный код
EPSS
7.8 High
CVSS3