CVE-2013-0074
Microsoft Silverlight Double Dereference Vulnerability
CVSS
—
No CVSS
EPSS
81.9%
p100
KEV
YES
May 25, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
81.9%EPSS · 30 days81.9%
2026-06-302026-07-16
Product
Microsoft / Silverlight
Vulnerability
Microsoft Silverlight Double Dereference Vulnerability
Added to KEV
May 25, 2022
Remediate by
Jun 15, 2022
Known ransomware use
Yes
Summary description
Microsoft Silverlight does not properly validate pointers during HTML object rendering, which allows remote attackers to execute code via a crafted Silverlight application.
Required action
The impacted product is end-of-life and should be disconnected if still in use.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2013-0074