CVE-2014-4077
Microsoft IME Japanese Privilege Escalation Vulnerability
CVSS
—
Sin CVSS
EPSS
47.7%
p99
KEV
SÍ
25 may 2022
Exploit Today
80
0-100
Publicado: — · Última mod.: —
Producto
Microsoft / Input Method Editor (IME) Japanese
Vulnerabilidad
Microsoft IME Japanese Privilege Escalation Vulnerability
Añadido a KEV
25 may 2022
Remediar antes de
15 jun 2022
Uso conocido en ransomware
No
Descripción resumida
Microsoft Input Method Editor (IME) Japanese is a keyboard with Japanese characters that can be enabled on Windows systems as it is included by default (with the default set as disabled). IME Japanese contains an unspecified vulnerability when IMJPDCT.EXE (IME for Japanese) is installed which allows attackers to bypass a sandbox and perform privilege escalation.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2014-4077
Sin CVEs relacionados por CWE o producto.