CVE-2019-0903
Microsoft GDI Remote Code Execution Vulnerability
CVSS
—
Sin CVSS
EPSS
21.7%
p97
KEV
SÍ
25 mar 2022
Exploit Today
79
0-100
Publicado: — · Última mod.: —
21.7%EPSS · 30 días21.7%
2026-06-302026-07-16
Producto
Microsoft / Graphics Device Interface (GDI)
Vulnerabilidad
Microsoft GDI Remote Code Execution Vulnerability
Añadido a KEV
25 mar 2022
Remediar antes de
15 abr 2022
Uso conocido en ransomware
No
Descripción resumida
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2019-0903
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2017-0001—86.3%
KEV—76Microsoft Graphics Device Interface (GDI) Privilege Escalation Vulnerability—