CVE-2019-0618
UNKNOWN
Published 2019-03-06T00:00:00
Actions:
Expert Analysis
Professional remediation guidance
Get tailored security recommendations from our analyst team for CVE-2019-0618. We'll provide specific mitigation strategies based on your environment and risk profile.
No CVSS data available
Description
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0662.
Available Exploits
No exploits available for this CVE.
Related News
No news articles found for this CVE.
Affected Products
Affected Versions:
7 for 32-bit Systems Service Pack 1
7 for x64-based Systems Service Pack 1
8.1 for 32-bit systems
8.1 for x64-based systems
RT 8.1
10 for 32-bit Systems
10 for x64-based Systems
10 Version 1607 for 32-bit Systems
10 Version 1607 for x64-based Systems
10 Version 1703 for 32-bit Systems
10 Version 1703 for x64-based Systems
10 Version 1709 for 32-bit Systems
10 Version 1709 for x64-based Systems
10 Version 1803 for 32-bit Systems
10 Version 1803 for x64-based Systems
10 Version 1803 for ARM64-based Systems
10 Version 1809 for 32-bit Systems
10 Version 1809 for x64-based Systems
10 Version 1809 for ARM64-based Systems
10 Version 1709 for ARM64-based Systems
Affected Versions:
2008 R2 for x64-based Systems Service Pack 1 (Core installation)
2008 R2 for Itanium-Based Systems Service Pack 1
2008 R2 for x64-based Systems Service Pack 1
2008 for 32-bit Systems Service Pack 2 (Core installation)
2012
2012 (Core installation)
2012 R2
2012 R2 (Core installation)
2016
2016 (Core installation)
version 1709 (Core Installation)
version 1803 (Core Installation)
2019
2019 (Core installation)
2008 for Itanium-Based Systems Service Pack 2
2008 for 32-bit Systems Service Pack 2
2008 for x64-based Systems Service Pack 2
2008 for x64-based Systems Service Pack 2 (Core installation)
GitHub Security Advisories
Community-driven vulnerability intelligence from GitHub
⚠ Unreviewed
HIGH
GHSA-3c37-qxqv-r99x
Advisory Details
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0662.
CVSS Scoring
CVSS Score
7.5
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References
Advisory provided by GitHub Security Advisory Database. Published: May 13, 2022, Modified: May 13, 2022
References
Published: 2019-03-06T00:00:00
Last Modified: 2024-08-04T17:51:27.073Z
Copied to clipboard!