Windows Graphics Component Vulnerability

MEDIUM (6.5) No Patch (5 days)
cwe-200graphics-componentmicrosoftvulnerability-disclosurewindows

Threat Intelligence

Low Risk
EPSS Score: 0.16% chance of exploitation (percentile: 38%)
🔍 Detection Tools: None available in major open-source tools
⚔️ Exploit Availability: No public exploits found

How we test →

What is it?

The Windows Graphics Component is a part of the Windows operating system, responsible for rendering graphics and images. This vulnerability allows an authorized attacker to disclose sensitive information over a network by exploiting a flaw in the component's handling of graphics data.

Am I affected?

You're affected if you use Exposure of sensitive. Specific version info not stated in the advisory. If you don't recognise this software, you're probably not affected.

Affected Products

Microsoft / Windows Graphics Component

How to fix

  1. Enable the "Enhanced Protected Mode" feature in Windows 10 and Server 2019:
  2. For Windows 10, go to Settings > Update & Security > Recovery > Get started under Advanced startup options.

  3. For Windows Server 2019, run powershell.exe -Command "Enable-ComputerFirewallRule -Name 'Enhanced Protected Mode' -Enabled True".

  4. Apply the latest security updates:

  5. Go to Settings > Update & Security > Windows Update (Windows) or Run Windows Updates (PowerShell).

References