CVE-2019-0903
HIGH
8,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: required
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
HIGH
9,3
Source: [email protected]
Access Vector: network
Access Complexity: medium
Authentication: none
Confidentiality: complete
Integrity: complete
Availability: complete
Description
AI Translation Available
A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,3444
Percentile
1,0th
Updated
EPSS Score Trend (Last 91 Days)
Operating System
Windows Server 2016 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1607 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1507 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1809 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1809 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1803 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1803:-:*:*:*:*:*:arm64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1709 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1709:-:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1709 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1709:-:*:*:*:*:*:arm64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1903 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1903:-:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1607 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2008 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1809 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:arm64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1703 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1703:-:*:*:*:*:*:x86:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1903 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1903:-:*:*:*:*:*:arm64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1507 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2012 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2008 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2008 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itanium:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1903 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1903:-:*:*:*:*:*:x86:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1703 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1703:-:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1803 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1803:-:*:*:*:*:*:x86:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 7 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Rt 8.1 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1709 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1709:-:*:*:*:*:*:x86:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 10 1803 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_10_1803:-:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2012 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 2019 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows 8.1 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 1803 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_1803:-:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System
Windows Server 1903 by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:o:microsoft:windows_server_1903:-:*:*:*:*:*:x64:*
Common Platform Enumeration - Standardized vulnerability identification
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019…
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0903
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0903