Vulnerability in Microsoft Windows
CVE-2019-1252
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1286.
EPSS: 0.591 (99.0th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Windows — versions 7 for 32-bit Systems Service Pack 1, 7 for x64-based Systems Service Pack 1, 8.1 for 32-bit systems
- Microsoft Windows 10 Version 1903 For 32-bit Systems — versions unspecified
- Microsoft Windows 10 Version 1903 For Arm64-based Systems — versions unspecified
- Microsoft Windows 10 Version 1903 For X64-based Systems — versions unspecified
- Microsoft Windows Server — versions 2008 R2 for x64-based Systems Service Pack 1 (Core installation), 2008 R2 for Itanium-Based Systems Service Pack 1, 2008 R2 for x64-based Systems Service Pack 1
- Microsoft Windows Server, Version 1903 (Server Core Installation) — versions unspecified
References
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1252 (x_refsource_MISC)