⚠ Actively exploited
Added to CISA KEV on 2022-03-25. Federal agencies required to patch by 2022-04-15. Required action: Apply updates per vendor instructions..

CVE-2019-0903Microsoft Windows vulnerability

6 documents6 sources
Severity
8.8HIGHNVD
EPSS
34.4%
top 3.00%
CISA KEV
KEV
Added 2022-03-25
Due 2022-04-15
Exploit
Exploited in wild
Active exploitation observed
Affected products
23
Microsoft WindowsMicrosoft Windows 10 Version 1903 FOR 32-bit SystemsMicrosoft Windows 10 Version 1903 FOR Arm64-based Systems+20 more
Timeline
PublishedMay 16
KEV addedMar 25
KEV dueApr 15
Latest updateJul 18
CISA Required Action: Apply updates per vendor instructions.

Description

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages22 packages

CVEListV5microsoft/windows20 versions+19

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-cmq3-fp3c-p3qr: A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remo2022-05-24
VulnCheck
Microsoft GDI Remote Code Execution Vulnerability2019

📋Vendor Advisories

2
CISA
Microsoft GDI Remote Code Execution Vulnerability2022-03-25
Microsoft
GDI+ Remote Code Execution Vulnerability2019-05-14

🕵️Threat Intelligence

1
Qualys
Part 2: An In-Depth Look at the Latest Vulnerability Threat Landscape (Attackers’ Edition)2023-07-18
CVE-2019-0903 — Microsoft Windows vulnerability | cvebase