Vulnerability identifier: #VU45519
Vulnerability risk: Low
Exploitation vector: Local
Exploit availability: No
The vulnerability allows a local user to escalate privilege so the system.
The vulnerability exists due to a boundary error in the Windows Graphics Device Interface (GDI) when handling objects in memory. A local user can create a specially crafted application, trigger memory corruption and execute arbitrary code on the target system with elevated privileges.
Install update from vendor's website.
Vulnerable software versions
Windows: 10 1709 - 10 2004
Windows Server: 2019 - 2019 2004
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?