Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2019-1468: Win32k Graphics Remote Code Execution Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft Windows: CVE-2019-1468: Win32k Graphics Remote Code Execution Vulnerability

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
12/10/2019
Created
12/11/2019
Added
12/10/2019
Modified
09/11/2024

Description

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Win32k Graphics Remote Code Execution Vulnerability'.

Solution(s)

  • microsoft-windows-windows_10-1507-kb4530681
  • microsoft-windows-windows_10-1607-kb4530689
  • microsoft-windows-windows_10-1709-kb4530714
  • microsoft-windows-windows_10-1803-kb4530717
  • microsoft-windows-windows_10-1809-kb4530715
  • microsoft-windows-windows_10-1903-kb4530684
  • microsoft-windows-windows_10-1909-kb4530684
  • microsoft-windows-windows_server_2012-kb4530698
  • microsoft-windows-windows_server_2012_r2-kb4530730
  • microsoft-windows-windows_server_2016-1607-kb4530689
  • microsoft-windows-windows_server_2019-1809-kb4530715
  • msft-kb4530684-917e2475-9fba-411d-9308-1a21925a9e6c
  • msft-kb4530684-f82cd7d6-31bf-445d-9eb0-580f5caf4345
  • msft-kb4530692-43dfa206-3c9d-449d-bcb8-c667f99be817
  • msft-kb4530692-47d8e252-ac6d-4d07-ba30-3789160c200b
  • msft-kb4530692-9714c8b1-3b21-484e-9849-9c1e471537b6
  • msft-kb4530692-cf411479-9655-47df-bfa3-62b6deab32b8
  • msft-kb4530692-d191ebc8-0d63-43ce-b908-f92f1fd27310
  • msft-kb4530692-ee1100b1-b2ab-4248-a77f-5d273d279545
  • msft-kb4530698-44e206f2-1c55-40c0-a3ce-08c5fc121314
  • msft-kb4530698-a5a266c2-dd84-4b48-8b38-573ab428444b
  • msft-kb4530719-4b41c5d5-e946-4ff0-959e-3091dfaaeb07
  • msft-kb4530719-990a741a-b9cf-4334-b749-fd3d2e598a1d
  • msft-kb4530719-a4ac97fc-fe65-4b2d-9ea0-fc14c543e7a9
  • msft-kb4530730-21a243ba-4a7f-4ced-b416-fc7b13fd9bb4
  • msft-kb4530730-26757e13-8369-4e19-813d-bf1e73370c55

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;