Microsoft Windows Graphics Component Information Disclosure Vulnerability

A vulnerability in the Microsoft Graphics Component allows an authorized attacker to disclose sensitive information over the network. This issue affects multiple Windows 10 and 11 versions, as well as Windows Server 2022 and 2025. The vulnerability arises from improper handling of certain memory addresses within kernel space, which could potentially be exploited for malicious activities.

Impact

Exploitation of this vulnerability could lead to unauthorized disclosure of sensitive information, specifically certain memory addresses within kernel space. Knowledge of these addresses could be leveraged by an attacker for further malicious actions.

Remediation

Users can apply the security update for this vulnerability, which is available through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles KB5071546, KB5072033, KB5071547, and KB5071413.