Microsoft Windows 10
Moderate fix4 remedies
cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*
Moderate fix4 remedies
Microsoft Windows GDI Untrusted Search Path Vulnerability Allowing Local Remote Code Execution
Vulnerability
Patched
A vulnerability exists in the Windows Graphics Device Interface (GDI) due to an untrusted search path, which allows an unauthorized attacker to execute code locally. Exploitation involves convincing a user to run a specially crafted installer from an untrusted directory, which can lead to the execution of malicious code by exploiting unsafe dependency loading in the GDI.
Impact
Exploitation of this vulnerability could result in remote code execution on the affected system.
Reproduction
To reproduce this vulnerability, a user must be convinced to download and execute an installer from an untrusted directory. Once the installer is run, Windows may load a malicious dynamic link library (DLL) because of the untrusted search path, allowing the attacker to execute arbitrary code on the system.
Remediation
Users can apply the security update KB5078885 for Windows 10, KB5078766 for Windows Server 2022, and KB5078752 for Windows Server 2019. For Windows 11, the security update KB5079466 is available for versions 26H1, 24H2, and 25H2. Windows Server 2016 users can also apply the security update KB5078938.
Added: Mar 10, 2026, 7:23 PM
Updated: Mar 10, 2026, 7:23 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
4.6remediation
7.7relevance
3.7threat
1.6urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.