Microsoft Windows Server 2022
Moderate fix2 remedies
cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*
Moderate fix2 remedies
Microsoft Windows GDI Out-of-Bounds Read Vulnerability Allowing Information Disclosure
Vulnerability
Patched
A vulnerability has been identified in Windows Graphics Device Interface (GDI) that allows an unauthorized attacker to locally disclose information. This out-of-bounds read vulnerability occurs when Windows GDI processes specially crafted Enhanced Metafiles (EMF), potentially allowing access to adjacent memory data.
Impact
Exploitation of this vulnerability could lead to unauthorized access to sensitive information from the affected application’s memory.
Remediation
Users can apply the security update for their specific Windows version to address this vulnerability. Security update KB5082200 is available for various Windows 10 versions, while KB5082123 can be downloaded for Windows Server 2019. Windows Server 2022 users should look for KB5082142. For Windows 11, security updates KB5082052 and KB5083769 are available, depending on the system architecture. Windows Server 2025 users can also apply the security update KB5082063.
Added: Apr 14, 2026, 9:43 PM
Updated: Apr 14, 2026, 9:43 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
0.6exploitability
4.2remediation
7.7relevance
5.9threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.