CVE-2025-50165

Description

Untrusted pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network.

PUBLISHED Reserved 2025-06-13 | Published 2025-08-12 | Updated 2025-09-17 | Assigner microsoft

Problem types

CWE-822: Untrusted Pointer Dereference

CWE-908: Use of Uninitialized Resource

Product status

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50165 (Windows Graphics Component Remote Code Execution Vulnerability) vendor-advisory

cve.org (CVE-2025-50165)

nvd.nist.gov (CVE-2025-50165)

Download JSON