CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: Jun 15, 2022
High
CISA KEVCVE-2016-7256
Microsoft—Windows
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploits this vulnerability could take control of the affected system.
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2016-7256
Vulnerability Overview
- Severity
- High
- CISA KEV
- Yes
- Ransomware
- Unknown
- Published
- May 25, 2022
- KEV Added
- May 25, 2022
- Due Date
- Jun 15, 2022
- Related Articles
- 0
Vendor
Microsoft
Windows