CVE-2025-53766

Name of the Vulnerable Software and Affected Versions Windows GDI+ (affected versions not specified)

Description A heap-based buffer overflow exists in Windows GDI+, where a heap-based buffer overflow is a memory corruption issue that occurs when a program writes more data to a heap-allocated memory block than it can hold. This flaw allows an unauthorized remote attacker to execute arbitrary code and gain unauthorized access to protected information by loading a specially crafted metafile or through malicious websites.

Recommendations Apply the Microsoft August 2025 Patch Tuesday updates.