{"uuid": "b52640bb-f3a6-4d7d-9157-837484900f6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2014-4148", "type": "exploited", "source": "https://t.me/arpsyndicate/1116", "content": "#ExploitObserverAlert\n\nCVE-2014-4148\n\nDESCRIPTION: Exploit Observer has 5 entries related to CVE-2014-4148. win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted TrueType font, as exploited in the wild in October 2014, aka \"TrueType Font Parsing Remote Code Execution Vulnerability.\"\n\nFIRST-EPSS: 0.421420000\nNVD-IS: 10.0\nNVD-ES: 8.6", "creation_timestamp": "2023-12-04T04:47:13.000000Z"}