Microsoft Windows Remote Code Execution Vulnerability

Known Exploited Vulnerability

CVE-2014-4148, Microsoft Windows Remote Code Execution Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. A remote code execution vulnerability exists when the Windows kernel-mode driver improperly handles TrueType fonts.

The following remediation steps are recommended / required by June 15, 2022: Apply updates per vendor instructions.