CVE-2009-1123CISA KEVEPSS p91.0%

CVE-2009-1123Microsoft Windows Improper Input Validation Vulnerability

Microsoft / Windows

Description

The kernel in Microsoft Windows does not properly validate changes to unspecified kernel objects, which allows local users to gain privileges via a crafted application.

Scoring

EPSS4.92% probability of exploitation · percentile 91.0% · 2026-06-19T12:03:05Z

CISA KEV entry

Added to KEV: 2022-03-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Windows Improper Input Validation Vulnerabilitykev-cve-2009-11230%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Microsoft Ancillary Function Driver (afd.sys) Improper Input Validation Vulnerability
CVE
Microsoft Windows Kernel Privilege Escalation Vulnerability
CVE
Microsoft Windows Kernel Exception Handler Vulnerability
CVE
Microsoft Win32k Memory Corruption Vulnerability
CVE
Microsoft Windows Privilege Escalation Vulnerability
CVE
CVE-2025-27737
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.