CVE-2014-4077CISA KEVEPSS p98.7%

CVE-2014-4077Microsoft IME Japanese Privilege Escalation Vulnerability

Microsoft / Input Method Editor (IME) Japanese

Description

Microsoft Input Method Editor (IME) Japanese is a keyboard with Japanese characters that can be enabled on Windows systems as it is included by default (with the default set as disabled). IME Japanese contains an unspecified vulnerability when IMJPDCT.EXE (IME for Japanese) is installed which allows attackers to bypass a sandbox and perform privilege escalation.

Scoring

EPSS47.68% probability of exploitation · percentile 98.7% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2022-05-25

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft IME Japanese Privilege Escalation Vulnerabilitykev-cve-2014-40770%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-49687
CVE
CVE-2025-47972
CVE
Microsoft Win32k Privilege Escalation Vulnerability
CVE
Microsoft Internet Explorer Privilege Escalation Vulnerability
CVE
Microsoft Windows Kernel Privilege Escalation Vulnerability
CVE
Microsoft Windows Remote Code Execution Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.