CVE-2014-4148CISA KEVEPSS p98.8%

CVE-2014-4148Microsoft Windows Remote Code Execution Vulnerability

Microsoft / Windows

Description

A remote code execution vulnerability exists when the Windows kernel-mode driver improperly handles TrueType fonts.

Scoring

EPSS50.70% probability of exploitation · percentile 98.8% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2022-05-25

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Windows Remote Code Execution Vulnerabilitykev-cve-2014-41480%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Microsoft Windows Open Type Font Remote Code Execution Vulnerability
CVE
Microsoft Windows Adobe Type Manager Library Remote Code Execution Vulnerability
CVE
Microsoft Windows Code Injection Vulnerability
CVE
Microsoft Windows Object Linking & Embedding (OLE) Remote Code Execution Vulnerability
CVE
Microsoft Windows Shell Remote Code Execution Vulnerability
CVE
CVE-2025-21298
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.