CISA description
Microsoft Graphics Component contains a memory corruption vulnerability which can allow for remote code execution.
CVE-2013-3906
Microsoft · Graphics Component
Microsoft Graphics Component Memory Corruption Vulnerability
Required action
Apply updates per vendor instructions.
Notes & references
Where this lands in 800-53
Vulnerability data triggers these controls during assessment and continuous monitoring.