Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-8sq7-89sv-ykad
Vulnerability ID VCID-8sq7-89sv-ykad
Aliases CVE-2012-0472
Summary Security research firm iDefense reported that researcher wushi of team509 discovered a memory corruption on Windows Vista and Windows 7 systems with hardware acceleration disabled or using incompatible video drivers. This is created by using cairo-dwrite to attempt to render fonts on an unsupported code path. This corruption causes a potentially exploitable crash on affected systems.
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.01525 https://api.first.org/data/v1/epss?cve=CVE-2012-0472
epss 0.01525 https://api.first.org/data/v1/epss?cve=CVE-2012-0472
epss 0.01525 https://api.first.org/data/v1/epss?cve=CVE-2012-0472
epss 0.01525 https://api.first.org/data/v1/epss?cve=CVE-2012-0472
epss 0.01525 https://api.first.org/data/v1/epss?cve=CVE-2012-0472
epss 0.01525 https://api.first.org/data/v1/epss?cve=CVE-2012-0472
epss 0.01525 https://api.first.org/data/v1/epss?cve=CVE-2012-0472
epss 0.01525 https://api.first.org/data/v1/epss?cve=CVE-2012-0472
epss 0.01525 https://api.first.org/data/v1/epss?cve=CVE-2012-0472
generic_textual critical https://www.mozilla.org/en-US/security/advisories/mfsa2012-25
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0472.json
https://api.first.org/data/v1/epss?cve=CVE-2012-0472
815022 https://bugzilla.redhat.com/show_bug.cgi?id=815022
CVE-2012-0472 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0472
mfsa2012-25 https://www.mozilla.org/en-US/security/advisories/mfsa2012-25
RHSA-2012:0515 https://access.redhat.com/errata/RHSA-2012:0515
RHSA-2012:0516 https://access.redhat.com/errata/RHSA-2012:0516
No exploits are available.
Exploit Prediction Scoring System (EPSS)
Percentile 0.81218
EPSS Score 0.01525
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:17:58.415061+00:00 Mozilla Importer Import https://github.com/mozilla/foundation-security-advisories/blob/master/announce/2012/mfsa2012-25.md 38.0.0