This page aggregates publicly disclosed CVE and security risk information related to portrait, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2025-53919 | An issue was discovered in the Portrait Dell Color Management application through 3.3.008 for Dell monitors, It creates a temporary folder, with weak permissions, during installation and uninstallation. A low-privileged attacker with local access could potentially exploit this, leading to elevation of privileges. | [email protected] | 7.8 | 0.01% | 2025-12-17 | 2026-01-02 |
| CVE-2025-53398 | The Portrait Dell Color Management application 3.3.8 for Dell monitors has Insecure Permissions, | [email protected] | 7.8 | 0.01% | 2025-12-17 | 2026-01-02 |
| CVE-2017-3210 | Applications developed using the Portrait Display SDK, versions 2.30 through 2.34, default to insecure configurations which allow arbitrary code execution. A number of applications developed using the Portrait Displays SDK do not use secure permissions when running. These applications run the component pdiservice.exe with NT AUTHORITY/SYSTEM permissions. This component is also read/writable by all Authenticated Users. This allows local authenticated attackers to run arbitrary code with SYSTEM pr | [email protected] | 7.8 | 0.05% | 2018-07-24 | 2024-11-21 |