Microsoft HEVC Video Extensions Remote Code Execution

entryeditHistoryDiffjsonxmlCTI

A vulnerability classified as critical has been found in Microsoft HEVC Video Extensions (version unknown). Applying a patch is able to eliminate this problem. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Field01/13/2021 07:53 AM02/11/2021 07:33 PM02/11/2021 07:38 PM
cvss3_vuldb_rlOOO
cvss3_vendor_rlOOO
cvss3_vendor_uiRRR
cvss3_vuldb_eUUU
cvss3_vendor_eUUU
cvss3_vuldb_cHHH
cveCVE-2021-1644CVE-2021-1644CVE-2021-1644
cvss3_vendor_avLLL
cvss3_vendor_sUUU
locationWebsiteWebsiteWebsite
cvss2_vuldb_rcCCC
cvss3_vuldb_sUUU
namePatchPatchPatch
cvss3_vendor_acLLL
cvss3_vendor_prNNN
cvss3_vendor_cHHH
cvss3_vendor_rcCCC
typeSecurity GuidanceSecurity GuidanceSecurity Guidance
cvss3_vendor_aHHH
date1610438400 (01/12/2021)1610438400 (01/12/2021)1610438400 (01/12/2021)
cvss3_vuldb_prNNN
cvss3_vuldb_uiRRR
falsepositive000
urlhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1644https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1644https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1644
cvss3_vendor_iHHH
cvss3_vuldb_rcCCC
vendorMicrosoftMicrosoftMicrosoft
nameHEVC Video ExtensionsHEVC Video ExtensionsHEVC Video Extensions
date1610438400 (01/12/2021)1610438400 (01/12/2021)1610438400 (01/12/2021)
cvss3_vuldb_acLLL
cvss3_vuldb_aHHH
disputed000
cvss3_vuldb_iHHH
person_nameLe Huu Quang LinhLe Huu Quang LinhLe Huu Quang Linh
cvss2_vuldb_auNNN
cvss2_vuldb_ciCCC
cvss2_vuldb_iiCCC
cvss2_vuldb_aiCCC
cvss2_vuldb_eUUU
cvss2_vuldb_rlOFOFOF
cvss3_vendor_basescore7.87.87.8
cvss2_vuldb_avNNN
cvss2_vuldb_acMMM
cvss2_vuldb_basescore9.39.39.3
cvss2_vuldb_tempscore6.96.96.9
cvss3_vuldb_basescore8.88.88.8
cvss3_vuldb_tempscore7.77.77.7
cvss3_meta_basescore8.38.38.1
cvss3_meta_tempscore7.37.37.1
price_0day$25k-$100k$25k-$100k$25k-$100k
cvss3_vuldb_avNNN
cve_assigned16068636001606863600
cve_nvd_summaryHEVC Video Extensions Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-1643.HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-1643.
cvss3_nvd_avL
cvss3_nvd_acL
cvss3_nvd_prN
cvss3_nvd_uiR
cvss3_nvd_sU
cvss3_nvd_cH
cvss3_nvd_iH
cvss3_nvd_aH
cvss2_nvd_avN
cvss2_nvd_acM
cvss2_nvd_auN
cvss2_nvd_ciC
cvss2_nvd_iiC
cvss2_nvd_aiC
cvss2_nvd_basescore9.3
cvss3_nvd_basescore7.8

Want to stay up to date on a daily basis?

Enable the mail alert feature now!