CVE-2021-40448

🗓️ 15 Sep 2021 11:24:27Reported by microsoftType

Microsoft Accessibility Insights for Android Information Disclosure Vulnerability

Reporter	Title	Published	Views	Family All 11
BDU FSTEC	The vulnerability of the Microsoft Accessibility Insights browser extension, related to the lack of data protection for service data, allows a perpetrator to gain unauthorized access to protected information.	4 May 202200:00	–	bdu_fstec
CNNVD	Microsoft Accessibility Insights for Android 信息泄露漏洞	14 Sep 202100:00	–	cnnvd
Cvelist	CVE-2021-40448 Microsoft Accessibility Insights for Android Information Disclosure Vulnerability	15 Sep 202111:24	–	cvelist
EUVD	EUVD-2021-27625	3 Oct 202520:07	–	euvd
Kaspersky	KLA12286 Mutliple vulnerabilities in Microsoft Azure	14 Sep 202100:00	–	kaspersky
Microsoft CVE	Microsoft Accessibility Insights for Android Information Disclosure Vulnerability	14 Sep 202107:00	–	mscve
NVD	CVE-2021-40448	15 Sep 202112:15	–	nvd
OSV	CVE-2021-40448	15 Sep 202112:15	–	osv
Prion	Information disclosure	15 Sep 202112:15	–	prion
Positive Technologies	PT-2021-6961 · Microsoft · Accessibility Insights For Android	14 Sep 202100:00	–	ptsecurity

NVD

Vulners

Node

microsoft accessibility_insights_for_androidRange<2021.826.1

[
  {
    "vendor": "Microsoft",
    "product": "Accessibility Insights for Android",
    "cpes": [
      "cpe:2.3:a:microsoft:accessibility_insights_for_android:*:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "2021.0.0",
        "lessThan": "2021.826.1",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40448

21 Nov 2024 06:24Current

6.2Medium risk

Vulners AI Score6.2

CVSS 24.3

CVSS 3.15.5 - 6.3

EPSS0.01389