CVE-2022-38019

🗓️ 13 Sep 2022 18:42:22Reported by microsoftType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 93 Views

AV1 Video Extension allows remote code execution through CVE-2022-38019 vulnerability.

Reporter	Title	Published	Views	Family All 14
ATTACKERKB	CVE-2022-38019	13 Sep 202219:15	–	attackerkb
Circl	CVE-2022-38019	13 Sep 202222:31	–	circl
CNNVD	Microsoft Windows Codecs Library 安全漏洞	13 Sep 202200:00	–	cnnvd
Cvelist	CVE-2022-38019 AV1 Video Extension Remote Code Execution Vulnerability	13 Sep 202218:42	–	cvelist
EUVD	EUVD-2022-40625	3 Oct 202520:07	–	euvd
Kaspersky	KLA19245 Multiple vulnerabilities in Microsoft Windows	13 Sep 202200:00	–	kaspersky
Microsoft CVE	AV1 Video Extension Remote Code Execution Vulnerability	13 Sep 202207:00	–	mscve
NCSC	Vulnerabilities fixed in Microsoft Windows	13 Sep 202200:00	–	ncsc
NVD	CVE-2022-38019	13 Sep 202219:15	–	nvd
OSV	CVE-2022-38019	13 Sep 202219:15	–	osv

NVD

Vulners

CNA

Node

microsoft av1_video_extensionRange<1.1.51091.0

[
  {
    "vendor": "Microsoft",
    "product": "AV1 Video Extension",
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "1.1.0",
        "lessThan": "1.1.51091.0",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38019
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38019

11 Mar 2025 16:10Current

8High risk

Vulners AI Score8

CVSS 3.17.8

EPSS0.07941