Lucene search

K
cve[email protected]CVE-2023-29340
HistoryMay 09, 2023 - 6:15 p.m.

CVE-2023-29340

2023-05-0918:15:13
web.nvd.nist.gov
64
cve-2023-29340
nvd
remote code execution
av1 video extension

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.4%

AV1 Video Extension Remote Code Execution Vulnerability

Affected configurations

Vulners
NVD
Node
microsoftav1_video_extensionRange1.1.01.1.60961.0
VendorProductVersionCPE
microsoftav1_video_extension*cpe:2.3:a:microsoft:av1_video_extension:*:*:*:*:*:*:*:*

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "AV1 Video Extension",
    "cpes": [
      "cpe:2.3:a:microsoft:av1_video_extension:1.1.51091.0:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "1.1.0",
        "lessThan": "1.1.60961.0",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.4%