32 matches found
CVE-2022-24456
CVE-2022-24456 is a remote code execution vulnerability in the HEVC Video Extensions component for Windows. Descriptions from CNVD/NVD indicate it enables arbitrary code execution when processing a payload, affecting Windows systems with the HEVC Video Extensions installed. Microsoft and CNVD ref...
CVE-2022-22007
CVE-2022-22007 is a remote code execution vulnerability in Microsoft HEVC Video Extensions. Public sources in the connected documents describe the HEVC Video Extensions as a Windows component that can be exploited to run arbitrary code, with the underlying issue facilitating code execution when p...
CVE-2022-23301
CVE-2022-23301 is a remote code execution vulnerability in the Microsoft HEVC Video Extensions (and related HEVC codecs) that can be exploited by processing crafted video content. Connected reports corroborate an RCE impact in Windows codecs libraries and list affected Windows codecs ecosystems, ...
CVE-2022-30188
CVE-2022-30188 concerns Microsoft HEVC Video Extensions. Connected sources document a remote code execution vulnerability in the HEVC Video Extensions component, with exploitation described as requiring processing of a specially crafted file, enabling arbitrary code execution on the affected syst...
CVE-2022-24453
CVE-2022-24453 corresponds to a remote code execution vulnerability in Microsoft’s HEVC Video Extensions (Windows codecs). Affected component: HEVC Video Extensions/HEVC from Device Manufacturer within Windows. Root cause details are not deeply disclosed in the provided documents, but the vulnera...
CVE-2022-22006
CVE-2022-22006 affects Microsoft’s HEVC Video Extensions. The connected records describe a remote code execution vulnerability in this component, enabling arbitrary code execution on vulnerable systems. Microsoft’s advisories indicate patches/updates are available via MSRC; remediation is to appl...
CVE-2022-22018
CVE-2022-22018 is the Microsoft HEVC Video Extensions remote code execution vulnerability. The linked sources describe it as a vulnerability in the HEVC Video Extensions component that could allow arbitrary code execution on affected Windows systems. Documented affected products include Windows a...
CVE-2022-24532
CVE-2022-24532 – HEVC Video Extensions Remote Code Execution Root cause: the vulnerability is in the HEVC Video Extensions codec, with indications of insufficient input validation in the HEVC Video Extensions software. This can enable remote code execution on affected Windows systems. Affected so...
CVE-2022-29119
CVE-2022-29119 refers to a Microsoft HEVC Video Extensions remote code execution vulnerability. The available connected documents identify the affected component (HEVC Video Extensions) and indicate a high-severity impact (base 7.8 CVSS3.1) with a local attacker, requiring user interaction. Publi...
CVE-2022-21917
CVE-2022-21917 is a Windows vulnerability in the HEVC Video Extensions (and related HEVC from Device Manufacturer). The issue is a remote code execution in the HEVC codec handling, exploitable when a target processes a crafted file. Impact is described as potential arbitrary code execution with h...
CVE-2022-24452
CVE-2022-24452 affects Microsoft HEVC Video Extensions (Windows codecs). The vulnerability is a remote code execution flaw in the HEVC Video Extensions codec library. Exploitation requires a user/application to process a specially crafted file, enabling arbitrary code execution on the target syst...
CVE-2021-1643
CVE-2021-1643 is a remote code execution vulnerability in Microsoft's HEVC Video Extensions (HEVC Video Extensions or HEVC from Device Manufacturer). Connected sources indicate the root cause is insufficient input validation in the HEVC Video Extension codec, enabling arbitrary code execution whe...
CVE-2022-21927
CVE-2022-21927 corresponds to a vulnerability in Microsoft’s HEVC Video Extensions where the HEVC codec’s code generation handling allows remote code execution. Connected sources describe the issue as a “HEVC Video Extensions Remote Code Execution Vulnerability” with practical impact of arbitrary...
CVE-2021-38661
CVE-2021-38661 concerns Microsoft HEVC Video Extensions/HEVC Codecs Library. Public records identify a remote code execution vulnerability in the Windows HEVC video extensions package that can be exploited by processing specially crafted video content. The NVD entry summarizes the vulnerability a...
CVE-2021-33775
CVE-2021-33775 corresponds to a remote code execution vulnerability in Microsoft HEVC Video Extensions (Windows codecs). The CNVD/CNNVD entries describe a remote code execution flaw in the HEVC Video Extensions component shipped with Windows, enabling an attacker to execute arbitrary code on the ...
CVE-2022-21844
CVE-2022-21844 affects the HEVC Video Extensions codec in Windows. Connected sources confirm a remote code execution vulnerability due to incorrect code-generation handling in HEVC Video Extensions, enabling arbitrary code execution on affected systems (attack chain details not fully disclosed in...
CVE-2021-33778
CVE-2021-33778 relates to the HEVC Video Extensions remote code execution vulnerability in Microsoft Windows. The affected component is the HEVC Video Extensions (Windows Codecs Library) and the root cause details are not fully disclosed in the provided documents. According to the Nessus plugin e...
CVE-2022-29111
CVE-2022-29111 corresponds to a remote code execution vulnerability in the Windows HEVC Video Extensions codec. The fault is described in connected sources as insufficient input validation within the HEVC codec, enabling an attacker to execute arbitrary code on a vulnerable system. Public exploit...
CVE-2021-1644
CVE-2021-1644 is a remote code execution vulnerability in the Windows HEVC Video Extensions (HEVC Video Extensions/HEVC from Device Manufacturer). The issue is attributed to insufficient input validation in the HEVC codec, allowing a crafted video file to cause arbitrary code execution on a vulne...
CVE-2021-33777
CVE-2021-33777 affects Microsoft HEVC Video Extensions (HEVC Codecs Library). The connected documents indicate a remote code execution vulnerability in the HEVC Video Extensions, enabling an attacker to execute arbitrary code on affected systems. Microsoft guidance links this to Windows HEVC comp...
CVE-2021-31947
CVE-2021-31947 corresponds to a Microsoft Windows issue in the HEVC Video Extensions (HEVC codecs library) that enables arbitrary code execution. The vulnerability affects the Windows HEVC Video Extensions component and is described as a remote/codec-injection style flaw that allows code executio...
CVE-2021-33776
CVE-2021-33776 corresponds to a remote code execution vulnerability in Microsoft HEVC Video Extensions (Windows). The available connected sources confirm the flaw exists in the HEVC Codecs Library/HEVC Video Extensions component and could allow arbitrary code execution when processing crafted con...
CVE-2023-38170
CVE-2023-38170 concerns the HEVC Video Extensions component on Windows. The vulnerability is a remote code execution issue tied to the HEVC Video Extensions, with the CVSSv3.1 vector indicating a local attack requiring user interaction and potential for arbitrary code execution with high impact (...
CVE-2022-21926
CVE-2022-21926 corresponds to a remote code execution vulnerability in Microsoft's HEVC Video Extensions. Connected sources corroborate that the issue stems from the HEVC Video Extensions codec (per PT-2022-1541) and can be exploited to execute arbitrary code on affected Windows systems. Public e...
CVE-2021-40453
CVE-2021-40453 concerns the Microsoft HEVC Video Extensions component. Connected docs indicate the issue stems from incorrect code generation management in the HEVC Video Extensions codec, enabling remote/arbitrary code execution in affected Windows environments. Sources also reference Microsoft ...
CVE-2021-40452
CVE-2021-40452 is a Microsoft HEVC Video Extensions remote code execution vulnerability. Connected documents attribute a root cause to incorrect code generation management in the HEVC Video Extensions codec, enabling potential arbitrary code execution. Public exploit status isn’t consistently det...
CVE-2020-17109
CVE-2020-17109 is a Microsoft HEVC Video Extensions remote code execution vulnerability. Concrete details in connected docs identify the vulnerable component as the HEVC Video Extensions (Windows) package, with the impact described as arbitrary code execution affecting confidentiality, integrity,...
CVE-2021-41360
CVE-2021-41360 corresponds to a remote code execution vulnerability in the Windows HEVC Video Extensions (HEVC from Device Manufacturer) app. Affected component: Windows HEVC Video Extensions/Codecs Library; root cause described as a vulnerability in the HEVC Video Extensions that allows remote c...
CVE-2020-17106
CVE-2020-17106 affects HEVC Video Extensions (Microsoft). The PT-2020-4821 entry describes a remote code execution caused by incorrect code generation management in the HEVC Video Extension codec. Public exploits exist. The PT page does not specify affected versions or a fix. Public advisories an...
CVE-2020-17107
CVE-2020-17107 : Microsoft HEVC Video Extensions remote code execution vulnerability. Affects HEVC Video Extensions (and related Windows components listed in Microsoft advisories) where the underlying issue can lead to arbitrary code execution if exploited. Public exploits exist for this vulnerab...
CVE-2020-17110
CVE-2020-17110 is a Microsoft HEVC Video Extensions vulnerability resulting in remote code execution. The issue affects the HEVC Video Extensions component and is exploitable with local access and user interaction required. Public exploits exist. Microsoft provides a fix via Windows updates (MSRC...
CVE-2020-17108
CVE-2020-17108 corresponds to a remote code execution vulnerability in the HEVC Video Extensions component. The connected PT-2020-4819 advisory attributes the issue to incorrect code generation management in the HEVC Video Extensions codec, indicating a vulnerability in that specific codec workfl...