15 matches found
CVE-2022-23300
CVE-2022-23300 affects Microsoft Windows Raw Image Extension. The vulnerability is a remote code execution in the Raw Image Extensions/Codecs Library (Microsoft Windows). Impact per sources: attacker could execute arbitrary code on the target, with high severity (CVSS v3.1 base score 7.8; local/p...
CVE-2022-23295
CVE-2022-23295 concerns Microsoft Windows' Raw Image Extension (Raw Image Extensions Library). The vulnerability is a remote code execution flaw in the Windows codecs library/extension when handling crafted image files, enabling an attacker to run arbitrary code on a vulnerable system. Public sou...
CVE-2023-28291
CVE-2023-28291 affects Microsoft Windows Raw Image Extension (the Raw Image Extensions component). The vulnerability is a remote/code execution vulnerability in the Raw Image Extension that arises from insufficient input validation, enabling arbitrary code execution when processing crafted files....
CVE-2023-28292
CVE-2023-28292 is a Windows Raw Image Extension Remote Code Execution vulnerability. The issues affect the Windows Raw Image Extensions component (Windows 10/11 families and related builds) and are described in multiple sources (NVD/MSRC/NCSC). Root cause and affected specifics are tied to the Ra...
CVE-2023-32051
CVE-2023-32051 describes a remote code execution vulnerability in Microsoft’s Windows Raw Image Extension. The CVE entry notes an RCE with a local attack vector (AV: Local) and user interaction required, affecting the Raw Image Extension component across several Windows builds. Public exploits ar...
CVE-2021-28468
CVE-2021-28468 affects the Windows Raw Image Extensions/Codecs Library component. The issue is described as a remote code execution vulnerability in Microsoft’s Raw Image Extension, stemming from parsing of crafted image/file inputs that can lead to arbitrary code execution on the affected system...
CVE-2022-44687
CVE-2022-44687 is a Remote Code Execution vulnerability in the Windows Raw Image Extensions component. Public details indicate the issue stems from insufficient input validation in the Raw Image Extension, allowing crafted data to trigger arbitrary code execution. Public exploits exist. Affected ...
CVE-2022-38011
CVE-2022-38011 is a Remote Code Execution vulnerability in the Windows Raw Image Extension. The issue arises from the Raw Image Extension’s handling of crafted files, enabling an attacker to execute arbitrary code on a vulnerable system. CVSS 3.1 indicates a HIGH base score (7.3) with Local attac...
CVE-2021-28466
CVE-2021-28466 is a Raw Image Extension RCE affecting Windows Raw Image Extensions. Public docs attribute the root cause to incorrect code-generation management in the Raw Image Extension component, enabling arbitrary code execution when processing specially crafted content. Exploitation paths ar...
CVE-2021-43214
CVE-2021-43214 is a remote code execution vulnerability in Microsoft Web Media Extensions. The affected component is the Web Media Extensions package used by Edge/Windows to support Web formats. The root cause is a vulnerability in Web Media Extensions that could allow an attacker to execute arbi...
CVE-2020-17082
CVE-2020-17082 is tied to a vulnerability in Microsoft's Raw Image Extension. Connected docs describe a buffer overflow in the Raw Image Extension plugin that could enable remote code execution. The issue affects Windows systems with Raw Image Extension and is tracked in advisories such as PT-202...
CVE-2020-17081
CVE-2020-17081 affects Microsoft Raw Image Extension and is described as an information disclosure vulnerability. Public CNVD entry indicates this vulnerability affects versions prior to Raw Image Extension 1.0.32861.0. A PT-Security advisory for the same Microsoft Raw Image Extension claims a bu...
CVE-2020-17078
CVE-2020-17078 relates to the Windows Raw Image Extension and is documented as a remote code execution vulnerability. Multiple connected sources confirm the issue stems from the Raw Image Extension component, with independent advisories citing a buffer overflow that could be exploited by a specia...
CVE-2020-17086
CVE-2020-17086 is a Raw Image Extension remote code execution vulnerability affecting Microsoft Windows’ Raw Image Extension. Connected sources indicate exploitation exists and that versions prior to Raw Image Extension 1.0.32861.0 contain the flaw, caused by a coding issue in the extension that ...
CVE-2020-17079
CVE-2020-17079 is a Remote Code Execution vulnerability in Microsoft Windows’ Raw Image Extension. PT-2020-4761 attributes a buffer overflow in the Raw Image Extension plugin as the root cause, enabling a remote attacker to execute arbitrary code. The available connected documents confirm the aff...