CVE-2022-21977

Опубликовано: 08 мар. 2022

Источник: msrc

CVSS3: 3.3

EPSS Низкий

Описание

Media Foundation Information Disclosure Vulnerability

FAQ

What type of information could be disclosed by this vulnerability?

An attacker who successfully exploited this vulnerability could potentially read small portions of heap memory.

Обновления

Продукт	Статья	Обновление
Windows 8.1 for 32-bit systems	5011564 5011560	Monthly Rollup Security Only
Windows 8.1 for x64-based systems	5011564 5011560	Monthly Rollup Security Only
Windows Server 2012 R2	5011564 5011560	Monthly Rollup Security Only
Windows RT 8.1	5011564	-
Windows Server 2012 R2 (Server Core installation)	5011564 5011560	Monthly Rollup Security Only
Windows 10 for 32-bit Systems	5011491	Security Update
Windows 10 for x64-based Systems	5011491	Security Update
Windows Server 2016	5011495	Security Update
Windows 10 Version 1607 for 32-bit Systems	5011495	Security Update
Windows 10 Version 1607 for x64-based Systems	5011495	Security Update

Показывать по

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Less Likely

Older Software Release

Exploitation Less Likely

DOS

N/A

EPSS

Процентиль: 76%

0.01025

Низкий

3.3 Low

CVSS3

Связанные уязвимости

CVE-2022-21977

CVSS3: 3.3

nvd

больше 3 лет назад

Media Foundation Information Disclosure Vulnerability

GHSA-cw72-cqmc-6g9v

CVSS3: 3.3

github

больше 3 лет назад

Media Foundation Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22010.

BDU:2022-01548

CVSS3: 3.3

fstec

больше 3 лет назад

Уязвимость компонента Media Foundation операционной системы Microsoft Windows, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 76%

0.01025

Низкий

3.3 Low

CVSS3