CVSS: 7.8EPSS: 9%CPEs: 1EXPL: 0CVE-2022-23300 – Raw Image Extension Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-23300
Raw Image Extension Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Raw Image Extension. Este ID de CVE es diferente de CVE-2022-23295 • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23300 •
CVSS: 7.8EPSS: 9%CPEs: 1EXPL: 0CVE-2022-23295 – Raw Image Extension Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-23295
Raw Image Extension Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Raw Image Extension. Este ID de CVE es diferente de CVE-2022-23300 • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23295 •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 0CVE-2021-43214 – Web Media Extensions Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-43214
Web Media Extensions Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota en Web Media Extensions • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43214 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-28468 – Raw Image Extension Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28468
Raw Image Extension Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Raw Image Extension. Este ID de CVE es diferente de CVE-2021-28466 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Raw Image Extension. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of CR3 images. The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. An attacker can leverage this vulnerability to execute code in the context of the current user at low integrity. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28468 https://www.zerodayinitiative.com/advisories/ZDI-21-421 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2021-28466 – Raw Image Extension Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28466
Raw Image Extension Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Raw Image Extension. Este ID de CVE es diferente de CVE-2021-28468 • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28466 •