How severe is CVE-2021-3146?

CVE-2021-3146 has a severity value of 7.8 out of 10, indicating a high severity.

Which software is affected by CVE-2021-3146?

The Dolby Audio X2 (DAX2) API service before version 0.8.8.90 on Windows is affected.

How can local users gain privileges with CVE-2021-3146?

Local users can gain privileges by exploiting the vulnerability in the Dolby Audio X2 (DAX2) API service before version 0.8.8.90 on Windows.

Where can I find more information about CVE-2021-3146?

More information about CVE-2021-3146 can be found in the security advisory provided by Dolby: https://professional.dolby.com/siteassets/pdfs/dolby-dax2-security-advisory-2021-04-07.pdf

Vulnerability/
CVE-2021-3146

high

7.8

CWE

426

8/4/2021

3/8/2024

CVE-2021-3146

Q: What is CVE-2021-3146?

CVE-2021-3146 refers to the vulnerability in the Dolby Audio X2 (DAX2) API service before 0.8.8.90 on Windows that allows local users to gain privileges.

First published: Thu Apr 08 2021(Updated: )

The Dolby Audio X2 (DAX2) API service before 0.8.8.90 on Windows allows local users to gain privileges.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Dolby Audio X2	<0.8.8.90
Microsoft Exchange Server	=2010-sp3
Microsoft Exchange Server	=2013
Microsoft Visual C\+\+	=2005-sp1
Microsoft Visual C\+\+	=2008-sp1
Microsoft Visual C\+\+	=2010
Microsoft Visual Studio	=2005-sp1
Microsoft Visual Studio	=2008-sp1
Microsoft Visual Studio	=2010
Microsoft Visual Studio .NET	=2003-sp1

Never miss a vulnerability like this again

Reference Links

https://professional.dolby.com/siteassets/pdfs/dolby-dax2-security-advisory-2021-04-07.pdf

Frequently Asked Questions

What is CVE-2021-3146?
CVE-2021-3146 refers to the vulnerability in the Dolby Audio X2 (DAX2) API service before 0.8.8.90 on Windows that allows local users to gain privileges.
How severe is CVE-2021-3146?
CVE-2021-3146 has a severity value of 7.8 out of 10, indicating a high severity.
Which software is affected by CVE-2021-3146?
The Dolby Audio X2 (DAX2) API service before version 0.8.8.90 on Windows is affected.
How can local users gain privileges with CVE-2021-3146?
Local users can gain privileges by exploiting the vulnerability in the Dolby Audio X2 (DAX2) API service before version 0.8.8.90 on Windows.
Where can I find more information about CVE-2021-3146?
More information about CVE-2021-3146 can be found in the security advisory provided by Dolby: https://professional.dolby.com/siteassets/pdfs/dolby-dax2-security-advisory-2021-04-07.pdf

agent/type
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
collector/nvd-index
agent/software-canonical-lookup-request
agent/weakness
agent/severity
agent/author
agent/references
agent/tags
agent/description
agent/event
collector/mitre-cve
source/MITRE
vendor/dolby
canonical/dolby audio x2
vendor/microsoft
canonical/microsoft exchange server
version/microsoft exchange server/2010-sp3
version/microsoft exchange server/2013
canonical/microsoft visual c\+\+
version/microsoft visual c\+\+/2005-sp1
version/microsoft visual c\+\+/2008-sp1
version/microsoft visual c\+\+/2010
canonical/microsoft visual studio
version/microsoft visual studio/2005-sp1
version/microsoft visual studio/2008-sp1
version/microsoft visual studio/2010
canonical/microsoft visual studio .net
version/microsoft visual studio .net/2003-sp1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.