CVE-2021-38661: HEVC Video Extensions Remote Code Execution Vulnerability
First published: Wed Sep 15 2021(Updated: )
HEVC Video Extensions Remote Code Execution Vulnerability
Credit: secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft HEVC Video Extensions | <1.0.42094.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2021-38661?
CVE-2021-38661 is a vulnerability in the HEVC Video Extensions software developed by Microsoft, which allows remote code execution.
How does CVE-2021-38661 affect me?
If you have the Microsoft HEVC Video Extensions software version 1.0.42094.0 or earlier installed, your system is vulnerable to remote code execution.
What is the severity of CVE-2021-38661?
CVE-2021-38661 has a severity score of 7.8, which is considered high.
How do I fix CVE-2021-38661?
To fix CVE-2021-38661, you should update your Microsoft HEVC Video Extensions software to version 1.0.42094.1 or later.
Where can I find more information about CVE-2021-38661?
You can find more information about CVE-2021-38661 on the Microsoft Security Guidance Advisory page: [CVE-2021-38661](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-38661).
- collector/nvd-index
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/title
- agent/remedy
- agent/references
- agent/severity
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft hevc video extensions