CVE-2022-21926: HEVC Video Extensions Remote Code Execution Vulnerability
First published: Tue Feb 08 2022(Updated: )
HEVC Video Extensions Remote Code Execution Vulnerability
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft HEVC Video Extensions | <1.0.41532.0 | |
| Microsoft HEVC Video Extensions | <1.0.43421.0 | |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2022-21926.
Which software products are affected by this vulnerability?
The Microsoft HEVC Video Extension and Microsoft HEVC Video Extensions versions up to 1.0.41532.0 and 1.0.43421.0 are affected.
What is the severity of CVE-2022-21926?
CVE-2022-21926 has a severity rating of 7.8 (high).
How can I fix the CVE-2022-21926 vulnerability?
To fix the CVE-2022-21926 vulnerability, update your Microsoft HEVC Video Extension and Microsoft HEVC Video Extensions to the latest available versions.
Where can I find more information about CVE-2022-21926?
More information about CVE-2022-21926 can be found on the Microsoft Security Response Center (MSRC) website.
- collector/nvd-index
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/msrc-cve
- source/Microsoft
- agent/title
- agent/references
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/author
- agent/description
- agent/softwarecombine
- agent/tags
- agent/event
- agent/software-canonical-lookup
- vendor/microsoft
- canonical/microsoft hevc video extensions
- canonical/microsoft hevc video extension