Home

CVE-2021-31967

Description

VP9 Video Extensions Remote Code Execution Vulnerability

Risk Information

Base Score
7.7
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
EPSS Score
Exploitation Probability
4.564

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Visual Studio Information Disclosure Vulnerability for the information disclosure vulnerability in Visual Studio 2010 Service Pack 1 (KB4476698)Windows
Microsoft Visual Studio Information Disclosure Vulnerability for the information disclosure vulnerability in Visual Studio 2012 Update 5 (KB4476755)Windows
Visual Studio Information Disclosure Vulnerability for the information disclosure vulnerability in Microsoft Visual Studio 2010 Service Pack 1 (KB4506161)Windows
Visual Studio Information Disclosure Vulnerability for the information disclosure vulnerability in Microsoft Visual Studio 2013 Update 5 (KB4506163)Windows
Visual Studio Information Disclosure Vulnerability for the information disclosure vulnerability in Microsoft Visual Studio 2012 Update 5 (KB4506162)Windows
Visual Studio Information Disclosure Vulnerability for the information disclosure vulnerability in Microsoft Visual Studio 2015 Update 3 (KB4506164)Windows
VP9 Video Extensions Remote Code Execution Vulnerability for the information disclosure vulnerability in Visual Studio 2013 Update 5 (KB4089283)Windows
VP9 Video Extensions Remote Code Execution Vulnerability Azure Information Protection unified labeling client (2.9.116.0)Windows
Vulnerabilities CVE-2021-31967 are fixed in VP9 Video Extensions (Microsoft Store) 1.0.41182.0Windows
query and manipulate user account information (USN-1485-1) accountsservice_0.6.15-2ubuntu9.7_i386.debLinux
query and manipulate user account information (USN-1485-1) accountsservice_0.6.15-2ubuntu9.7_amd64.debLinux
query and manipulate user account information (USN-1485-1) libaccountsservice0_0.6.15-2ubuntu9.7_i386.debLinux
query and manipulate user account information (USN-1485-1) libaccountsservice0_0.6.15-2ubuntu9.7_amd64.debLinux
Personal Information Management apps (USN-1512-1) kdepim_4.8.4a-0ubuntu0.3_all.debLinux
query and manipulate user account information (USN-4616-1) accountsservice_0.6.45-1ubuntu1.3_i386.debLinux
query and manipulate user account information (USN-4616-1) accountsservice_0.6.45-1ubuntu1.3_amd64.debLinux
query and manipulate user account information (USN-4616-1) accountsservice_0.6.40-2ubuntu11.6_i386.debLinux
query and manipulate user account information (USN-4616-1) accountsservice_0.6.40-2ubuntu11.6_amd64.debLinux
query and manipulate user account information (USN-4616-1) accountsservice_0.6.55-0ubuntu13.2_amd64.debLinux
query and manipulate user account information (USN-4616-1) accountsservice_0.6.55-0ubuntu12~20.04.4_amd64.debLinux
query and manipulate user account information (USN-4616-1) libaccountsservice0_0.6.45-1ubuntu1.3_i386.debLinux
query and manipulate user account information (USN-4616-1) libaccountsservice0_0.6.45-1ubuntu1.3_amd64.debLinux
query and manipulate user account information (USN-4616-1) libaccountsservice0_0.6.40-2ubuntu11.6_i386.debLinux
query and manipulate user account information (USN-4616-1) libaccountsservice0_0.6.40-2ubuntu11.6_amd64.debLinux
query and manipulate user account information (USN-4616-1) libaccountsservice0_0.6.55-0ubuntu13.2_amd64.debLinux
query and manipulate user account information (USN-4616-1) libaccountsservice0_0.6.55-0ubuntu12~20.04.4_amd64.debLinux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-26017Security update for the information disclosure vulnerability in Visual Studio 2010 Service Pack 1 (KB4476698)
PATCH-26016Security update for the information disclosure vulnerability in Visual Studio 2012 Update 5 (KB4476755)
PATCH-27172Security update for the information disclosure vulnerability in Microsoft Visual Studio 2010 Service Pack 1 (KB4506161)
PATCH-27184Security update for the information disclosure vulnerability in Microsoft Visual Studio 2013 Update 5 (KB4506163)
PATCH-27173Security update for the information disclosure vulnerability in Microsoft Visual Studio 2012 Update 5 (KB4506162)
PATCH-26921Security update for the information disclosure vulnerability in Visual Studio 2013 Update 5 (KB4089283)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234