CVE-2022-30167 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-30167 PUBLISHED CVSS 7.800000190734863 HIGH

AV1 Video Extension Remote Code Execution Vulnerability

EPSS 2.75% · 85.9th percentile

Risk Scores

CVSS v3.1

7.800000190734863

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

EPSS Score

2.75%

85.9th percentile

Affected Products

Vendor	Product	Versions
microsoft	av1_video_extension	1.1.0
Microsoft	AV1 Video Extension	1.1.0

Timeline

Jun 14, 2022 CVE Published
Jun 16, 2022 EPSS Score
Sep 20, 2022 EPSS Score
Nov 6, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
May 15, 2023 EPSS Score
Jul 2, 2023 EPSS Score
Oct 4, 2023 EPSS Score
Nov 21, 2023 EPSS Score
Feb 24, 2024 EPSS Score
Apr 11, 2024 EPSS Score

References

https://msrc.microsoft.com/update-guide/ advisory
AV1 Video Extension Remote Code Execution Vulnerability vendor-advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30167 url
https://nvd.nist.gov/vuln/detail/CVE-2022-30167 advisory

Open in Interactive Console →