How severe is CVE-2022-41156?

CVE-2022-41156 has a CVSS v3 score of 7.8 (HIGH).

CVE-2022-41156

Name: windows
Author: microsoft

7.8HIGH

Remote code execution vulnerability due to insufficient verification of URLs, etc. in OndiskPlayerAgent. A remote attacker could exploit the vulnerability to cause remote code execution by causing an

Published: 11/25/2022Updated: 11/21/2024

Description

Remote code execution vulnerability due to insufficient verification of URLs, etc. in OndiskPlayerAgent. A remote attacker could exploit the vulnerability to cause remote code execution by causing an arbitrary user to download and execute malicious code.

AI AnalysisPowered by AI

Affected Products

etm-sondiskplayeragent

1.3.8.12

microsoftwindows

References

https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=67041
Third Party AdvisoryVDB Entry
https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=67041
Third Party AdvisoryVDB Entry