Overview
- Description
- A command injection vulnerability exists in the Microsoft Wireless Display Adapter (MWDA) when the Microsoft Wireless Display Adapter does not properly manage user input, aka "Microsoft Wireless Display Adapter Command Injection Vulnerability." This affects Microsoft Wireless Display Adapter V2 Software.
- Source
- secure@microsoft.com
- NVD status
- Modified
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 5.5
- Impact score
- 3.4
- Exploitability score
- 2.1
- Vector string
- CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 5.2
- Impact score
- 6.4
- Exploitability score
- 5.1
- Vector string
- AV:A/AC:L/Au:S/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-77
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:wireless_display_adapter_firmware:2.0.8350:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1893F79A-CAFA-48DB-8620-F7C96FC571DA"
},
{
"criteria": "cpe:2.3:o:microsoft:wireless_display_adapter_firmware:2.0.8365:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "23641D96-2EE3-4F11-97F4-6F33A6F25DE4"
},
{
"criteria": "cpe:2.3:o:microsoft:wireless_display_adapter_firmware:2.0.8372:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BCABA19F-D04E-4CAF-B222-0B732B408278"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:microsoft:wireless_display_adapter:2:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "10A41CCA-EC1A-4FE7-BE92-7F81362355E9"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]