CVE-2021-28455

Summary

Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Access 2013 Service Pack 1 (32-bit editions)15.0.0 < 15.0.5353.1000affected
MicrosoftMicrosoft Access 2013 Service Pack 1 (64-bit editions)15.0.0 < 15.0.5353.1000affected
MicrosoftMicrosoft Office 201919.0.0 < https://aka.ms/OfficeSecurityReleasesaffected
MicrosoftMicrosoft 365 Apps for Enterprise16.0.1 < https://aka.ms/OfficeSecurityReleasesaffected
MicrosoftMicrosoft Office 201616.0.0 < 16.0.5161.1001affected
MicrosoftMicrosoft Access 2016 (32-bit edition)16.0.0 < publicationaffected
MicrosoftMicrosoft Access 2016 (64-bit edition)16.0.0 < publicationaffected
MicrosoftMicrosoft Office 2013 Service Pack 115.0.0 < 15.0.5345.1001affected
MicrosoftWindows 10 Version 180310.0.0 < 10.0.17134.2207affected
MicrosoftWindows 10 Version 180910.0.0 < 10.0.17763.1935affected
MicrosoftWindows Server 201910.0.0 < 10.0.17763.1935affected
MicrosoftWindows Server 2019 (Server Core installation)10.0.0 < 10.0.17763.1935affected
MicrosoftWindows 10 Version 190910.0.0 < 10.0.18363.1556affected
MicrosoftWindows Server, version 1909 (Server Core installation)10.0.0 < 10.0.18363.1556affected
MicrosoftWindows 10 Version 200410.0.0 < 10.0.19041.982affected
MicrosoftWindows Server version 200410.0.0 < 10.0.19041.982affected
MicrosoftWindows 10 Version 20H210.0.0 < 10.0.19042.982affected
MicrosoftWindows Server version 20H210.0.0 < 10.0.19042.982affected
MicrosoftWindows 10 Version 150710.0.0 < 10.0.10240.18931affected
MicrosoftWindows 10 Version 160710.0.0 < 10.0.14393.4401affected
MicrosoftWindows Server 201610.0.0 < 10.0.14393.4401affected
MicrosoftWindows Server 2016 (Server Core installation)10.0.0 < 10.0.14393.4401affected
MicrosoftWindows 76.1.0 < 6.1.7601.24597affected
MicrosoftWindows 76.1.0 < 6.1.7601.24598affected
MicrosoftWindows 7 Service Pack 16.1.0 < 6.1.7601.24597affected
MicrosoftWindows 7 Service Pack 16.1.0 < 6.1.7601.24598affected
MicrosoftWindows 8.16.3.0 < 6.3.9600.20017affected
MicrosoftWindows Server 2008 Service Pack 26.0.0 < 6.0.6003.21117affected
MicrosoftWindows Server 2008 Service Pack 2 (Server Core installation)6.0.0 < 6.0.6003.21117affected
MicrosoftWindows Server 2008 Service Pack 26.0.0 < 6.0.6003.21117affected
MicrosoftWindows Server 2008 R2 Service Pack 16.1.0 < 6.1.7601.24597affected
MicrosoftWindows Server 2008 R2 Service Pack 16.1.0 < 6.1.7601.24598affected
MicrosoftWindows Server 2008 R2 Service Pack 1 (Server Core installation)6.0.0 < 6.1.7601.24597affected
MicrosoftWindows Server 2008 R2 Service Pack 1 (Server Core installation)6.0.0 < 6.1.7601.24598affected
MicrosoftWindows Server 20126.2.0 < 6.2.9200.23347affected
MicrosoftWindows Server 2012 (Server Core installation)6.2.0 < 6.2.9200.23347affected
MicrosoftWindows Server 2012 R26.3.0 < 6.3.9600.20017affected
MicrosoftWindows Server 2012 R2 (Server Core installation)6.3.0 < 6.3.9600.20017affected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References