CVE-2021-28455 HIGH

CVE-2021-28455: Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability

Vendor Microsoft
Product Microsoft Access 2013 Service Pack 1 (32-bit editions)
Published May 11, 2021
Last update August 3, 2024

CVSS base score

8.8/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

What the vulnerability does

01Description

Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability

Key dates

02Disclosure timeline

May 11, 2021 CVE published
August 3, 2024 Record updated