vulnerability
Microsoft Windows: CVE-2021-36976: Libarchive Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Jan 11, 2022 | Jan 11, 2022 | Sep 5, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Jan 11, 2022
Added
Jan 11, 2022
Modified
Sep 5, 2025
Description
libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block).
Solutions
microsoft-windows-windows_10-1809-kb5009557microsoft-windows-windows_10-1909-kb5009545microsoft-windows-windows_10-20h2-kb5009543microsoft-windows-windows_10-21h1-kb5009543microsoft-windows-windows_10-21h2-kb5009543microsoft-windows-windows_11-21h2-kb5009566microsoft-windows-windows_server_2019-1809-kb5009557microsoft-windows-windows_server_2022-21h2-kb5009555microsoft-windows-windows_server_2022-22h2-kb5009555msft-kb5009543-e6a7130f-f52b-4ae1-bd76-f4d96045c0e6
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.