Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2021-87325
HistoryNov 12, 2021 - 12:00 a.m.

Microsoft Windows Diagnostic Hub Elevation of Privilege Vulnerability

2021-11-1200:00:00
China National Vulnerability Database
www.cnvd.org.cn
8

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

JSON

Microsoft Windows Diagnostic Hub is an application from Microsoft Corporation (USA). It is not only a task manager, but also a device diagnostic center. This application combines Windows developer tools with UWP functionality to access new information and features.Microsoft Windows Diagnostic Hub is vulnerable to an elevation of privilege vulnerability that can be exploited by attackers.

Related

mskb 8
zdi 1
prion 1
cve 1
mscve 1
nessus 8
kaspersky 2
openvas 5
mskb
mskb
Description of the security update for the elevation of privilege vulnerability in Microsoft Visual Studio 2015 Update 3: November 9, 2021 (KB5007275)
2021-11-09 08:00:00
November 9, 2021—KB5007207 (OS Build 10240.19119) - EXPIRED
2021-11-09 08:00:00
November 9, 2021—KB5007215 (OS Build 22000.318)
2021-11-09 08:00:00
zdi
zdi
Microsoft Windows Diagnostics Hub Link Following Privilege Escalation Vulnerability
2021-11-11 00:00:00
prion
prion
Privilege escalation
2021-11-10 01:19:00
cve
cve
CVE-2021-42277
2021-11-10 01:19:00
mscve
mscve
Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
2021-11-09 08:00:00
nessus
nessus
Security Updates for Microsoft Visual Studio Products (November 2021)
2021-11-10 00:00:00
KB5007207: Windows 10 LTS 1507 Security Update (November 2021)
2021-11-09 00:00:00
KB5007215: Windows 11 Security Updates (November 2021)
2021-11-09 00:00:00
kaspersky
kaspersky
KLA12346 Multiple vulnerabilities in Microsoft Developer Tools
2021-11-09 00:00:00
KLA12345 Multiple vulnerabilities in Microsoft Windows
2021-11-09 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5007186)
2021-11-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5007207)
2021-11-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5007189)
2021-11-10 00:00:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

JSON
Related for CNVD-2021-87325
mskb8zdi1prion1cve1mscve1nessus8kaspersky2openvas5