Lucene search
HistoryFeb 25, 2021 - 11:15 p.m.
CVE-2021-1732
windows
win32k
elevation
privilege
vulnerability
cve-2021-1732
nvd
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
High
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
71.6%
Windows Win32k Elevation of Privilege Vulnerability
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_10_1803 | 10.0.0 | cpe:2.3:o:microsoft:windows_10_1803:10.0.0:*:*:*:*:*:*:* |
| microsoft | windows_10_1809 | 10.0.0 | cpe:2.3:o:microsoft:windows_10_1809:10.0.0:*:*:*:*:*:*:* |
| microsoft | windows_server_2019 | 10.0.0 | cpe:2.3:o:microsoft:windows_server_2019:10.0.0:*:*:*:*:*:*:* |
| microsoft | windows_server_2019 | 10.0.0 | cpe:2.3:o:microsoft:windows_server_2019:10.0.0:*:*:*:*:*:*:* |
| microsoft | windows_10_1909 | 10.0.0 | cpe:2.3:o:microsoft:windows_10_1909:10.0.0:*:*:*:*:*:*:* |
| microsoft | windows_server,_version_1909 | 10.0.0 | cpe:2.3:o:microsoft:windows_server,_version_1909:10.0.0:*:*:*:*:*:*:* |
| microsoft | windows_10_2004 | 10.0.0 | cpe:2.3:o:microsoft:windows_10_2004:10.0.0:*:*:*:*:*:*:* |
| microsoft | windows_server_version_2004 | 10.0.0 | cpe:2.3:o:microsoft:windows_server_version_2004:10.0.0:*:*:*:*:*:*:* |
| microsoft | windows_10_20h2 | 10.0.0 | cpe:2.3:o:microsoft:windows_10_20h2:10.0.0:*:*:*:*:*:*:* |
| microsoft | windows_server_20h2 | 10.0.0 | cpe:2.3:o:microsoft:windows_server_20h2:10.0.0:*:*:*:*:*:*:* |
References
Social References
More
Related
trendmicroblog
trendmicroblog
PurpleFox Adds New Backdoor That Uses WebSockets
2021-10-19 00:00:00
PurpleFox Adds New Backdoor That Uses WebSockets
2021-10-19 00:00:00
prion
prion
Privilege escalation
2021-02-25 23:15:00
threatpost
threatpost
Microsoft Pulls Bad Windows Update After Patch Issue
2021-02-16 16:47:36
Public Exploit Released for Windows 10 Bug
2022-01-31 21:59:35
Actively Exploited Windows Kernel Bug Allows Takeover
2021-02-09 22:33:08
cisa
cisa
Microsoft Warns of Windows Win32k Privilege Escalation
2021-02-09 00:00:00
githubexploit
githubexploit
Exploit for Out-of-bounds Write in Microsoft
2023-07-11 09:29:18
Exploit for Out-of-bounds Write in Microsoft
2022-02-15 16:55:31
Exploit for Out-of-bounds Write in Microsoft
2023-03-09 07:14:45
seebug
seebug
Microsoft Windows本地提权漏洞(CVE-2021-1732)
2021-03-26 00:00:00
mscve
mscve
Windows Win32k Elevation of Privilege Vulnerability
2021-02-09 08:00:00
cisa_kev
cisa_kev
Microsoft Win32k Privilege Escalation Vulnerability
2021-11-03 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Win32k Elevation of Privilege (CVE-2021-1732)
2021-02-09 00:00:00
securelist
securelist
APT trends report Q1 2021
2021-04-27 10:00:26
Zero-day vulnerability in Desktop Window Manager (CVE-2021-28310) used in the wild
2021-04-13 17:35:50
APT annual review 2021
2021-11-30 10:00:31
malwarebytes
malwarebytes
Big Patch Tuesday: Microsoft and Adobe fix in-the-wild exploits
2021-02-10 17:26:33
packetstorm
packetstorm
Win32k ConsoleControl Offset Confusion
2021-03-19 00:00:00
Win32k ConsoleControl Offset Confusion / Privilege Escalation
2022-02-28 00:00:00
thn
thn
Raspberry Robin Malware Upgrades with Discord Spread and New Exploits
2024-02-09 16:32:00
Bitter APT Hackers Add Bangladesh to Their List of Targets in South Asia
2022-05-11 12:37:00
attackerkb
attackerkb
metasploit
metasploit
Win32k ConsoleControl Offset Confusion
2022-02-18 20:23:38
hivepro
hivepro
Vulnerabilities & Threats that Matter 08 – 14th Aug
2022-08-16 05:00:49
zdt
zdt
Win32k ConsoleControl Offset Confusion / Privilege Escalation Exploit
2022-02-28 00:00:00
krebs
krebs
Microsoft Patch Tuesday, February 2021 Edition
2021-02-09 22:37:19
rapid7blog
rapid7blog
Metasploit Wrap-Up
2021-03-26 17:36:13
Metasploit Weekly Wrap-Up
2022-03-04 21:52:42
Patch Tuesday - February 2021
2021-02-09 23:51:27
qualysblog
qualysblog
February 2021 Patch Tuesday – 56 Vulnerabilities, 11 Critical, Adobe
2021-02-09 20:22:38
Qualys Response to CISA Alert: Binding Operational Directive 22-01
2021-11-09 06:15:01
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
wallarmlab
wallarmlab
googleprojectzero
googleprojectzero
2022 0-day In-the-Wild Exploitation…so far
2022-06-30 00:00:00
The More You Know, The More You Know You Don’t Know
2022-04-19 00:00:00
nessus
nessus
KB4601354: Windows 10 Version 1803 February 2021 Security Update
2021-02-09 00:00:00
KB4601315: Windows 10 Version 1909 February 2021 Security Update
2021-02-09 00:00:00
mskb
mskb
February 9, 2021—KB4601354 (OS Build 17134.2026) - EXPIRED
2021-02-09 08:00:00
February 9, 2021—KB4601345 (OS Build 17763.1757) - EXPIRED
2021-02-09 08:00:00
February 9, 2021—KB4601315 (OS Build 18363.1377) - EXPIRED
2021-02-09 08:00:00
avleonov
avleonov
Vulristics: Microsoft Patch Tuesdays Q1 2021
2021-03-26 02:47:52
kaspersky
kaspersky
KLA12071 Multiple vulnerabilities in Microsoft Windows
2021-02-09 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
High
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
71.6%
Related for CVE-2021-1732