Lucene search
MicrosoftCVELIST:CVE-2021-1647HistoryJan 12, 2021 - 7:42 p.m.
CVE-2021-1647 Microsoft Defender Remote Code Execution Vulnerability
2021-01-1219:42:01
microsoft
www.cve.org
3
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
0.092 Low
EPSS
Percentile
94.7%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Microsoft System Center Endpoint Protection",
"cpes": [],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "N/A",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft System Center 2012 R2 Endpoint Protection",
"cpes": [],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "N/A",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft Security Essentials",
"cpes": [],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "N/A",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Microsoft System Center 2012 Endpoint Protection",
"cpes": [],
"platforms": [
"Unknown"
],
"versions": [
{
"version": "N/A",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Defender",
"cpes": [],
"platforms": [
"Windows 10 Version 1803 for 32-bit Systems",
"Windows 10 Version 1803 for x64-based Systems",
"Windows 10 Version 1803 for ARM64-based Systems",
"Windows 10 Version 1809 for 32-bit Systems",
"Windows 10 Version 1809 for x64-based Systems",
"Windows 10 Version 1809 for ARM64-based Systems",
"Windows Server 2019",
"Windows Server 2019 (Server Core installation)",
"Windows 10 Version 1909 for 32-bit Systems",
"Windows 10 Version 1909 for x64-based Systems",
"Windows 10 Version 1909 for ARM64-based Systems",
"Windows Server, version 1909 (Server Core installation)",
"Windows 10 Version 2004 for 32-bit Systems",
"Windows 10 Version 2004 for ARM64-based Systems",
"Windows 10 Version 2004 for x64-based Systems",
"Windows Server, version 2004 (Server Core installation)",
"Windows 10 Version 20H2 for 32-bit Systems",
"Windows 10 Version 20H2 for ARM64-based Systems",
"Windows Server, version 20H2 (Server Core Installation)",
"Windows 10 for 32-bit Systems",
"Windows 10 for x64-based Systems",
"Windows 10 Version 1607 for 32-bit Systems",
"Windows 10 Version 1607 for x64-based Systems",
"Windows Server 2016",
"Windows Server 2016 (Server Core installation)",
"Windows 7 for 32-bit Systems Service Pack 1",
"Windows 7 for x64-based Systems Service Pack 1",
"Windows 8.1 for 32-bit systems",
"Windows 8.1 for x64-based systems",
"Windows RT 8.1",
"Windows Server 2008 for 32-bit Systems Service Pack 2",
"Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)",
"Windows Server 2008 R2 for x64-based Systems Service Pack 1",
"Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
"Windows Server 2012",
"Windows Server 2012 (Server Core installation)",
"Windows Server 2012 R2",
"Windows Server 2012 R2 (Server Core installation)"
],
"versions": [
{
"version": "N/A",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2021-1647
2021-01-12 20:15:30
kaspersky
kaspersky
KLA12044 ACE vulnerability in Microsoft System Center
2021-01-12 00:00:00
attackerkb
attackerkb
CVE-2021-1647 Microsoft Windows Defender Zero-Day Vulnerability
2021-01-12 00:00:00
threatpost
threatpost
North Korea Targets Security Researchers in Elaborate 0-Day Campaign
2021-01-26 14:49:03
Twitter Suspends Accounts Used to Snare Security Researchers
2021-10-18 16:23:21
openvas
openvas
prion
prion
Remote code execution
2021-01-12 20:15:00
nessus
nessus
Security Update for Windows Defender (January 2021)
2021-01-12 00:00:00
Security Update for Forefront Endpoint Protection (January 2021)
2021-01-12 00:00:00
rapid7blog
rapid7blog
State-Sponsored Threat Actors Target Security Researchers
2021-01-26 15:01:33
Patch Tuesday - January 2021
2021-01-12 23:59:00
cve
cve
CVE-2021-1647
2021-01-12 20:15:30
thn
thn
N. Korean Hackers Targeting Security Experts to Steal Undisclosed Researches
2021-01-26 05:10:00
Microsoft Issues Patches for Defender Zero-Day and 82 Other Windows Flaws
2021-01-13 05:01:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2021-01-20 10:05:00
cisa_kev
cisa_kev
Microsoft Defender Remote Code Execution Vulnerability
2021-11-03 00:00:00
cisa
cisa
RCE Vulnerability Affecting Microsoft Defender
2021-01-14 00:00:00
mscve
mscve
Microsoft Defender Remote Code Execution Vulnerability
2021-01-12 08:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Defender Remote Code Execution (CVE-2021-1647)
2021-01-12 00:00:00
malwarebytes
malwarebytes
Microsoft issues 83 patches, one for actively exploited vulnerability
2021-01-13 19:40:58
qualysblog
qualysblog
January 2021 Patch Tuesday – 83 Vulnerabilities, 10 Critical, One Zero Day, Adobe
2021-01-12 20:01:43
Qualys Response to CISA Alert: Binding Operational Directive 22-01
2021-11-09 06:15:01
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
krebs
krebs
Microsoft Patch Tuesday, January 2021 Edition
2021-01-13 01:32:20
securelist
securelist
IT threat evolution Q1 2021. Non-mobile statistics
2021-05-31 10:00:05
avleonov
avleonov
Vulristics: Microsoft Patch Tuesdays Q1 2021
2021-03-26 02:47:52
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
0.092 Low
EPSS
Percentile
94.7%
Related for CVELIST:CVE-2021-1647