Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA12071
HistoryFeb 09, 2021 - 12:00 a.m.

KLA12071 Multiple vulnerabilities in Microsoft Windows

2021-02-0900:00:00
Kaspersky Lab
threats.kaspersky.com
80

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.386 Low

EPSS

Percentile

97.2%

JSON

Detect date:

02/09/2021

Severity:

Critical

Description:

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, obtain sensitive information, bypass security restrictions.

Exploitation:

Public exploits exist for this vulnerability.

Affected products:

Windows 10 Version 1909 for ARM64-based Systems
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2012
Windows 10 Version 1809 for x64-based Systems
Windows Server 2008 for x64-based Systems Service Pack 2
Windows 10 Version 20H2 for ARM64-based Systems
Windows Server, version 2004 (Server Core installation)
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 1803 for 32-bit Systems
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows 10 Version 1909 for 32-bit Systems
Windows Server, version 20H2 (Server Core Installation)
Windows 10 Version 1803 for x64-based Systems
Windows 10 Version 2004 for 32-bit Systems
Windows 10 Version 2004 for ARM64-based Systems
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2019
Windows RT 8.1
Windows 10 Version 2004 for x64-based Systems
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server, version 1909 (Server Core installation)
Windows Server 2016
Windows 10 Version 1809 for 32-bit Systems
Windows 8.1 for x64-based systems
Windows Server 2012 R2 (Server Core installation)
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 1803 for ARM64-based Systems
Windows Server 2016 (Server Core installation)
Windows Server 2012 R2
Windows 10 Version 1607 for x64-based Systems
Windows 7 for 32-bit Systems Service Pack 1
Windows 10 Version 20H2 for 32-bit Systems
Windows 10 for 32-bit Systems
Windows 10 Version 20H2 for x64-based Systems
Windows Server 2012 (Server Core installation)
Windows 10 for x64-based Systems
Windows Server 2019 (Server Core installation)
Windows 8.1 for 32-bit systems
Windows 10 Version 1909 for x64-based Systems
Windows Server, version 1903 (Server Core installation)
Windows 10 Version 1903 for ARM64-based Systems
Windows 10 Version 1903 for 32-bit Systems
Windows 10 Version 1903 for x64-based Systems

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

CVE-2021-24080
CVE-2021-24103
CVE-2021-24093
CVE-2021-1734
CVE-2021-25195
CVE-2021-24086
CVE-2021-1727
CVE-2021-24102
CVE-2021-24094
CVE-2021-24076
CVE-2021-24078
CVE-2021-24084
CVE-2021-24075
CVE-2021-24082
CVE-2021-1731
CVE-2021-24083
CVE-2021-24079
CVE-2021-24096
CVE-2021-1722
CVE-2021-24098
CVE-2021-24074
CVE-2021-24088
CVE-2021-24081
CVE-2021-24077
CVE-2021-1698
CVE-2021-24106
CVE-2021-1732
CVE-2021-24091
CVE-2020-17162

Impacts:

ACE

Related products:

Microsoft Windows

CVE-IDS:

CVE-2021-240806.5High
CVE-2021-241037.8Critical
CVE-2021-240938.8Critical
CVE-2021-17347.5Critical
CVE-2021-251957.8Critical
CVE-2021-240867.5Critical
CVE-2021-17277.8Critical
CVE-2021-241027.8Critical
CVE-2021-240949.8Critical
CVE-2021-240765.5High
CVE-2021-240789.8Critical
CVE-2021-240845.5High
CVE-2021-240756.8High
CVE-2021-240824.3Warning
CVE-2021-17315.5High
CVE-2021-240837.8Critical
CVE-2021-240795.5High
CVE-2021-240967.8Critical
CVE-2021-17228.1Critical
CVE-2021-240985.5High
CVE-2021-240749.8Critical
CVE-2021-240888.8Critical
CVE-2021-240817.8Critical
CVE-2021-240779.8Critical
CVE-2021-16987.8Critical
CVE-2021-241065.5High
CVE-2021-17327.8Critical
CVE-2021-240917.8Critical
CVE-2020-171628.8Critical

KB list:

4571756
4570333
4577032
4577049
4577015
4577066
4574727
4577071
4601354
4601319
4601315
4601345
4601318
4601384
4601349
4601331
5008218
5008206
5008212

Microsoft official advisories:

References

Related

nessus 10
openvas 9
mskb 14
kaspersky 1
threatpost 5
qualysblog 1
trellix 2
attackerkb 8
mscve 29
msrc 4
thn 5
githubexploit 16
rapid7blog 4
malwarebytes 2
prion 29
hivepro 2
krebs 1
cve 29
zdi 4
checkpoint_advisories 3
cnvd 2
seebug 2
cisa 1
trendmicroblog 2
securelist 6
cisa_kev 1
avleonov 1
packetstorm 2
googleprojectzero 1
metasploit 1
zdt 1
wallarmlab 1
nessus
nessus
KB4601319: Windows 10 version 2004 Feb 2021 Security Update
2021-02-09 00:00:00
KB4601315: Windows 10 Version 1909 February 2021 Security Update
2021-02-09 00:00:00
KB4601345: Windows 10 Version 1809 and Windows Server 2019 February 2021 Security Update
2021-02-09 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4601319)
2021-02-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4601315)
2021-02-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4601318)
2021-02-10 00:00:00
mskb
mskb
February 9, 2021—KB4601319 (OS Builds 19041.804 and 19042.804)
2021-02-09 08:00:00
February 9, 2021—KB4601331 (OS Build 10240.18842) - EXPIRED
2021-02-09 08:00:00
February 9, 2021—KB4601315 (OS Build 18363.1377) - EXPIRED
2021-02-09 08:00:00
kaspersky
kaspersky
KLA12075 Multiple vulnerabilities in Microsoft Products (ESU)
2021-02-09 00:00:00
threatpost
threatpost
Actively Exploited Windows Kernel Bug Allows Takeover
2021-02-09 22:33:08
Microsoft Pulls Bad Windows Update After Patch Issue
2021-02-16 16:47:36
Attackers Actively Target Windows Installer Zero-Day
2021-11-24 14:09:18
qualysblog
qualysblog
February 2021 Patch Tuesday – 56 Vulnerabilities, 11 Critical, Adobe
2021-02-09 20:22:38
trellix
trellix
Researchers Follow the Breadcrumbs: The Latest Vulnerabilities in Windows' Network Stack | McAfee Blogs
2021-02-09 00:00:00
Researchers Follow the Breadcrumbs: The Latest Vulnerabilities in Windows' Network Stack | McAfee Blogs
2021-02-09 00:00:00
attackerkb
attackerkb
CVE-2021-24094
2021-02-25 00:00:00
CVE-2021-24074
2021-02-25 00:00:00
CVE-2021-1732
2021-02-25 00:00:00
mscve
mscve
Windows TCP/IP Remote Code Execution Vulnerability
2021-02-09 08:00:00
Windows TCP/IP Remote Code Execution Vulnerability
2021-02-09 08:00:00
Windows TCP/IP Denial of Service Vulnerability
2021-02-09 08:00:00
msrc
msrc
TCP/IP に影響を与える脆弱性情報に関する注意喚起
2021-02-11 08:00:00
Multiple Security Updates Affecting TCP/IP:  CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086
2021-02-09 08:00:00
Multiple Security Updates Affecting TCP/IP:  CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086
2021-02-09 18:10:59
thn
thn
Microsoft Issues Patches for In-the-Wild 0-day and 55 Others Windows Bugs
2021-02-10 04:44:00
Unpatched Unauthorized File Read Vulnerability Affects Microsoft Windows OS
2021-11-30 09:11:00
CISA Orders Federal Agencies to Patch Actively Exploited Windows Vulnerability
2022-02-07 05:03:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2021-04-07 11:10:40
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft
2021-11-27 00:37:07
Exploit for Vulnerability in Microsoft
2021-11-25 04:56:33
rapid7blog
rapid7blog
Patch Tuesday - February 2021
2021-02-09 23:51:27
Popular Attack Surfaces, August 2021: What You Need to Know
2021-08-12 17:13:25
Metasploit Wrap-Up
2021-03-26 17:36:13
malwarebytes
malwarebytes
Big Patch Tuesday: Microsoft and Adobe fix in-the-wild exploits
2021-02-10 17:26:33
Apply those updates now: CVE bypass offers up admin privileges for Windows 10
2022-02-01 11:07:29
prion
prion
Denial of service
2021-02-25 23:15:00
Security feature bypass
2021-02-25 23:15:00
Information disclosure
2021-02-25 23:15:00
hivepro
hivepro
Microsoft could not patch this vulnerability yet again
2021-12-01 04:26:33
Vulnerabilities & Threats that Matter 08 – 14th Aug
2022-08-16 05:00:49
krebs
krebs
Microsoft Patch Tuesday, February 2021 Edition
2021-02-09 22:37:19
cve
cve
CVE-2021-24075
2021-02-25 23:15:00
CVE-2021-24082
2021-02-25 23:15:00
CVE-2020-17162
2021-02-25 23:15:00
zdi
zdi
Microsoft Windows Device Management Enrollment Service Directory Junction Information Disclosure Vulnerability
2021-02-10 00:00:00
Microsoft Windows Camera Codec Pack Image Processing Out-Of-Bounds Write Remote Code Execution Vulnerability
2021-02-10 00:00:00
Microsoft Windows Camera Codec Pack Out-Of-Bounds Write Remote Code Execution Vulnerability
2021-02-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows DNS Server Remote Code Execution (CVE-2021-24078)
2021-02-09 00:00:00
Microsoft Windows Win32k Elevation of Privilege (CVE-2021-1698)
2021-02-09 00:00:00
Microsoft Win32k Elevation of Privilege (CVE-2021-1732)
2021-02-09 00:00:00
cnvd
cnvd
Microsoft Windows/Windows Server Elevation of Privilege Vulnerability (CNVD-2021-66102)
2021-02-26 00:00:00
Microsoft Windows/Windows Server Remote Code Execution Vulnerability (CNVD-2021-62486)
2021-02-26 00:00:00
seebug
seebug
Windows TCP/IP 拒绝服务漏洞(CVE-2021-24086)
2021-04-08 00:00:00
Microsoft Windows本地提权漏洞(CVE-2021-1732)
2021-03-26 00:00:00
cisa
cisa
Microsoft Warns of Windows Win32k Privilege Escalation
2021-02-09 00:00:00
trendmicroblog
trendmicroblog
PurpleFox Adds New Backdoor That Uses WebSockets
2021-10-19 00:00:00
PurpleFox Adds New Backdoor That Uses WebSockets
2021-10-19 00:00:00
securelist
securelist
APT trends report Q1 2021
2021-04-27 10:00:26
Kaspersky Security Bulletin 2020-2021. EU statistics
2021-05-26 10:00:32
IT threat evolution Q1 2021. Non-mobile statistics
2021-05-31 10:00:05
cisa_kev
cisa_kev
Microsoft Win32k Privilege Escalation Vulnerability
2021-11-03 00:00:00
avleonov
avleonov
Vulristics: Microsoft Patch Tuesdays Q1 2021
2021-03-26 02:47:52
packetstorm
packetstorm
Win32k ConsoleControl Offset Confusion
2021-03-19 00:00:00
Win32k ConsoleControl Offset Confusion / Privilege Escalation
2022-02-28 00:00:00
googleprojectzero
googleprojectzero
Who Contains the Containers?
2021-04-01 00:00:00
metasploit
metasploit
Win32k ConsoleControl Offset Confusion
2022-02-18 20:23:38
zdt
zdt
Win32k ConsoleControl Offset Confusion / Privilege Escalation Exploit
2022-02-28 00:00:00
wallarmlab
wallarmlab
Weekly exploit digest – March, 15-21 – VMware View Planner, Win32k ConsoleControl, Microsoft Windows Containers DP API
2021-03-21 13:09:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.386 Low

EPSS

Percentile

97.2%

JSON
Related for KLA12071
nessus10openvas9mskb14kaspersky1threatpost5qualysblog1trellix2attackerkb8mscve29msrc4thn5githubexploit16rapid7blog4malwarebytes2prion29hivepro2krebs1cve29zdi4checkpoint_advisories3cnvd2seebug2cisa1trendmicroblog2securelist6cisa_kev1avleonov1packetstorm2googleprojectzero1metasploit1zdt1wallarmlab1