CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
93.8%
Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, cause denial of service.
Below is a complete list of vulnerabilities:
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
CVE-2021-42282 high
CVE-2021-41367 warning
CVE-2021-41371 warning
CVE-2021-38665 warning
CVE-2021-38666 high
CVE-2021-42291 high
CVE-2021-42278 high
CVE-2021-41377 warning
CVE-2021-41379 warning
CVE-2021-42285 high
CVE-2021-42283 warning
CVE-2021-42275 high
CVE-2021-38631 warning
CVE-2021-41370 warning
CVE-2021-42287 high
CVE-2021-42284 high
CVE-2021-41366 warning
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
support.microsoft.com/kb/5007233
support.microsoft.com/kb/5007236
support.microsoft.com/kb/5007245
support.microsoft.com/kb/5007246
support.microsoft.com/kb/5007247
support.microsoft.com/kb/5007255
support.microsoft.com/kb/5007260
support.microsoft.com/kb/5007263
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38631
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38665
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-38666
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-41366
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-41367
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-41370
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-41371
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-41377
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-41379
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42275
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42278
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42282
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42283
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42284
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42285
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42287
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-42291
statistics.securelist.com/
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Windows-7/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2008/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2012/
threats.kaspersky.com/en/product/Microsoft-Windows-Server/
threats.kaspersky.com/en/product/Microsoft-Windows/
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
93.8%