Lucene search

K
mscveMicrosoftMS:CVE-2021-36942
HistoryAug 10, 2021 - 7:00 a.m.

Windows LSA Spoofing Vulnerability

2021-08-1007:00:00
Microsoft
msrc.microsoft.com
152
windows
lsa spoofing
vulnerability
microsoft

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.5

Confidence

Low

EPSS

0.802

Percentile

98.4%

Affected configurations

Vulners
Node
microsoftwindows_server_2012Range<6.3.9600.20094r2
OR
microsoftwindows_server_2012Range<6.3.9600.20094r2
OR
microsoftwindows_server_2012Range<6.3.9600.20094r2
OR
microsoftwindows_server_2012Range<6.3.9600.20094r2
OR
microsoftwindows_server_2012Range<6.2.9200.23435
OR
microsoftwindows_server_2012Range<6.2.9200.23435
OR
microsoftwindows_server_2012Range<6.2.9200.23435
OR
microsoftwindows_server_2012Range<6.2.9200.23435
OR
microsoftwindows_server_2008Range<6.1.7601.25685r2x64
OR
microsoftwindows_server_2008Range<6.1.7601.25685r2x64
OR
microsoftwindows_server_2008Range<6.1.7601.25685r2x64
OR
microsoftwindows_server_2008Range<6.1.7601.25685r2x64
OR
microsoftwindows_server_2008Range<6.0.6003.21192x64
OR
microsoftwindows_server_2008Range<6.0.6003.21192x64
OR
microsoftwindows_server_2008Range<6.0.6003.21192x64
OR
microsoftwindows_server_2008Range<6.0.6003.21192x64
OR
microsoftwindows_server_2008Range<6.0.6003.21192
OR
microsoftwindows_server_2008Range<6.0.6003.21192
OR
microsoftwindows_server_2008Range<6.0.6003.21192
OR
microsoftwindows_server_2008Range<6.0.6003.21192
OR
microsoftwindows_server_2016Range<10.0.14393.4583
OR
microsoftwindows_server_2016Range<10.0.14393.4583
OR
microsoftwindows_server_20h2Range<10.0.19042.1165
OR
microsoftwindows_server_2004Range<10.0.19041.1165
OR
microsoftwindows_server_2019Range<10.0.17763.2114
OR
microsoftwindows_server_2019Range<10.0.17763.2114
VendorProductVersionCPE
microsoftwindows_server_2012*cpe:2.3:o:microsoft:windows_server_2012:*:r2:*:*:*:*:*:*
microsoftwindows_server_2012*cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*
microsoftwindows_server_2008*cpe:2.3:o:microsoft:windows_server_2008:*:r2:*:*:*:*:x64:*
microsoftwindows_server_2008*cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:x64:*
microsoftwindows_server_2008*cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*
microsoftwindows_server_2016*cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
microsoftwindows_server_20h2*cpe:2.3:o:microsoft:windows_server_20h2:*:*:*:*:*:*:*:*
microsoftwindows_server_2004*cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
microsoftwindows_server_2019*cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

7.5

Confidence

Low

EPSS

0.802

Percentile

98.4%