Lucene search

K
mscveMicrosoftMS:CVE-2021-36960
HistorySep 14, 2021 - 7:00 a.m.

Windows SMB Information Disclosure Vulnerability

2021-09-1407:00:00
Microsoft
msrc.microsoft.com
55
windows
smb
information disclosure
vulnerability
microsoft

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.5

Confidence

High

EPSS

0.051

Percentile

93.1%

Affected configurations

Vulners
Node
microsoftwindows_server_2012Range<6.3.9600.20120r2
OR
microsoftwindows_server_2012Range<6.3.9600.20120r2
OR
microsoftwindows_server_2012Range<6.3.9600.20120r2
OR
microsoftwindows_server_2012Range<6.3.9600.20120r2
OR
microsoftwindows_server_2012Range<6.2.9200.23462
OR
microsoftwindows_server_2012Range<6.2.9200.23462
OR
microsoftwindows_server_2012Range<6.2.9200.23462
OR
microsoftwindows_server_2012Range<6.2.9200.23462
OR
microsoftwindows_server_2008Range<6.1.7601.25712r2x64
OR
microsoftwindows_server_2008Range<6.1.7601.25712r2x64
OR
microsoftwindows_server_2008Range<6.1.7601.25712r2x64
OR
microsoftwindows_server_2008Range<6.1.7601.25712r2x64
OR
microsoftwindows_rt_8.1Range<6.3.9600.20120
OR
microsoftwindows_8.1Range<6.3.9600.20120x64
OR
microsoftwindows_8.1Range<6.3.9600.20120x64
OR
microsoftwindows_8.1Range<6.3.9600.20120
OR
microsoftwindows_8.1Range<6.3.9600.20120
OR
microsoftwindows_7Range<6.1.7601.25712x64
OR
microsoftwindows_7Range<6.1.7601.25712x64
OR
microsoftwindows_7Range<6.1.7601.25712
OR
microsoftwindows_7Range<6.1.7601.25712
OR
microsoftwindows_server_2016Range<10.0.14393.4651
OR
microsoftwindows_server_2016Range<10.0.14393.4651
OR
microsoftwindows_10_1607Range<10.0.14393.4651x64
OR
microsoftwindows_10_1607Range<10.0.14393.4651
OR
microsoftwindows_10Range<10.0.10240.19060x64
OR
microsoftwindows_10Range<10.0.10240.19060
OR
microsoftwindows_server_20h2Range<10.0.19042.1237
OR
microsoftwindows_10_20h2Range<10.0.19042.1237arm64
OR
microsoftwindows_10_20h2Range<10.0.19042.1237
OR
microsoftwindows_10_20h2Range<10.0.19042.1237x64
OR
microsoftwindows_server_2004Range<10.0.19041.1237
OR
microsoftwindows_10_2004Range<10.0.19041.1237
OR
microsoftwindows_10_2004Range<10.0.19041.1237
OR
microsoftwindows_10_2004Range<10.0.19041.1237
OR
microsoftwindows_server_2022Range<10.0.20348.230
OR
microsoftwindows_server_2022Range<10.0.20348.230
OR
microsoftwindows_10_21h1Range<10.0.19043.1237
OR
microsoftwindows_10_21h1Range<10.0.19043.1237arm64
OR
microsoftwindows_10_21h1Range<10.0.19043.1237x64
OR
microsoftwindows_10_1909Range<10.0.18363.1801
OR
microsoftwindows_10_1909Range<10.0.18363.1801
OR
microsoftwindows_10_1909Range<10.0.18363.1801
OR
microsoftwindows_server_2019Range<10.0.17763.2183
OR
microsoftwindows_server_2019Range<10.0.17763.2183
OR
microsoftwindows_10_1809Range<10.0.17763.2183arm64
OR
microsoftwindows_10_1809Range<10.0.17763.2183x64
OR
microsoftwindows_10_1809Range<10.0.17763.2183
VendorProductVersionCPE
microsoftwindows_server_2012*cpe:2.3:o:microsoft:windows_server_2012:*:r2:*:*:*:*:*:*
microsoftwindows_server_2012*cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*
microsoftwindows_server_2008*cpe:2.3:o:microsoft:windows_server_2008:*:r2:*:*:*:*:x64:*
microsoftwindows_rt_8.1*cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:*
microsoftwindows_8.1*cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:x64:*
microsoftwindows_8.1*cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*
microsoftwindows_7*cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:x64:*
microsoftwindows_7*cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*
microsoftwindows_server_2016*cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
microsoftwindows_10_1607*cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*
Rows per page:
1-10 of 281

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AI Score

6.5

Confidence

High

EPSS

0.051

Percentile

93.1%