Lucene search

[email protected]NVD:CVE-2021-40450

HistoryOct 13, 2021 - 1:15 a.m.

CVE-2021-40450

2021-10-1301:15:09

[email protected]

web.nvd.nist.gov

cve-2021-40450

win32k

elevation of privilege

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

38.6%

JSON

Win32k Elevation of Privilege Vulnerability

Affected configurations

Nvd

Node

microsoftwindows_10_1809Range<10.0.17763.2237

microsoftwindows_10_1909Range<10.0.18363.1854

microsoftwindows_10_2004Range<10.0.19041.1288

microsoftwindows_10_20h2Range<10.0.19042.1288

microsoftwindows_10_21h1Range<10.0.19043.1288

microsoftwindows_11_21h2Range<10.0.22000.258

microsoftwindows_server_2004Range<10.0.19041.1288

microsoftwindows_server_2019Range<10.0.17763.2237

microsoftwindows_server_2022Range<10.0.20348.288

microsoftwindows_server_20h2Range<10.0.19042.1288

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40450

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

38.6%

JSON

Related for NVD:CVE-2021-40450

attackerkb1 checkpoint_advisories1 prion1 cisa_kev1 cvelist1 cve1 mscve1 openvas3 nessus5 mskb5 kaspersky1 rapid7blog1