CVE-2021-36945

CVE-2021-36945 affects Windows 10 Update Assistant. Connected sources describe an elevation-of-privilege flaw caused by insufficient access control in Update Assistant, enabling local privilege escalation. Root cause: improper access control within the Update Assistant component; affected surface...

CVE-2019-1378

CVE-2019-1378 is a local privilege escalation affecting Windows 10 Update Assistant. The vulnerability arises from how permissions are handled in the Update Assistant, allowing a locally authenticated attacker to elevate to SYSTEM and run arbitrary code. Microsoft’s advisory notes that the fix in...

CVE-2021-43211

CVE-2021-43211 concerns Windows Update Assistant with an elevation-of-privilege flaw due to insufficient access control. Multiple sources (NVD, CNVD, KLA, ENISA-related records) identify Windows Update Assistant as the affected component and describe privilege escalation as the impact. The EU/NVD...

CVE-2021-42297

CVE-2021-42297 affects the Windows 10 Update Assistant, enabling local privilege escalation via a flaw in the Update Assistant that can be exploited by abusing symbolic links to delete a folder. Public advisories describe the flaw as a local privilege escalation in Update Assistant, with user int...