{"id": "SECURITYVULNS:DOC:27093", "bulletinFamily": "software", "title": "NGS00109 Patch Notification: ImpressPages CMS Remote code execution", "description": "High Risk Vulnerability in ImpressPages CMS \r\n\r\n27 September 2011\r\n\r\nDavid Middlehurst of NGS Secure has discovered a High risk vulnerability in ImpressPages CMS v1.0.12.\r\n\r\nImpact: Remote code execution \r\n\r\nPlease update all instances of Impress Pages to the 1.0.13 release: \r\nhttp://www.impresspages.org/news/impresspages-1-0-13-security-release/\r\n\r\nNGS Secure is going to withhold details of this flaw for three months. This three month window will allow users the time needed to apply the patch before the details are released to the general public. This reflects the NGS Secure approach to responsible disclosure.\r\n\r\nNGS Secure Research\r\nhttp://www.ngssecure.com\r\n\r\n", "published": "2011-10-01T00:00:00", "modified": "2011-10-01T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:27093", "reporter": "Securityvulns", "references": [], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:10:42", "edition": 1, "viewCount": 48, "enchantments": {"score": {"value": 7.0, "vector": "NONE", "modified": "2018-08-31T11:10:42", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2008-7273", "CVE-2014-2595", "CVE-2015-9286", "CVE-2008-7272"]}, {"type": "seebug", "idList": ["SSV:93041"]}, {"type": "zdt", "idList": ["1337DAY-ID-26085", "1337DAY-ID-27093"]}, {"type": "exploitdb", "idList": ["EDB-ID:40627"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:139317"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:32652", "SECURITYVULNS:DOC:32654", "SECURITYVULNS:DOC:32653", "SECURITYVULNS:DOC:32656", "SECURITYVULNS:VULN:14755", "SECURITYVULNS:VULN:14753", "SECURITYVULNS:DOC:32651", "SECURITYVULNS:VULN:14720", "SECURITYVULNS:DOC:32660", "SECURITYVULNS:DOC:32658"]}], "modified": "2018-08-31T11:10:42", "rev": 2}, "vulnersScore": 7.0}, "affectedSoftware": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}

{"nessus": [{"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "64e3d286c5ea304990ff33b049169a47", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-09-17T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-10-11T11:46:34", "history": [{"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "db6d9adca7229db926171b776c948588663b832c64f335a09cc4cc1b7ec01e04", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: April 2021 Windows 2004 & 20H2 Security Update", "description": "The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-05-05T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001330"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26417", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28441", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28324", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-27090", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-05-06T03:38:39", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-05-06T03:38:39", "references": [{"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-27088", "MS:CVE-2021-28441", "MS:CVE-2021-28314", "MS:CVE-2021-27090", "MS:CVE-2021-28324", "MS:CVE-2021-26417"], "type": "mscve"}, {"idList": ["CVE-2021-28447", "CVE-2021-28441", "CVE-2021-27092", "CVE-2021-27094", "CVE-2021-27086", "CVE-2021-28324", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28322", "CVE-2021-27090"], "type": "cve"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-05-06T03:38:39", "rev": 2, "value": 5.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.1\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/05/05\");\n script_cve_id(\n \"CVE-2021-28447\",\n \"CVE-2021-28441\",\n \"CVE-2021-28356\",\n \"CVE-2021-28349\",\n \"CVE-2021-28342\",\n \"CVE-2021-28338\",\n \"CVE-2021-28320\",\n \"CVE-2021-28436\",\n \"CVE-2021-28348\",\n \"CVE-2021-28330\",\n \"CVE-2021-28343\",\n \"CVE-2021-28340\",\n \"CVE-2021-28328\",\n \"CVE-2021-28327\",\n \"CVE-2021-28440\",\n \"CVE-2021-28439\",\n \"CVE-2021-28351\",\n \"CVE-2021-28332\",\n \"CVE-2021-28321\",\n \"CVE-2021-28443\",\n \"CVE-2021-28442\",\n \"CVE-2021-28353\",\n \"CVE-2021-28346\",\n \"CVE-2021-28335\",\n \"CVE-2021-28324\",\n \"CVE-2021-28446\",\n \"CVE-2021-28434\",\n \"CVE-2021-28355\",\n \"CVE-2021-28345\",\n \"CVE-2021-28339\",\n \"CVE-2021-28319\",\n \"CVE-2021-28438\",\n \"CVE-2021-28437\",\n \"CVE-2021-28358\",\n \"CVE-2021-28341\",\n \"CVE-2021-28333\",\n \"CVE-2021-28326\",\n \"CVE-2021-28325\",\n \"CVE-2021-28445\",\n \"CVE-2021-28435\",\n \"CVE-2021-28354\",\n \"CVE-2021-28350\",\n \"CVE-2021-28347\",\n \"CVE-2021-28337\",\n \"CVE-2021-28334\",\n \"CVE-2021-28329\",\n \"CVE-2021-28323\",\n \"CVE-2021-28317\",\n \"CVE-2021-28444\",\n \"CVE-2021-28357\",\n \"CVE-2021-28352\",\n \"CVE-2021-28344\",\n \"CVE-2021-28336\",\n \"CVE-2021-28331\",\n \"CVE-2021-28322\",\n \"CVE-2021-28318\",\n \"CVE-2021-28316\",\n \"CVE-2021-28315\",\n \"CVE-2021-28314\",\n \"CVE-2021-28313\",\n \"CVE-2021-28312\",\n \"CVE-2021-28311\",\n \"CVE-2021-28310\",\n \"CVE-2021-28309\",\n \"CVE-2021-26417\",\n \"CVE-2021-26416\",\n \"CVE-2021-26415\",\n \"CVE-2021-26413\",\n \"CVE-2021-27096\",\n \"CVE-2021-27095\",\n \"CVE-2021-27094\",\n \"CVE-2021-27093\",\n \"CVE-2021-27092\",\n \"CVE-2021-27090\",\n \"CVE-2021-27089\",\n \"CVE-2021-27088\",\n \"CVE-2021-27086\",\n \"CVE-2021-27079\",\n \"CVE-2021-27072\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: April 2021 Windows 2004 & 20H2 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-28327\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-05-06T03:38:39", "differentElements": ["cvss", "cvss3", "sourceData"], "edition": 1}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "395af6dccd8d83f4b4f63cb7a7b4c90794defeaf219476544eb9854477521d14", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: April 2021 Windows 2004 & 20H2 Security Update", "description": "The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-05-05T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001330"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26417", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28441", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28324", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-27090", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-05-07T11:30:50", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-05-07T11:30:50", "references": [{"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["CVE-2021-26416", "CVE-2021-28441", "CVE-2021-27092", "CVE-2021-28314", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28324", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-27090"], "type": "cve"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["MS:CVE-2021-28441", "MS:CVE-2021-28314", "MS:CVE-2021-26416", "MS:CVE-2021-27090", "MS:CVE-2021-28324", "MS:CVE-2021-26417"], "type": "mscve"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-05-07T11:30:50", "rev": 2, "value": 5.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/05/06\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: April 2021 Windows 2004 & 20H2 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-05-07T11:30:50", "differentElements": ["sourceData"], "edition": 2}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "2dc9678939fde9cd7a47b0277b1c0ced22e278b56292e84cc29586f6279f3ffc", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: April 2021 Windows 2004 & 20H2 Security Update", "description": "The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-05-05T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001330"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26417", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28441", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28324", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-27090", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-05-14T20:07:26", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-05-14T20:07:26", "references": [{"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["MS:CVE-2021-28441", "MS:CVE-2021-26416", "MS:CVE-2021-27090", "MS:CVE-2021-28312", "MS:CVE-2021-28324", "MS:CVE-2021-26417"], "type": "mscve"}, {"idList": ["CVE-2021-26416", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28445", "CVE-2021-27088", "CVE-2021-28312", "CVE-2021-28322", "CVE-2021-27090"], "type": "cve"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-05-14T20:07:26", "rev": 2, "value": 5.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/05/13\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: April 2021 Windows 2004 & 20H2 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-05-14T20:07:26", "differentElements": ["sourceData"], "edition": 3}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "4bcabbdb775a54f8211e68a0550244839cfdb284ec56154ab5090f1ece25815c", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: April 2021 Windows 2004 & 20H2 Security Update", "description": "The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-05-05T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001330"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26417", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28441", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28324", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-27090", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-06-04T03:45:34", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2021-06-04T03:45:34", "references": [{"idList": ["CVE-2021-26417", "CVE-2021-28441", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28436", "CVE-2021-27086", "CVE-2021-28324", "CVE-2021-27088", "CVE-2021-28312", "CVE-2021-27090"], "type": "cve"}, {"idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28440/"], "type": "metasploit"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["KB5001330"], "type": "mskb"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-06-04T03:45:34", "rev": 2, "value": 5.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/03\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: April 2021 Windows 2004 & 20H2 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-06-04T03:45:34", "differentElements": ["cvss2", "cvss3", "sourceData", "title"], "edition": 4}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "ad356b7e80803b0c35142188d65e8915", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-05-05T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 4.0}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001330"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26417", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28441", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28324", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-27090", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-07-29T03:55:02", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28314", "CVE-2021-28441", "CVE-2021-27086", "CVE-2021-28324", "CVE-2021-27090", "CVE-2021-28442", "CVE-2021-27088", "CVE-2021-27092", "CVE-2021-28438", "CVE-2021-28436"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-26413/"]}, {"type": "mskb", "idList": ["KB5001330"]}], "modified": "2021-07-29T03:55:02", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-07-29T03:55:02", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T03:55:02", "differentElements": ["cpe", "cvss2", "cvss3", "cvssScoreSource", "description", "exploitAvailable", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 5}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "8fe2bb23fd6f86369b812d04df5a5650", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-05T12:47:47", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001340.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28441", "CVE-2021-27086", "CVE-2021-28438", "CVE-2021-27090", "CVE-2021-28436", "CVE-2021-28312", "CVE-2021-28324", "CVE-2021-28314", "CVE-2021-28442", "CVE-2021-27092"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28311/"]}, {"type": "mskb", "idList": ["KB5001330"]}], "modified": "2021-08-05T12:47:47", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-05T12:47:47", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": [], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-05T12:47:47", "differentElements": ["cpe"], "edition": 6}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "0960a91bdb0da7ebf0b679990f17ded5", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-06T13:24:47", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001342.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28438", "CVE-2021-28324", "CVE-2021-27092", "CVE-2021-28436", "CVE-2021-27088", "CVE-2021-28441", "CVE-2021-27079", "CVE-2021-27090", "CVE-2021-28314"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-27079/"]}, {"type": "mskb", "idList": ["KB5001330"]}], "modified": "2021-08-06T13:24:47", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-06T13:24:47", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-06T13:24:47", "differentElements": ["vpr"], "edition": 7}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "08af503d92526c11bdcdb167139d1c0d", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-07T15:43:01", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28441", "CVE-2021-28438", "CVE-2021-28436", "CVE-2021-28324", "CVE-2021-28435", "CVE-2021-28314", "CVE-2021-27090", "CVE-2021-27079", "CVE-2021-27092"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}, {"type": "mskb", "idList": ["KB5001330"]}], "modified": "2021-08-07T15:43:01", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-07T15:43:01", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-07T15:43:01", "differentElements": ["vpr"], "edition": 8}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "0960a91bdb0da7ebf0b679990f17ded5", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-08T14:21:30", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001387.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28441", "CVE-2021-27086", "CVE-2021-28324", "CVE-2021-27092", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-26417", "CVE-2021-27090", "CVE-2021-28312", "CVE-2021-28314"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28319/"]}], "modified": "2021-08-08T14:21:30", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-08T14:21:30", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-08T14:21:30", "differentElements": ["vpr"], "edition": 9}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "c021f62f320803a0b53667838bd12918", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-13T23:39:28", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-26416", "CVE-2021-28324", "CVE-2021-27086", "CVE-2021-28357", "CVE-2021-27092", "CVE-2021-27088", "CVE-2021-27090", "CVE-2021-28314", "CVE-2021-28438", "CVE-2021-28441"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28325/"]}], "modified": "2021-08-13T23:39:28", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-13T23:39:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-13T23:39:28", "differentElements": ["nessusSeverity"], "edition": 10}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "f5fe9bd98b542b405cce744c20850762", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-19T12:02:46", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28446", "CVE-2021-26416", "CVE-2021-28324", "CVE-2021-28436", "CVE-2021-28314", "CVE-2021-27092", "CVE-2021-28438", "CVE-2021-27088", "CVE-2021-27090", "CVE-2021-27079"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-26413/"]}, {"type": "mskb", "idList": ["KB5001330"]}], "modified": "2021-08-19T12:02:46", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-19T12:02:46", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-19T12:02:46", "differentElements": ["vpr"], "edition": 11}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "1aa14f02803ce041d08608598281494b", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-30T19:45:30", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27088", "CVE-2021-28312", "CVE-2021-28442", "CVE-2021-26417", "CVE-2021-28441", "CVE-2021-27086", "CVE-2021-28314", "CVE-2021-28324", "CVE-2021-27090", "CVE-2021-28438"]}, {"type": "mskb", "idList": ["KB5001292", "KB5001330"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}], "modified": "2021-08-30T19:45:30", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-30T19:45:30", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-30T19:45:30", "differentElements": ["vpr"], "edition": 12}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "875a01d6d02ba8d414dbe931271c1ed4", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-10T23:46:03", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28441", "CVE-2021-27092", "CVE-2021-28312", "CVE-2021-28314", "CVE-2021-28442", "CVE-2021-28355", "CVE-2021-27090", "CVE-2021-26416", "CVE-2021-27086", "CVE-2021-28324"]}, {"type": "mskb", "idList": ["KB5001292", "KB5001330"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28325/"]}], "modified": "2021-09-10T23:46:03", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-09-10T23:46:03", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-10T23:46:03", "differentElements": ["sourceData"], "edition": 13}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "9e497a24174446b3a6145b91f731c48e", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-18T00:18:04", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28441", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-28312", "CVE-2021-27088", "CVE-2021-28436", "CVE-2021-28324", "CVE-2021-28442", "CVE-2021-28314"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}], "modified": "2021-09-18T00:18:04", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-18T00:18:04", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/17\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0431\");\n script_xref(name:\"IAVA\", value:\"2021-A-0429\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-18T00:18:04", "differentElements": ["modified"], "edition": 14}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "78f9dd9e7e421365ff63b6e5bac2df8a", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-09-17T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-18T23:46:32", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28441", "CVE-2021-28314", "CVE-2021-28436", "CVE-2021-26416", "CVE-2021-28324", "CVE-2021-28442", "CVE-2021-27090", "CVE-2021-28312", "CVE-2021-27092"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28440/"]}], "modified": "2021-09-18T23:46:32", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-18T23:46:32", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/17\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0431\");\n script_xref(name:\"IAVA\", value:\"2021-A-0429\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-18T23:46:32", "differentElements": ["vpr"], "edition": 15}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "09fdf79fa3ec99bdcf5678305005bda9", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-09-17T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-20T11:56:45", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-26416", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-27088", "CVE-2021-26415", "CVE-2021-28316", "CVE-2021-28330", "CVE-2021-27096", "CVE-2021-28352", "CVE-2021-28434", "CVE-2021-28339", "CVE-2021-28313", "CVE-2021-28447", "CVE-2021-28311", "CVE-2021-27072", "CVE-2021-28346", "CVE-2021-28343", "CVE-2021-28321", "CVE-2021-28317", "CVE-2021-27095", "CVE-2021-28318", "CVE-2021-28325", "CVE-2021-28348", "CVE-2021-28443", "CVE-2021-28334", "CVE-2021-28358", "CVE-2021-28446", "CVE-2021-28345", "CVE-2021-28439", "CVE-2021-28326", "CVE-2021-28356", "CVE-2021-28335", "CVE-2021-28323", "CVE-2021-28355", "CVE-2021-26413", "CVE-2021-27089", "CVE-2021-28441", "CVE-2021-28329", "CVE-2021-28350", "CVE-2021-28344", "CVE-2021-28328", "CVE-2021-27092", "CVE-2021-28354", "CVE-2021-28437", "CVE-2021-28444", "CVE-2021-27094", "CVE-2021-28327", "CVE-2021-28445", "CVE-2021-28309", "CVE-2021-26417", "CVE-2021-28349", "CVE-2021-27093", "CVE-2021-28322", "CVE-2021-28320", "CVE-2021-28324", "CVE-2021-28436", "CVE-2021-28337", "CVE-2021-28333", "CVE-2021-28319", "CVE-2021-28351", "CVE-2021-27086", "CVE-2021-28357", "CVE-2021-28332", "CVE-2021-28341", "CVE-2021-28310", "CVE-2021-27079", "CVE-2021-28340", "CVE-2021-28435", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28440", "CVE-2021-27090", "CVE-2021-28353", "CVE-2021-28442", "CVE-2021-28342", "CVE-2021-28347", "CVE-2021-28338", "CVE-2021-28331", "CVE-2021-28438"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}], "modified": "2021-09-20T11:56:45", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-20T11:56:45", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/17\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0431\");\n script_xref(name:\"IAVA\", value:\"2021-A-0429\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.4"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-20T11:56:45", "differentElements": ["vpr"], "edition": 16}], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28441", "CVE-2021-28345", "CVE-2021-28353", "CVE-2021-28447", "CVE-2021-28332", "CVE-2021-28348", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28319", "CVE-2021-27095", "CVE-2021-28311", "CVE-2021-27089", "CVE-2021-28317", "CVE-2021-28350", "CVE-2021-26416", "CVE-2021-28320", "CVE-2021-28352", "CVE-2021-28351", "CVE-2021-27092", "CVE-2021-28318", "CVE-2021-28328", "CVE-2021-28439", "CVE-2021-28443", "CVE-2021-27086", "CVE-2021-28341", "CVE-2021-28357", "CVE-2021-28355", "CVE-2021-28338", "CVE-2021-28445", "CVE-2021-28437", "CVE-2021-28324", "CVE-2021-28342", "CVE-2021-28315", "CVE-2021-28312", "CVE-2021-28344", "CVE-2021-28434", "CVE-2021-28309", "CVE-2021-28343", "CVE-2021-28313", "CVE-2021-28329", "CVE-2021-28336", "CVE-2021-28440", "CVE-2021-27093", "CVE-2021-28334", "CVE-2021-28337", "CVE-2021-28333", "CVE-2021-28339", "CVE-2021-28321", "CVE-2021-28438", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27096", "CVE-2021-28444", "CVE-2021-28331", "CVE-2021-28354", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28316", "CVE-2021-27090", "CVE-2021-28356", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-27088", "CVE-2021-26413", "CVE-2021-28347", "CVE-2021-28335", "CVE-2021-28340", "CVE-2021-28326", "CVE-2021-28358", "CVE-2021-28314", "CVE-2021-27094", "CVE-2021-28330", "CVE-2021-28446", "CVE-2021-26415", "CVE-2021-28436", "CVE-2021-28325", "CVE-2021-28349", "CVE-2021-26417", "CVE-2021-28327"]}, {"type": "mskb", "idList": ["KB5001292", "KB5001330"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-26413/"]}], "modified": "2021-10-11T11:46:34", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-10-11T11:46:34", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/17\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0431\");\n script_xref(name:\"IAVA\", value:\"2021-A-0429\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.2"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.nessus.NessusBulletin", "robots.models.base.Bulletin"]}, {"id": "SMB_NT_MS21_APR_5001389.NASL", "hash": "d9ba4288d0ada2513ab84cc33e51737b", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001389: Windows Server 2008 Security Update (Apr 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445) \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148480", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "https://support.microsoft.com/en-us/help/5001389", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "https://support.microsoft.com/en-us/help/5001332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27089", "CVE-2021-27093", "CVE-2021-27095", "CVE-2021-28309", "CVE-2021-28315", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28323", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28437", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28443", "CVE-2021-28445", "CVE-2021-28446"], "immutableFields": [], "lastseen": "2021-08-19T12:03:27", "history": [{"bulletin": {"id": "SMB_NT_MS21_APR_5001389.NASL", "hash": "b6f2a69f110b3117a3b054d741a29028bd52a01b5bce1a79372188309bf76c01", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001389: Windows Server 2008 Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148480", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001389", "https://support.microsoft.com/en-us/help/5001332"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28309", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28341", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-21199", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28353", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350"], "immutableFields": [], "lastseen": "2021-04-17T11:10:56", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2021-04-17T11:10:56", "references": [{"idList": ["CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-28315", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28358"], "type": "cve"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["ZDI-21-409"], "type": "zdi"}, {"idList": ["MS:CVE-2021-21199", "MS:CVE-2021-28357", "MS:CVE-2021-28356", "MS:CVE-2021-28355", "MS:CVE-2021-28445", "MS:CVE-2021-28358", "MS:CVE-2021-28338", "MS:CVE-2021-28446", "MS:CVE-2021-28443", "MS:CVE-2021-28434"], "type": "mscve"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-04-17T11:10:56", "rev": 2, "value": 6.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148480", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148480);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/16\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27095\",\n \"CVE-2021-28309\",\n \"CVE-2021-28315\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28323\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\"\n );\n script_xref(name:\"MSKB\", value:\"5001332\");\n script_xref(name:\"MSKB\", value:\"5001389\");\n script_xref(name:\"MSFT\", value:\"MS21-5001332\");\n script_xref(name:\"MSFT\", value:\"MS21-5001389\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171\");\n\n script_name(english:\"KB5001389: Windows Server 2008 Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001332\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001389\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-21199\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001389',\n '5001332'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(vista:'2') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.0', \n sp:2,\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001389, 5001332])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-17T11:10:56", "differentElements": ["sourceData"], "edition": 1}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001389.NASL", "hash": "f0544a9ee74a6abcac01b3402bf1765b5ac844a8e6c3afaee5abce68cf970725", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001389: Windows Server 2008 Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148480", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001389", "https://support.microsoft.com/en-us/help/5001332"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28309", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28341", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-21199", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28353", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350"], "immutableFields": [], "lastseen": "2021-04-23T03:45:31", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2021-04-23T03:45:31", "references": [{"idList": ["CVE-2021-28309", "CVE-2021-28317", "CVE-2021-28352", "CVE-2021-28446", "CVE-2021-28338", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28358"], "type": "cve"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["ZDI-21-409"], "type": "zdi"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["MS:CVE-2021-21199", "MS:CVE-2021-28337", "MS:CVE-2021-28356", "MS:CVE-2021-28354", "MS:CVE-2021-28445", "MS:CVE-2021-28309", "MS:CVE-2021-28352", "MS:CVE-2021-28353", "MS:CVE-2021-28317", "MS:CVE-2021-28446"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-23T03:45:31", "rev": 2, "value": 6.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148480", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148480);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/22\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27095\",\n \"CVE-2021-28309\",\n \"CVE-2021-28315\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28323\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\"\n );\n script_xref(name:\"MSKB\", value:\"5001332\");\n script_xref(name:\"MSKB\", value:\"5001389\");\n script_xref(name:\"MSFT\", value:\"MS21-5001332\");\n script_xref(name:\"MSFT\", value:\"MS21-5001389\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171\");\n\n script_name(english:\"KB5001389: Windows Server 2008 Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001332\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001389\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-21199\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001389',\n '5001332'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(vista:'2') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.0', \n sp:2,\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001389, 5001332])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-23T03:45:31", "differentElements": ["cvelist", "cvss", "cvss3", "description", "sourceData"], "edition": 2}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001389.NASL", "hash": "0cd33edc241361f710366410ebdec55706934681f772282832e15aa470405d73", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001389: Windows Server 2008 Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148480", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001389", "https://support.microsoft.com/en-us/help/5001332"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28309", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28341", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28353", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350"], "immutableFields": [], "lastseen": "2021-04-29T11:57:32", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2021-04-29T11:57:32", "references": [{"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["ZDI-21-409"], "type": "zdi"}, {"idList": ["CVE-2021-28309", "CVE-2021-28446", "CVE-2021-27093", "CVE-2021-28356", "CVE-2021-27089", "CVE-2021-28353", "CVE-2021-27095", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28354"], "type": "cve"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001343.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["MS:CVE-2021-28357", "MS:CVE-2021-28356", "MS:CVE-2021-28354", "MS:CVE-2021-28355", "MS:CVE-2021-28445", "MS:CVE-2021-28309", "MS:CVE-2021-28358", "MS:CVE-2021-28353", "MS:CVE-2021-27093", "MS:CVE-2021-28446"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-29T11:57:32", "rev": 2, "value": 6.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148480", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148480);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/28\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27095\",\n \"CVE-2021-28309\",\n \"CVE-2021-28315\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28323\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\"\n );\n script_xref(name:\"MSKB\", value:\"5001332\");\n script_xref(name:\"MSKB\", value:\"5001389\");\n script_xref(name:\"MSFT\", value:\"MS21-5001332\");\n script_xref(name:\"MSFT\", value:\"MS21-5001389\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171\");\n\n script_name(english:\"KB5001389: Windows Server 2008 Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001332\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001389\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-28327\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001389',\n '5001332'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(vista:'2') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.0', \n sp:2,\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001389, 5001332])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-29T11:57:32", "differentElements": ["cvss", "cvss3", "sourceData"], "edition": 3}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001389.NASL", "hash": "98a3f5ab56571eb90fb414aeab3a173e36431a3469496f4f7ff57b2beb50b9f4", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001389: Windows Server 2008 Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148480", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001389", "https://support.microsoft.com/en-us/help/5001332"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28309", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28341", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28353", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350"], "immutableFields": [], "lastseen": "2021-05-14T20:07:31", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2021-05-14T20:07:31", "references": [{"idList": ["CVE-2021-28309", "CVE-2021-28352", "CVE-2021-28446", "CVE-2021-28434", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28353", "CVE-2021-28315", "CVE-2021-28445", "CVE-2021-28354"], "type": "cve"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["ZDI-21-409"], "type": "zdi"}, {"idList": ["MS:CVE-2021-28357", "MS:CVE-2021-28356", "MS:CVE-2021-28445", "MS:CVE-2021-28309", "MS:CVE-2021-28353", "MS:CVE-2021-28446", "MS:CVE-2021-28443", "MS:CVE-2021-27089", "MS:CVE-2021-28434", "MS:CVE-2021-28315"], "type": "mscve"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001343.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}], "rev": 2}, "score": {"modified": "2021-05-14T20:07:31", "rev": 2, "value": 6.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148480", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148480);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/05/13\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27095\",\n \"CVE-2021-28309\",\n \"CVE-2021-28315\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28323\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\"\n );\n script_xref(name:\"MSKB\", value:\"5001332\");\n script_xref(name:\"MSKB\", value:\"5001389\");\n script_xref(name:\"MSFT\", value:\"MS21-5001332\");\n script_xref(name:\"MSFT\", value:\"MS21-5001389\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n\n script_name(english:\"KB5001389: Windows Server 2008 Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001332\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001389\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001389',\n '5001332'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(vista:'2') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.0', \n sp:2,\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001389, 5001332])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-05-14T20:07:31", "differentElements": ["sourceData"], "edition": 4}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001389.NASL", "hash": "b9f305d99b477f4e05029ed2ceafd8e04c481b6379d830fe3411d30ccfd9e847", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001389: Windows Server 2008 Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148480", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001389", "https://support.microsoft.com/en-us/help/5001332"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28309", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28341", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28353", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350"], "immutableFields": [], "lastseen": "2021-06-04T03:45:38", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-06-04T03:45:38", "references": [{"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28445/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28440/"], "type": "metasploit"}, {"idList": ["MS:CVE-2021-28357", "MS:CVE-2021-28355", "MS:CVE-2021-28445", "MS:CVE-2021-28352", "MS:CVE-2021-28358", "MS:CVE-2021-28317", "MS:CVE-2021-28338", "MS:CVE-2021-27093", "MS:CVE-2021-28446", "MS:CVE-2021-27089"], "type": "mscve"}, {"idList": ["KB5001337", "KB5001389", "KB5001332"], "type": "mskb"}, {"idList": ["CVE-2021-28317", "CVE-2021-28352", "CVE-2021-28446", "CVE-2021-28338", "CVE-2021-28357", "CVE-2021-27089", "CVE-2021-27095", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28358"], "type": "cve"}], "rev": 2}, "score": {"modified": "2021-06-04T03:45:38", "rev": 2, "value": 5.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148480", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148480);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/03\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27095\",\n \"CVE-2021-28309\",\n \"CVE-2021-28315\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28323\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\"\n );\n script_xref(name:\"MSKB\", value:\"5001332\");\n script_xref(name:\"MSKB\", value:\"5001389\");\n script_xref(name:\"MSFT\", value:\"MS21-5001332\");\n script_xref(name:\"MSFT\", value:\"MS21-5001389\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n\n script_name(english:\"KB5001389: Windows Server 2008 Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001332\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001389\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001389',\n '5001332'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(vista:'2') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.0', \n sp:2,\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001389, 5001332])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-06-04T03:45:38", "differentElements": ["cvss2", "cvss3", "sourceData", "title"], "edition": 5}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001389.NASL", "hash": "6d2a6f87cfadd1cffc993f36ad146454", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001389: Windows Server 2008 Security Update (Apr 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9}, "href": "https://www.tenable.com/plugins/nessus/148480", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001389", "https://support.microsoft.com/en-us/help/5001332"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28309", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28341", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28353", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350"], "immutableFields": [], "lastseen": "2021-07-29T03:55:06", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001343.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL"]}, {"type": "cve", "idList": ["CVE-2021-28336", "CVE-2021-28354", "CVE-2021-27095", "CVE-2021-28355", "CVE-2021-28317", "CVE-2021-28356", "CVE-2021-28446", "CVE-2021-28315", "CVE-2021-28353", "CVE-2021-28443"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-28445/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28338", "MS:CVE-2021-28446", "MS:CVE-2021-28349", "MS:CVE-2021-28354", "MS:CVE-2021-28445", "MS:CVE-2021-28336", "MS:CVE-2021-28315", "MS:CVE-2021-28335", "MS:CVE-2021-28317", "MS:CVE-2021-28309"]}, {"type": "mskb", "idList": ["KB5001339", "KB5001332", "KB5001389", "KB5001337"]}], "modified": "2021-07-29T03:55:06", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2021-07-29T03:55:06", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148480", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148480);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27095\",\n \"CVE-2021-28309\",\n \"CVE-2021-28315\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28323\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\"\n );\n script_xref(name:\"MSKB\", value:\"5001332\");\n script_xref(name:\"MSKB\", value:\"5001389\");\n script_xref(name:\"MSFT\", value:\"MS21-5001332\");\n script_xref(name:\"MSFT\", value:\"MS21-5001389\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n\n script_name(english:\"KB5001389: Windows Server 2008 Security Update (Apr 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001332\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001389\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001389',\n '5001332'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(vista:'2') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.0', \n sp:2,\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001389, 5001332])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T03:55:06", "differentElements": ["cpe", "cvss2", "cvss3", "cvssScoreSource", "description", "exploitAvailable", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001389.NASL", "hash": "b97ec952151fb2596b76dd0cf1cfc01a", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001389: Windows Server 2008 Security Update (Apr 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445) \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148480", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "https://support.microsoft.com/en-us/help/5001332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "https://support.microsoft.com/en-us/help/5001389", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27089", "CVE-2021-27093", "CVE-2021-27095", "CVE-2021-28309", "CVE-2021-28315", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28323", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28437", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28443", "CVE-2021-28445", "CVE-2021-28446"], "immutableFields": [], "lastseen": "2021-08-05T12:48:35", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "cve", "idList": ["CVE-2021-28338", "CVE-2021-27095", "CVE-2021-28335", "CVE-2021-28353", "CVE-2021-27093", "CVE-2021-28323", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28446", "CVE-2021-27089"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28445/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28323", "MS:CVE-2021-28445", "MS:CVE-2021-28335", "MS:CVE-2021-27095", "MS:CVE-2021-28338", "MS:CVE-2021-28446", "MS:CVE-2021-28358", "MS:CVE-2021-28336", "MS:CVE-2021-27093", "MS:CVE-2021-28355"]}, {"type": "mskb", "idList": ["KB5001337", "KB5001339", "KB5001332", "KB5001389"]}], "modified": "2021-08-05T12:48:35", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2021-08-05T12:48:35", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148480", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148480);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27095\",\n \"CVE-2021-28309\",\n \"CVE-2021-28315\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28323\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\"\n );\n script_xref(name:\"MSKB\", value:\"5001332\");\n script_xref(name:\"MSKB\", value:\"5001389\");\n script_xref(name:\"MSFT\", value:\"MS21-5001332\");\n script_xref(name:\"MSFT\", value:\"MS21-5001389\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n\n script_name(english:\"KB5001389: Windows Server 2008 Security Update (Apr 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001332\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001389\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001389',\n '5001332'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(vista:'2') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.0', \n sp:2,\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001389, 5001332])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": [], "solution": "Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27095", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-05T12:48:35", "differentElements": ["cpe"], "edition": 7}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001389.NASL", "hash": "e851d05b2127b95d0b0b159e6eda2ddd", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001389: Windows Server 2008 Security Update (Apr 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445) \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148480", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "https://support.microsoft.com/en-us/help/5001389", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "https://support.microsoft.com/en-us/help/5001332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27089", "CVE-2021-27093", "CVE-2021-27095", "CVE-2021-28309", "CVE-2021-28315", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28323", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28437", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28443", "CVE-2021-28445", "CVE-2021-28446"], "immutableFields": [], "lastseen": "2021-08-06T13:24:35", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "cve", "idList": ["CVE-2021-28352", "CVE-2021-28355", "CVE-2021-28443", "CVE-2021-28357", "CVE-2021-28356", "CVE-2021-28354", "CVE-2021-28335", "CVE-2021-27093", "CVE-2021-28446", "CVE-2021-28358"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28445/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26413/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28445", "MS:CVE-2021-28335", "MS:CVE-2021-27093", "MS:CVE-2021-28446", "MS:CVE-2021-28355", "MS:CVE-2021-28309", "MS:CVE-2021-28336", "MS:CVE-2021-28443", "MS:CVE-2021-28357", "MS:CVE-2021-28356"]}, {"type": "mskb", "idList": ["KB5001389", "KB5001332"]}], "modified": "2021-08-06T13:24:35", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2021-08-06T13:24:35", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148480", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148480);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27095\",\n \"CVE-2021-28309\",\n \"CVE-2021-28315\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28323\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\"\n );\n script_xref(name:\"MSKB\", value:\"5001332\");\n script_xref(name:\"MSKB\", value:\"5001389\");\n script_xref(name:\"MSFT\", value:\"MS21-5001332\");\n script_xref(name:\"MSFT\", value:\"MS21-5001389\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n\n script_name(english:\"KB5001389: Windows Server 2008 Security Update (Apr 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001332\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001389\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001389',\n '5001332'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(vista:'2') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.0', \n sp:2,\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001389, 5001332])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27095", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-06T13:24:35", "differentElements": ["nessusSeverity"], "edition": 8}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "cve", "idList": ["CVE-2021-28354", "CVE-2021-28336", "CVE-2021-28356", "CVE-2021-28443", "CVE-2021-28317", "CVE-2021-28315", "CVE-2021-28358", "CVE-2021-28446", "CVE-2021-28355", "CVE-2021-27095"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28445/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28330/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28445", "MS:CVE-2021-28443", "MS:CVE-2021-28356", "MS:CVE-2021-28315", "MS:CVE-2021-28355", "MS:CVE-2021-28446", "MS:CVE-2021-28344", "MS:CVE-2021-27095", "MS:CVE-2021-28317", "MS:CVE-2021-28358"]}, {"type": "mskb", "idList": ["KB5001389", "KB5001332"]}], "modified": "2021-08-19T12:03:27", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2021-08-19T12:03:27", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148480", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148480);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27095\",\n \"CVE-2021-28309\",\n \"CVE-2021-28315\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28323\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\"\n );\n script_xref(name:\"MSKB\", value:\"5001332\");\n script_xref(name:\"MSKB\", value:\"5001389\");\n script_xref(name:\"MSFT\", value:\"MS21-5001332\");\n script_xref(name:\"MSFT\", value:\"MS21-5001389\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n\n script_name(english:\"KB5001389: Windows Server 2008 Security Update (Apr 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Network File System Remote Code Execution Vulnerability (CVE-2021-28445)\n \n - Windows Portmapping Information Disclosure Vulnerability (CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001332\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001389\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001389',\n '5001332'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(vista:'2') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.0', \n sp:2,\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001389, 5001332])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released the following security updates to address this issue:\n- KB5001332\n- KB5001389", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-27095", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "65b197c56840dc166d067d78d8c33796", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-09-17T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "https://support.microsoft.com/en-us/help/5001347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27089", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28311", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28320", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-18T23:48:26", "history": [{"bulletin": {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "71207ea3b655aee68afd1817e9c99b38a40180e4b6dfdaf498af48c39df994de", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 1607 and Windows Server 2016 1607 Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001347"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-21199", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-04-14T19:54:43", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T19:54:43", "references": [{"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["MS:CVE-2021-21199", "MS:CVE-2021-28326", "MS:CVE-2021-26416", "MS:CVE-2021-28347", "MS:CVE-2021-28436", "MS:CVE-2021-27079", "MS:CVE-2021-28435", "MS:CVE-2021-28447", "MS:CVE-2021-28446", "MS:CVE-2021-28311"], "type": "mscve"}, {"idList": ["CVE-2021-28311", "CVE-2021-28447", "CVE-2021-28444", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28436", "CVE-2021-27096", "CVE-2021-27094", "CVE-2021-28445", "CVE-2021-28435"], "type": "cve"}], "rev": 2}, "score": {"modified": "2021-04-14T19:54:43", "rev": 2, "value": 6.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/13\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n\n script_name(english:\"KB5001347: Windows 10 1607 and Windows Server 2016 1607 Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-21199\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-14T19:54:43", "differentElements": ["sourceData"], "edition": 1}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "a9ad3f346b4a5548b32509dd862cff909536951633b469ce68a358f7c5a8c9d9", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 1607 and Windows Server 2016 1607 Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001347"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-21199", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-04-17T11:10:55", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2021-04-17T11:10:55", "references": [{"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["CVE-2021-28447", "CVE-2021-27079", "CVE-2021-28444", "CVE-2021-28446", "CVE-2021-28338", "CVE-2021-27094", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28435"], "type": "cve"}, {"idList": ["MS:CVE-2021-21199", "MS:CVE-2021-28445", "MS:CVE-2021-26416", "MS:CVE-2021-28320", "MS:CVE-2021-28436", "MS:CVE-2021-27079", "MS:CVE-2021-28435", "MS:CVE-2021-28447", "MS:CVE-2021-28446", "MS:CVE-2021-28311"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-17T11:10:55", "rev": 2, "value": 6.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/16\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171\");\n\n script_name(english:\"KB5001347: Windows 10 1607 and Windows Server 2016 1607 Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-21199\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-17T11:10:55", "differentElements": ["cvelist", "cvss", "cvss3", "sourceData"], "edition": 2}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "40eae0cd962190d45215977bf722d1617322d96689cc6230875334ffc3e2d6e6", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 1607 and Windows Server 2016 1607 Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001347"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-04-29T11:57:31", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2021-04-29T11:57:31", "references": [{"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["CVE-2021-28311", "CVE-2021-28447", "CVE-2021-27079", "CVE-2021-26416", "CVE-2021-28436", "CVE-2021-27094", "CVE-2021-28353", "CVE-2021-28445", "CVE-2021-28354", "CVE-2021-28435"], "type": "cve"}, {"idList": ["MS:CVE-2021-28445", "MS:CVE-2021-28326", "MS:CVE-2021-26416", "MS:CVE-2021-28320", "MS:CVE-2021-28347", "MS:CVE-2021-28436", "MS:CVE-2021-27079", "MS:CVE-2021-28435", "MS:CVE-2021-27094", "MS:CVE-2021-28311"], "type": "mscve"}, {"idList": ["ZDI-21-424"], "type": "zdi"}], "rev": 2}, "score": {"modified": "2021-04-29T11:57:31", "rev": 2, "value": 6.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/28\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168\");\n\n script_name(english:\"KB5001347: Windows 10 1607 and Windows Server 2016 1607 Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-28327\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-29T11:57:31", "differentElements": ["cvss", "cvss3", "sourceData"], "edition": 3}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "6805067bc8e05bdc0584af4df18e41a0237aeff0fce776bcaafdac7dd7024fb4", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 1607 and Windows Server 2016 1607 Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001347"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-04-30T11:56:46", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2021-04-30T11:56:46", "references": [{"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["MS:CVE-2021-28445", "MS:CVE-2021-28326", "MS:CVE-2021-26416", "MS:CVE-2021-28320", "MS:CVE-2021-28347", "MS:CVE-2021-28436", "MS:CVE-2021-27079", "MS:CVE-2021-28435", "MS:CVE-2021-28446", "MS:CVE-2021-28311"], "type": "mscve"}, {"idList": ["ZDI-21-424"], "type": "zdi"}, {"idList": ["CVE-2021-28447", "CVE-2021-27079", "CVE-2021-26416", "CVE-2021-28444", "CVE-2021-28446", "CVE-2021-28436", "CVE-2021-27096", "CVE-2021-27094", "CVE-2021-28445", "CVE-2021-28435"], "type": "cve"}], "rev": 2}, "score": {"modified": "2021-04-30T11:56:46", "rev": 2, "value": 6.6, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/29\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168\");\n\n script_name(english:\"KB5001347: Windows 10 1607 and Windows Server 2016 1607 Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-30T11:56:46", "differentElements": ["sourceData"], "edition": 4}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "6cbcbaf7c42a969e1fc5ddb292a10d274d387121059eeb7bc4cd9c5baa004c85", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 1607 and Windows Server 2016 1607 Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001347"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-06-04T03:45:38", "history": [], "viewCount": 5, "enchantments": {"dependencies": {"modified": "2021-06-04T03:45:38", "references": [{"idList": ["CVE-2021-27072", "CVE-2021-27079", "CVE-2021-28444", "CVE-2021-28446", "CVE-2021-28332", "CVE-2021-28436", "CVE-2021-27093", "CVE-2021-28343", "CVE-2021-28334", "CVE-2021-28435"], "type": "cve"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28445/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28440/"], "type": "metasploit"}, {"idList": ["KB5001347"], "type": "mskb"}, {"idList": ["ZDI-21-424"], "type": "zdi"}, {"idList": ["MS:CVE-2021-28326", "MS:CVE-2021-26416", "MS:CVE-2021-28320", "MS:CVE-2021-28347", "MS:CVE-2021-28436", "MS:CVE-2021-27079", "MS:CVE-2021-28435", "MS:CVE-2021-28446", "MS:CVE-2021-28351", "MS:CVE-2021-28311"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-06-04T03:45:38", "rev": 2, "value": 6.4, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/03\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001347: Windows 10 1607 and Windows Server 2016 1607 Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-06-04T03:45:38", "differentElements": ["cvss2", "cvss3", "sourceData", "title"], "edition": 5}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "0c0c4591d05908087a1732df594ebeaf", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 4.0}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001347"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-28346", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-07-29T03:55:05", "history": [], "viewCount": 6, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001330.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "cve", "idList": ["CVE-2021-28338", "CVE-2021-27096", "CVE-2021-28311", "CVE-2021-27079", "CVE-2021-27094", "CVE-2021-28335", "CVE-2021-28347", "CVE-2021-28436", "CVE-2021-28435", "CVE-2021-26416"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28445/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-26415/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-26416", "MS:CVE-2021-28320", "MS:CVE-2021-28445", "MS:CVE-2021-28347", "MS:CVE-2021-28436", "MS:CVE-2021-28326", "MS:CVE-2021-28435", "MS:CVE-2021-28311", "MS:CVE-2021-27079", "MS:CVE-2021-28351"]}, {"type": "zdi", "idList": ["ZDI-21-424"]}, {"type": "mskb", "idList": ["KB5001347"]}], "modified": "2021-07-29T03:55:05", "rev": 2}, "score": {"value": 6.4, "vector": "NONE", "modified": "2021-07-29T03:55:05", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T03:55:05", "differentElements": ["cpe", "cvss2", "cvss3", "cvssScoreSource", "description", "exploitAvailable", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "64830c79088a5136652a5cccbc53679f", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "https://support.microsoft.com/en-us/help/5001347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27089", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28311", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28320", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-05T12:48:36", "history": [], "viewCount": 6, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "cve", "idList": ["CVE-2021-28435", "CVE-2021-28447", "CVE-2021-28311", "CVE-2021-28436", "CVE-2021-27079", "CVE-2021-27096", "CVE-2021-28326", "CVE-2021-27094", "CVE-2021-28446", "CVE-2021-28444"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28445/", "MSF:ILITIES/MSFT-CVE-2021-28311/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28347", "MS:CVE-2021-28351", "MS:CVE-2021-28311", "MS:CVE-2021-28436", "MS:CVE-2021-27079", "MS:CVE-2021-28320", "MS:CVE-2021-28435", "MS:CVE-2021-26416", "MS:CVE-2021-28326", "MS:CVE-2021-28444"]}, {"type": "zdi", "idList": ["ZDI-21-424"]}, {"type": "mskb", "idList": ["KB5001347"]}], "modified": "2021-08-05T12:48:36", "rev": 2}, "score": {"value": 6.4, "vector": "NONE", "modified": "2021-08-05T12:48:36", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": [], "solution": "Microsoft has released KB5001347 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27095", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-05T12:48:36", "differentElements": ["cpe"], "edition": 7}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "fa04fcae7b8fe5258ab58a0da03a9dad", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "https://support.microsoft.com/en-us/help/5001347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27089", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28311", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28320", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-06T13:24:36", "history": [], "viewCount": 6, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "cve", "idList": ["CVE-2021-28352", "CVE-2021-28338", "CVE-2021-27094", "CVE-2021-28357", "CVE-2021-27096", "CVE-2021-28436", "CVE-2021-28347", "CVE-2021-27093", "CVE-2021-26416", "CVE-2021-28435"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28445/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28447/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28325/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28311", "MS:CVE-2021-28351", "MS:CVE-2021-28326", "MS:CVE-2021-28435", "MS:CVE-2021-28320", "MS:CVE-2021-28347", "MS:CVE-2021-27079", "MS:CVE-2021-27094", "MS:CVE-2021-26416", "MS:CVE-2021-28436"]}, {"type": "zdi", "idList": ["ZDI-21-424"]}, {"type": "mskb", "idList": ["KB5001347"]}], "modified": "2021-08-06T13:24:36", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2021-08-06T13:24:36", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001347 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27095", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-06T13:24:36", "differentElements": ["nessusSeverity"], "edition": 8}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "088d58e4d904002be759c1d5adf593a7", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "https://support.microsoft.com/en-us/help/5001347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27089", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28311", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28320", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-19T12:03:27", "history": [], "viewCount": 6, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "cve", "idList": ["CVE-2021-26416", "CVE-2021-28354", "CVE-2021-27094", "CVE-2021-28356", "CVE-2021-27072", "CVE-2021-28358", "CVE-2021-28446", "CVE-2021-28355", "CVE-2021-28436", "CVE-2021-28351"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28445/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28447/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28445", "MS:CVE-2021-28311", "MS:CVE-2021-27079", "MS:CVE-2021-28435", "MS:CVE-2021-28436", "MS:CVE-2021-26416", "MS:CVE-2021-28347", "MS:CVE-2021-28326", "MS:CVE-2021-28446", "MS:CVE-2021-28351"]}, {"type": "zdi", "idList": ["ZDI-21-424"]}, {"type": "mskb", "idList": ["KB5001347"]}], "modified": "2021-08-19T12:03:27", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2021-08-19T12:03:27", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001347 to address this issue.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-27095", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-19T12:03:27", "differentElements": ["sourceData"], "edition": 9}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001347.NASL", "hash": "4e16f40d795f16006da288afd456832c", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148465", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "https://support.microsoft.com/en-us/help/5001347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27089", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28311", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28320", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-18T00:20:32", "history": [], "viewCount": 6, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001389.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "cve", "idList": ["CVE-2021-28356", "CVE-2021-28435", "CVE-2021-28311", "CVE-2021-27094", "CVE-2021-28351", "CVE-2021-28355", "CVE-2021-28436", "CVE-2021-27079", "CVE-2021-28444", "CVE-2021-26416"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28447/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28445/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28436", "MS:CVE-2021-28351", "MS:CVE-2021-26416", "MS:CVE-2021-28326", "MS:CVE-2021-27094", "MS:CVE-2021-27079", "MS:CVE-2021-28444", "MS:CVE-2021-28311", "MS:CVE-2021-28435", "MS:CVE-2021-28347"]}, {"type": "zdi", "idList": ["ZDI-21-424"]}, {"type": "mskb", "idList": ["KB5001347"]}], "modified": "2021-09-18T00:20:32", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-09-18T00:20:32", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.10\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/17\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0431\");\n script_xref(name:\"IAVA\", value:\"2021-A-0429\");\n\n script_name(english:\"KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001347 to address this issue.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-27095", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-18T00:20:32", "differentElements": ["modified"], "edition": 10}], "viewCount": 7, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "cve", "idList": ["CVE-2021-28311", "CVE-2021-28436", "CVE-2021-28355", "CVE-2021-28351", "CVE-2021-26416", "CVE-2021-27094", "CVE-2021-28435", "CVE-2021-28356", "CVE-2021-28444", "CVE-2021-27079"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28447/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28445/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28340/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-27079", "MS:CVE-2021-28351", "MS:CVE-2021-28326", "MS:CVE-2021-28311", "MS:CVE-2021-27094", "MS:CVE-2021-28435", "MS:CVE-2021-28436", "MS:CVE-2021-26416", "MS:CVE-2021-28347", "MS:CVE-2021-28444"]}, {"type": "zdi", "idList": ["ZDI-21-424"]}, {"type": "mskb", "idList": ["KB5001347"]}], "modified": "2021-09-18T23:48:26", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-09-18T23:48:26", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148465", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148465);\n script_version(\"1.10\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/17\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27089\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28311\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28320\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001347\");\n script_xref(name:\"MSFT\", value:\"MS21-5001347\");\n script_xref(name:\"IAVA\", value:\"2021-A-0171-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0431\");\n script_xref(name:\"IAVA\", value:\"2021-A-0429\");\n\n script_name(english:\"KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Hyper-V Denial of Service Vulnerability (CVE-2021-26416)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28439)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28443)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - N/A (CVE-2021-28445, CVE-2021-28446)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001347\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001347 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27095\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001347'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'14393',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001347])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001347 to address this issue.", "nessusSeverity": "Medium", "cvssScoreSource": "CVE-2021-27095", "vpr": {"risk factor": "Medium", "score": "6.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "276b03cdc1d242fc8b6bac480dbd53ac", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 version 1803 Security Update (April 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313, CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-09-17T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "https://support.microsoft.com/en-us/help/5001339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28313", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-10-11T11:46:34", "history": [{"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "947e917f8d03b7bd3366b4cf5c213c440f5f30bf03842e7f7ef1e2c28a4ae011", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001339"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-21199", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-04-14T19:54:43", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2021-04-14T19:54:43", "references": [{"idList": ["CVE-2021-28311", "CVE-2021-28447", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28436", "CVE-2021-27096", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28438", "CVE-2021-28435"], "type": "cve"}, {"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-21199", "MS:CVE-2021-27088", "MS:CVE-2021-28438", "MS:CVE-2021-28313", "MS:CVE-2021-28436", "MS:CVE-2021-27079", "MS:CVE-2021-28442", "MS:CVE-2021-27092", "MS:CVE-2021-27086", "MS:CVE-2021-28311"], "type": "mscve"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-04-14T19:54:43", "rev": 2, "value": 6.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/13\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n\n script_name(english:\"KB5001339: Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-21199\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-14T19:54:43", "differentElements": ["sourceData"], "edition": 1}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "e8547343af6998aa64cf1cb344e5b05a96cb8196ba08b5be3b339ad852027901", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Apr 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001339"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-21199", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-04-16T11:31:59", "history": [], "viewCount": 6, "enchantments": {"dependencies": {"modified": "2021-04-16T11:31:59", "references": [{"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["CVE-2021-27079", "CVE-2021-27092", "CVE-2021-28436", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-27086", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28322"], "type": "cve"}, {"idList": ["MS:CVE-2021-21199", "MS:CVE-2021-27088", "MS:CVE-2021-28319", "MS:CVE-2021-28438", "MS:CVE-2021-28313", "MS:CVE-2021-28322", "MS:CVE-2021-27092", "MS:CVE-2021-27086", "MS:CVE-2021-28321", "MS:CVE-2021-28311"], "type": "mscve"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-04-16T11:31:59", "rev": 2, "value": 6.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/15\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n\n script_name(english:\"KB5001339: Apr 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-21199\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-16T11:31:59", "differentElements": ["cvelist", "cvss", "sourceData", "title"], "edition": 2}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "f0509a1018e71344992f84d0d16c3b328ccebf15def987b8985b8e743e2f4747", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 April 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001339"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-04-30T11:56:43", "history": [], "viewCount": 6, "enchantments": {"dependencies": {"modified": "2021-04-30T11:56:43", "references": [{"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-27088", "MS:CVE-2021-28319", "MS:CVE-2021-28438", "MS:CVE-2021-28313", "MS:CVE-2021-28322", "MS:CVE-2021-28442", "MS:CVE-2021-27092", "MS:CVE-2021-27086", "MS:CVE-2021-28321", "MS:CVE-2021-28311"], "type": "mscve"}, {"idList": ["CVE-2021-27079", "CVE-2021-27092", "CVE-2021-28436", "CVE-2021-28313", "CVE-2021-27086", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28322", "CVE-2021-28435"], "type": "cve"}, {"idList": ["ZDI-21-424"], "type": "zdi"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-04-30T11:56:43", "rev": 2, "value": 6.5, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/04/29\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n\n script_name(english:\"KB5001339: Windows 10 April 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-04-30T11:56:43", "differentElements": ["sourceData"], "edition": 3}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "48245fca1952ccb64b56127dffbda1273b98711b0452cd99b6230bb04c62fea5", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 April 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001339"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-05-04T19:45:01", "history": [], "viewCount": 7, "enchantments": {"dependencies": {"modified": "2021-05-04T19:45:01", "references": [{"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["CVE-2021-28437", "CVE-2021-28311", "CVE-2021-28447", "CVE-2021-28436", "CVE-2021-27094", "CVE-2021-27086", "CVE-2021-28438", "CVE-2021-28355", "CVE-2021-28358", "CVE-2021-28435"], "type": "cve"}, {"idList": ["MS:CVE-2021-27088", "MS:CVE-2021-28319", "MS:CVE-2021-28438", "MS:CVE-2021-28313", "MS:CVE-2021-27079", "MS:CVE-2021-28322", "MS:CVE-2021-28442", "MS:CVE-2021-27092", "MS:CVE-2021-27086", "MS:CVE-2021-28311"], "type": "mscve"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-05-04T19:45:01", "rev": 2, "value": 6.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.7\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/05/03\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168\");\n\n script_name(english:\"KB5001339: Windows 10 April 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-05-04T19:45:01", "differentElements": ["sourceData"], "edition": 4}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "0a190efd725b7cab8bcea94bf9f6323396591e77cc0fe130ee7816c03b881272", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 April 2021 Security Update", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001339"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-06-04T03:45:35", "history": [], "viewCount": 9, "enchantments": {"dependencies": {"modified": "2021-06-04T03:45:35", "references": [{"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["MS:CVE-2021-27086"], "type": "mscve"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["KB5001339"], "type": "mskb"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["CVE-2021-27079", "CVE-2021-28352", "CVE-2021-28442", "CVE-2021-28436", "CVE-2021-28357", "CVE-2021-27089", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28435"], "type": "cve"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}, {"idList": ["MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28313/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28440/"], "type": "metasploit"}], "rev": 2}, "score": {"modified": "2021-06-04T03:45:35", "rev": 2, "value": 5.8, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/03\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001339: Windows 10 April 2021 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-06-04T03:45:35", "differentElements": ["cvss2", "cvss3", "sourceData", "title"], "edition": 5}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "b4cae16a4fb476adfbcc7a5c5c03156b", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 version 1803 Security Update (April 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.", "published": "2021-04-13T00:00:00", "modified": "2021-04-13T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001339"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-07-29T03:55:02", "history": [], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28326", "CVE-2021-28447", "CVE-2021-28435", "CVE-2021-28442", "CVE-2021-27088", "CVE-2021-28321", "CVE-2021-27092", "CVE-2021-28438", "CVE-2021-28436"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28313/", "MSF:ILITIES/MSFT-CVE-2021-26413/"]}, {"type": "securelist", "idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"]}, {"type": "thn", "idList": ["THN:F163C7AB35BEF8E28924E14B02752181"]}, {"type": "mscve", "idList": ["MS:CVE-2021-27092"]}, {"type": "mskb", "idList": ["KB5001339"]}], "modified": "2021-07-29T03:55:02", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-07-29T03:55:02", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001339: Windows 10 version 1803 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T03:55:02", "differentElements": ["cpe", "cvss2", "cvss3", "cvssScoreSource", "description", "exploitAvailable", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "9dbf0037c63702621f2bb1ed6b52954b", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 version 1803 Security Update (April 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313, CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "https://support.microsoft.com/en-us/help/5001339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28313", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-05T12:48:45", "history": [], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001340.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27088", "CVE-2021-27086", "CVE-2021-28435", "CVE-2021-28438", "CVE-2021-28436", "CVE-2021-28434", "CVE-2021-27079", "CVE-2021-27092", "CVE-2021-27089", "CVE-2021-28444"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28322/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28311/"]}, {"type": "securelist", "idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"]}, {"type": "thn", "idList": ["THN:F163C7AB35BEF8E28924E14B02752181"]}, {"type": "mscve", "idList": ["MS:CVE-2021-27086"]}, {"type": "mskb", "idList": ["KB5001339"]}], "modified": "2021-08-05T12:48:45", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-08-05T12:48:45", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001339: Windows 10 version 1803 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": [], "solution": "Microsoft has released KB5001339 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-05T12:48:45", "differentElements": ["cpe"], "edition": 7}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "48f4983b11995de30792504b727b32d5", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 version 1803 Security Update (April 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313, CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "https://support.microsoft.com/en-us/help/5001339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28313", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-06T13:24:45", "history": [], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001342.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28319", "CVE-2021-27086", "CVE-2021-28438", "CVE-2021-28442", "CVE-2021-27092", "CVE-2021-28436", "CVE-2021-28326", "CVE-2021-28311", "CVE-2021-27088", "CVE-2021-27072"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28313/"]}, {"type": "securelist", "idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"]}, {"type": "thn", "idList": ["THN:F163C7AB35BEF8E28924E14B02752181"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28438"]}, {"type": "mskb", "idList": ["KB5001339"]}], "modified": "2021-08-06T13:24:45", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-08-06T13:24:45", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001339: Windows 10 version 1803 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001339 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-06T13:24:45", "differentElements": ["vpr"], "edition": 8}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "87910191024cca1d56e719e0c663a6b4", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 version 1803 Security Update (April 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313, CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "https://support.microsoft.com/en-us/help/5001339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28313", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-07T15:43:00", "history": [], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28434", "CVE-2021-27094", "CVE-2021-28438", "CVE-2021-28436", "CVE-2021-28435", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27079", "CVE-2021-27092"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-28313/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}, {"type": "securelist", "idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"]}, {"type": "thn", "idList": ["THN:F163C7AB35BEF8E28924E14B02752181"]}, {"type": "mscve", "idList": ["MS:CVE-2021-27092"]}, {"type": "mskb", "idList": ["KB5001339"]}], "modified": "2021-08-07T15:43:00", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-08-07T15:43:00", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001339: Windows 10 version 1803 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001339 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-07T15:43:00", "differentElements": ["vpr"], "edition": 9}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "48f4983b11995de30792504b727b32d5", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 version 1803 Security Update (April 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313, CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "https://support.microsoft.com/en-us/help/5001339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28313", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-08T14:21:31", "history": [], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001387.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28358", "CVE-2021-27089", "CVE-2021-27092", "CVE-2021-28435", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-27079", "CVE-2021-28442", "CVE-2021-28436"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292", "KB5001339"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28313/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28330/", "MSF:ILITIES/MSFT-CVE-2021-28319/"]}, {"type": "securelist", "idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"]}], "modified": "2021-08-08T14:21:31", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-08-08T14:21:31", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001339: Windows 10 version 1803 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001339 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-08T14:21:31", "differentElements": ["vpr"], "edition": 10}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "e9831e039be7be7539c89c5624ecb38c", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 version 1803 Security Update (April 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313, CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "https://support.microsoft.com/en-us/help/5001339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28313", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-13T23:39:28", "history": [], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-27094", "CVE-2021-28357", "CVE-2021-27092", "CVE-2021-27088", "CVE-2021-28321", "CVE-2021-28436", "CVE-2021-28347", "CVE-2021-28438", "CVE-2021-28435"]}, {"type": "mskb", "idList": ["KB5001339", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28447/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28319/"]}], "modified": "2021-08-13T23:39:28", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-13T23:39:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001339: Windows 10 version 1803 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001339 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-13T23:39:28", "differentElements": ["nessusSeverity"], "edition": 11}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "628926bbec5eef22160c4d4130a27008", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 version 1803 Security Update (April 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313, CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "https://support.microsoft.com/en-us/help/5001339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28313", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-19T12:03:54", "history": [], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28347", "CVE-2021-27094", "CVE-2021-28442", "CVE-2021-28436", "CVE-2021-27092", "CVE-2021-28353", "CVE-2021-28438", "CVE-2021-27088", "CVE-2021-28435", "CVE-2021-27079"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28322/", "MSF:ILITIES/MSFT-CVE-2021-26413/"]}, {"type": "securelist", "idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"]}, {"type": "mskb", "idList": ["KB5001339"]}], "modified": "2021-08-19T12:03:54", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-08-19T12:03:54", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001339: Windows 10 version 1803 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001339 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-19T12:03:54", "differentElements": ["vpr"], "edition": 12}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "579ffe07051617f46d38b5eb35c7e894", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 version 1803 Security Update (April 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313, CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "https://support.microsoft.com/en-us/help/5001339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28313", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-30T19:46:49", "history": [], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27088", "CVE-2021-28354", "CVE-2021-28442", "CVE-2021-27094", "CVE-2021-28356", "CVE-2021-27072", "CVE-2021-27086", "CVE-2021-28358", "CVE-2021-28355", "CVE-2021-28438"]}, {"type": "mskb", "idList": ["KB5001339", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28340/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28313/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}], "modified": "2021-08-30T19:46:49", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-30T19:46:49", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001339: Windows 10 version 1803 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329,\n CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335,\n CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341,\n CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352,\n CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358,\n CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351,\n CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001339\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001339 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/03/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/04/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001339'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'17134',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001339])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001339 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-03-30T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-30T19:46:49", "differentElements": ["vpr"], "edition": 13}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001339.NASL", "hash": "03d544d4f1f3987d5b4b8374f6f09c05", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001339: Windows 10 version 1803 Security Update (April 2021)", "description": "The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094, CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313, CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability (CVE-2021-28320)\n\n - Windows DNS Information Disclosure Vulnerability (CVE-2021-28323, CVE-2021-28328)\n\n - Windows SMB Information Disclosure Vulnerability (CVE-2021-28325)\n\n - Windows AppX Deployment Server Denial of Service Vulnerability (CVE-2021-28326)\n\n - Remote Procedure Call Runtime Remote Code Execution Vulnerability (CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434)\n\n - Windows Speech Runtime Elevation of Privilege Vulnerability (CVE-2021-28347, CVE-2021-28351, CVE-2021-28436)\n\n - Windows GDI+ Remote Code Execution Vulnerability (CVE-2021-28348, CVE-2021-28349, CVE-2021-28350)\n\n - Windows Event Tracing Information Disclosure Vulnerability (CVE-2021-28435)\n\n - Windows Installer Information Disclosure Vulnerability (CVE-2021-28437)\n\n - Windows Console Driver Denial of Service Vulnerability (CVE-2021-28438, CVE-2021-28443)\n\n - Windows TCP/IP Information Disclosure Vulnerability (CVE-2021-28442)\n\n - Windows Hyper-V Security Feature Bypass Vulnerability (CVE-2021-28444)\n\n - Windows Services and Controller App Elevation of Privilege Vulnerability (CVE-2021-27086)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-04-13T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/148468", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "https://support.microsoft.com/en-us/help/5001339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28313", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-10T23:46:02", "history": [], "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27088", "CVE-2021-27092", "CVE-2021-28438", "CVE-2021-28321", "CVE-2021-28356", "CVE-2021-28442", "CVE-2021-28436", "CVE-2021-28355", "CVE-2021-27094", "CVE-2021-27086"]}, {"type": "mskb", "idList": ["KB5001292", "KB5001339"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28322/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28340/"]}], "modified": "2021-09-10T23:46:02", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-09-10T23:46:02", "rev": 2}}, "objectVersion": "1.6", "pluginID": "148468", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(148468);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28313\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001339\");\n script_xref(name:\"MSFT\", value:\"MS21-5001339\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n\n script_name(english:\"KB5001339: Windows 10 version 1803 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities:\n\n - Win32k Elevation of Privilege Vulnerability (CVE-2021-27072, CVE-2021-28310)\n\n - Windows Media Photo Codec Information Disclosure Vulnerability (CVE-2021-27079)\n\n - Windows Event Tracing Elevation of Privilege Vulnerability (CVE-2021-27088)\n\n - Microsoft Internet Messaging API Remote Code Execution Vulnerability (CVE-2021-27089)\n\n - Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092)\n\n - Windows Kernel Information Disclosure Vulnerability (CVE-2021-27093, CVE-2021-28309)\n\n - Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability (CVE-2021-27094,\n CVE-2021-28447)\n\n - Windows Media Video Decoder Remote Code Execution Vulnerability (CVE-2021-27095, CVE-2021-28315)\n\n - NTFS Elevation of Privilege Vulnerability (CVE-2021-27096)\n\n - Windows Installer Spoofing Vulnerability (CVE-2021-26413)\n\n - Windows Installer Elevation of Privilege Vulnerability (CVE-2021-26415, CVE-2021-28440)\n\n - Windows Application Compatibility Cache Denial of Service Vulnerability (CVE-2021-28311)\n\n - Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability (CVE-2021-28313,\n CVE-2021-28321, CVE-2021-28322)\n\n - Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability (CVE-2021-28316)\n\n - Microsoft Windows Codecs Library Information Disclosure Vulnerability (CVE-2021-28317)\n\n - Windows GDI+ Information Disclosure Vulnerability (CVE-2021-28318)\n\n - Windows TCP/IP Driver Denial of Service Vulnerability (CVE-2021-28319, CVE-2021-28439)\n\n - Windows Resource Manager PSM Service Extension Elevation of Privilege Vulner