By Edmund Brumaghin, Joe Marshall, and Arnaud Zobec. Executive Summary Another threat actor is actively exploiting the so-called PrintNightmare vulnerability (CVE-2021-1675 / CVE-2021-34527) in Windows’ print spooler service to spread laterally across a victim’s network as part of a recent…

[[ This is only the beginning! Please visit the blog for the complete entry ]]

githubexploit 59

malwarebytes 5

threatpost 9

pentestpartners 1

ics 4

mscve 2

thn 11

cisa 4

packetstorm 1

rapid7blog 8

prion 2

attackerkb 3

securelist 5

hivepro 3

metasploit 1

talosblog 1

cve 2

mskb 28

cert 2

kitploit 2

qualysblog 7

nessus 17

msrc 8

kaspersky 3

checkpoint_advisories 1

krebs 2

cisa_kev 2

avleonov 3

seebug 1

trellix 2

githubexploit

Exploit for Improper Privilege Management in Microsoft

2021-07-22 10:49:30

Exploit for Improper Privilege Management in Microsoft

2021-07-02 12:10:49

Exploit for Improper Privilege Management in Microsoft

2021-07-03 15:15:12

malwarebytes

PrintNightmare 0-day can be used to take over Windows domain controllers

2021-07-01 14:08:26

UPDATED: Patch now! Emergency fix for PrintNightmare released by Microsoft

2021-07-07 14:17:31

Microsoft’s PrintNightmare continues, shrugs off Patch Tuesday fixes

2021-08-12 11:30:26

threatpost

Microsoft Releases Emergency Patch for PrintNightmare Bugs

2021-07-07 10:55:02

CISA Offers New Mitigation for PrintNightmare Bug

2021-07-02 12:21:02

Microsoft: Unpatched Bug in Windows Print Spooler

2021-07-16 11:57:53

pentestpartners

Black Basta ransomware

2023-06-28 05:11:34

ics

#StopRansomware: Vice Society

2022-09-08 12:00:00

#StopRansomware: Vice Society

2022-09-08 12:00:00

Russian State-Sponsored Cyber Actors Gain Network Access by Exploiting Default Multifactor Authentication Protocols and “PrintNightmare” Vulnerability

2022-05-02 12:00:00

mscve

Windows Print Spooler Remote Code Execution Vulnerability

2021-07-01 07:00:00

Windows Print Spooler Remote Code Execution Vulnerability

2021-06-08 07:00:00

thn

Microsoft Warns of Critical "PrintNightmare" Flaw Being Exploited in the Wild

2021-07-02 05:36:00

Microsoft Issues Emergency Patch for Critical Windows PrintNightmare Vulnerability

2021-07-07 03:11:00

Microsoft's Emergency Patch Fails to Fully Fix PrintNightmare RCE Vulnerability

2021-07-08 04:35:00

cisa

PrintNightmare, Critical Windows Print Spooler Vulnerability

2021-06-30 00:00:00

Microsoft Releases Out-of-Band Security Updates for PrintNightmare

2021-07-06 00:00:00

CISA Issues Emergency Directive on Microsoft Windows Print Spooler

2021-07-13 00:00:00

packetstorm

Print Spooler Remote DLL Injection

2022-05-25 00:00:00

rapid7blog

Metasploit Wrap-up

2021-07-09 17:53:41

Russia-Ukraine Cybersecurity Updates

2022-03-04 14:30:00

CVE-2021-34527 (PrintNightmare): What You Need to Know

2021-06-30 18:15:59

prion

Remote code execution

2021-07-02 22:15:00

Remote code execution

2021-06-08 23:15:00

attackerkb

CVE-2021-1675

2021-06-08 00:00:00

CVE-2021-34527 "PrintNightmare"

2021-07-02 00:00:00

CVE-2021-35211

2021-07-13 00:00:00

securelist

Quick look at CVE-2021-1675 & CVE-2021-34527 (aka PrintNightmare)

2021-07-08 05:00:06

Kaspersky Managed Detection and Response: interesting cases

2021-12-15 10:00:42

IT threat evolution Q3 2021

2021-11-26 12:00:36

hivepro

Emergency patches have been released by Microsoft for PrintNightmare

2021-07-08 13:50:55

Russian threat actors leveraging misconfigured multifactor authentication to exploit PrintNightmare vulnerability

2022-03-18 13:58:03

Are you a victim of the Conti Ransomware?

2021-09-23 13:47:51

metasploit

Print Spooler Remote DLL Injection

2022-05-16 18:56:46

talosblog

PrintNightmare: Here’s what you need to know and Talos’ coverage

2021-07-08 13:25:03

cve

CVE-2021-34527

2021-07-02 22:15:00

CVE-2021-1675

2021-06-08 23:15:00

mskb

July 6, 2021—KB5004945 (OS Builds 19041.1083, 19042.1083, and 19043.1083) Out-of-band

2021-07-01 07:00:00

July 6, 2021—KB5004947 (OS Build 17763.2029) Out-of-band

2021-07-01 07:00:00

July 6, 2021—KB5004953 (Monthly Rollup) Out-of-band

2021-07-01 07:00:00

cert

Microsoft Windows Print Spooler allows for RCE via AddPrinterDriverEx()

2021-06-30 00:00:00

Microsoft Windows Print Spooler Point and Print allows installation of arbitrary queue-specific files

2021-07-18 00:00:00

kitploit

SpoolSploit - A Collection Of Windows Print Spooler Exploits Containerized With Other Utilities For Practical Exploitation

2021-10-07 11:30:00

Invoke-PSObfuscation - An In-Depth Approach To Obfuscating The Individual Components Of A PowerShell Payload Whether You'Re On Windows Or Kali Linux

2023-03-21 11:30:00

qualysblog

Microsoft Windows Print Spooler RCE Vulnerability (PrintNightmare-CVE-2021-34527) – Automatically Discover, Prioritize and Remediate Using Qualys VMDR®

2021-07-07 23:30:23

Conti Ransomware

2021-11-18 17:17:56

Ransomware Insights from the FBI’s 2021 Internet Crime Report

2022-05-04 09:40:56

nessus

KB5004959: Windows Server 2008 OOB Security Update RCE (July 2021)

2021-07-08 00:00:00

KB5004946: Windows 10 1909 OOB Security Update RCE (July 2021)

2021-07-08 00:00:00

KB5004960: Windows Server 2012 OOB Security Update RCE (July 2021)

2021-07-08 00:00:00

msrc

Out-of-Band (OOB) Security Update available for CVE-2021-34527

2021-07-06 23:36:00

Clarified Guidance for CVE-2021-34527 Windows Print Spooler Vulnerability

2021-07-09 01:00:42

Clarified Guidance for CVE-2021-34527 Windows Print Spooler Vulnerability

2021-07-08 07:00:00

kaspersky

KLA12214 RCE vulnerability in Microsoft Products (ESU)

2021-07-01 00:00:00

KLA12213 RCE vulnerability in Microsoft Windows

2021-07-01 00:00:00

KLA12198 Multiple vulnerabilities in Microsoft Products (ESU)

2021-06-08 00:00:00

checkpoint_advisories

Windows Print Spooler Remote Code Execution (CVE-2021-34527)

2021-07-08 00:00:00

krebs

Microsoft Issues Emergency Patch for Windows Flaw

2021-07-07 14:34:59

Microsoft Patch Tuesday, July 2021 Edition

2021-07-13 21:41:47

cisa_kev

Microsoft Windows Print Spooler Remote Code Execution Vulnerability

2021-11-03 00:00:00

Microsoft Windows Print Spooler Remote Code Execution Vulnerability

2021-11-03 00:00:00

avleonov

Last Week’s Security news: PrintNightmare, Kaseya, Intune, Metasploit Docker escape

2021-07-05 15:19:07

Last Week’s Security news: PrintNightmare patches and Metasploit, Kaseya CVEs, Morgan Stanley Accellion FTA, Cisco BPA and WSA, Philips Vue PACS, CISA RVAs, Lazarus job offers

2021-07-11 20:52:51

Vulristics: Microsoft Patch Tuesdays Q2 2021

2021-07-10 00:14:59

seebug

Windows Print Spooler权限提升漏洞（CVE-2021-1675）

2021-06-17 00:00:00

trellix

Beyond Memory Corruption Vulnerabilities – A Security Extinction and Future of Exploitation

2022-01-24 00:00:00

Beyond Memory Corruption Vulnerabilities – A Security Extinction and Future of Exploitation

2022-01-24 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

Related for TALOSBLOG:8CDF0A62E30713225D10811E0E977C1D

githubexploit59 malwarebytes5 threatpost9 pentestpartners1 ics4 mscve2 thn11 cisa4 packetstorm1 rapid7blog8 prion2 attackerkb3 securelist5 hivepro3 metasploit1 talosblog1 cve2 mskb28 cert2 kitploit2 qualysblog7 nessus17 msrc8 kaspersky3 checkpoint_advisories1 krebs2 cisa_kev2 avleonov3 seebug1 trellix2