Lucene search
MicrosoftVULNRICHMENT:CVE-2021-41346HistoryOct 13, 2021 - 12:28 a.m.
CVE-2021-41346 Console Window Host Security Feature Bypass Vulnerability
2021-10-1300:28:07
microsoft
github.com
5
cve-2021-41346
console window host
security feature bypass
CVSS3
5.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C
AI Score
6.8
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
CNA Affected
[
{
"cpes": [
"cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1288:*:*:*:*:*:x64:*",
"cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1288:*:*:*:*:*:arm64:*",
"cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1288:*:*:*:*:*:x86:*"
],
"vendor": "Microsoft",
"product": "Windows 10 Version 21H1",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.19043.1288",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems",
"ARM64-based Systems",
"32-bit Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_10_1809:10.0.19041.1288:*:*:*:*:*:x64:*"
],
"vendor": "Microsoft",
"product": "Windows 10 Version 2004",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.19041.1288",
"versionType": "custom"
}
],
"platforms": [
"32-bit Systems",
"ARM64-based Systems",
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1288:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server version 2004",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.19041.1288",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1288:*:*:*:*:*:x86:*",
"cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1288:*:*:*:*:*:arm64:*"
],
"vendor": "Microsoft",
"product": "Windows 10 Version 20H2",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.19042.1288",
"versionType": "custom"
}
],
"platforms": [
"32-bit Systems",
"ARM64-based Systems"
]
},
{
"cpes": [
"cpe:2.3:o:microsoft:windows_server_20H2:10.0.19042.1288:*:*:*:*:*:*:*"
],
"vendor": "Microsoft",
"product": "Windows Server version 20H2",
"versions": [
{
"status": "affected",
"version": "10.0.0",
"lessThan": "10.0.19042.1288",
"versionType": "custom"
}
],
"platforms": [
"x64-based Systems"
]
}
]Related
nvd
nvd
CVE-2021-41346
2021-10-13 01:15:13
cvelist
cvelist
CVE-2021-41346 Console Window Host Security Feature Bypass Vulnerability
2021-10-13 00:28:07
prion
prion
Security feature bypass
2021-10-13 01:15:00
cve
cve
CVE-2021-41346
2021-10-13 01:15:13
mscve
mscve
Console Window Host Security Feature Bypass Vulnerability
2021-10-12 07:00:00
nessus
nessus
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5006670)
2021-10-13 00:00:00
kaspersky
kaspersky
KLA12310 Multiple vulnerabilities in Microsoft Windows
2021-10-12 00:00:00
mskb
mskb
rapid7blog
rapid7blog
Patch Tuesday - October 2021
2021-10-12 19:47:16
CVSS3
5.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C
AI Score
6.8
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2021-41346