Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2021-1647
HistoryJan 12, 2021 - 8:15 p.m.

CVE-2021-1647

2021-01-1220:15:30
CWE-20
[email protected]
web.nvd.nist.gov
1099
In Wild
89
cve-2021-1647
microsoft
defender
remote code execution
vulnerability
nvd

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

High

0.092 Low

EPSS

Percentile

94.7%

JSON

Microsoft Defender Remote Code Execution Vulnerability

Affected configurations

NVD
Node
microsoftwindows_defenderMatch-
AND
microsoftwindows_10Match-
OR
microsoftwindows_10Match20h2
OR
microsoftwindows_10Match1607
OR
microsoftwindows_10Match1803
OR
microsoftwindows_10Match1809
OR
microsoftwindows_10Match1909
OR
microsoftwindows_10Match2004
OR
microsoftwindows_7Match-sp1
OR
microsoftwindows_8.1Match-
OR
microsoftwindows_rt_8.1Match-
OR
microsoftwindows_server_2008Match-sp2
OR
microsoftwindows_server_2008Matchr2sp1x64
OR
microsoftwindows_server_2012Match-
OR
microsoftwindows_server_2012Matchr2
OR
microsoftwindows_server_2016Match-
OR
microsoftwindows_server_2016Match20h2
OR
microsoftwindows_server_2016Match1909
OR
microsoftwindows_server_2016Match2004
OR
microsoftwindows_server_2019Match-
Node
microsoftsecurity_essentialsMatch-
OR
microsoftsystem_center_endpoint_protectionMatch-
OR
microsoftsystem_center_endpoint_protectionMatch2012-
OR
microsoftsystem_center_endpoint_protectionMatch2012r2

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft System Center Endpoint Protection",
    "cpes": [],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "N/A",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft System Center 2012 R2 Endpoint Protection",
    "cpes": [],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "N/A",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Security Essentials",
    "cpes": [],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "N/A",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft System Center 2012 Endpoint Protection",
    "cpes": [],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "N/A",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Windows Defender",
    "cpes": [],
    "platforms": [
      "Windows 10 Version 1803 for 32-bit Systems",
      "Windows 10 Version 1803 for x64-based Systems",
      "Windows 10 Version 1803 for ARM64-based Systems",
      "Windows 10 Version 1809 for 32-bit Systems",
      "Windows 10 Version 1809 for x64-based Systems",
      "Windows 10 Version 1809 for ARM64-based Systems",
      "Windows Server 2019",
      "Windows Server 2019 (Server Core installation)",
      "Windows 10 Version 1909 for 32-bit Systems",
      "Windows 10 Version 1909 for x64-based Systems",
      "Windows 10 Version 1909 for ARM64-based Systems",
      "Windows Server, version 1909 (Server Core installation)",
      "Windows 10 Version 2004 for 32-bit Systems",
      "Windows 10 Version 2004 for ARM64-based Systems",
      "Windows 10 Version 2004 for x64-based Systems",
      "Windows Server, version 2004 (Server Core installation)",
      "Windows 10 Version 20H2 for 32-bit Systems",
      "Windows 10 Version 20H2 for ARM64-based Systems",
      "Windows Server, version 20H2 (Server Core Installation)",
      "Windows 10 for 32-bit Systems",
      "Windows 10 for x64-based Systems",
      "Windows 10 Version 1607 for 32-bit Systems",
      "Windows 10 Version 1607 for x64-based Systems",
      "Windows Server 2016",
      "Windows Server 2016 (Server Core installation)",
      "Windows 7 for 32-bit Systems Service Pack 1",
      "Windows 7 for x64-based Systems Service Pack 1",
      "Windows 8.1 for 32-bit systems",
      "Windows 8.1 for x64-based systems",
      "Windows RT 8.1",
      "Windows Server 2008 for 32-bit Systems Service Pack 2",
      "Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
      "Windows Server 2012",
      "Windows Server 2012 (Server Core installation)",
      "Windows Server 2012 R2",
      "Windows Server 2012 R2 (Server Core installation)"
    ],
    "versions": [
      {
        "version": "N/A",
        "status": "affected"
      }
    ]
  }
]

Social References

More

Related

nessus 2
rapid7blog 2
threatpost 3
kaspersky 1
nvd 1
attackerkb 1
openvas 2
cvelist 1
prion 1
cisa 1
thn 2
cisa_kev 1
githubexploit 1
mscve 1
checkpoint_advisories 1
malwarebytes 1
qualysblog 3
krebs 1
securelist 1
avleonov 1
nessus
nessus
Security Update for Windows Defender (January 2021)
2021-01-12 00:00:00
Security Update for Forefront Endpoint Protection (January 2021)
2021-01-12 00:00:00
rapid7blog
rapid7blog
State-Sponsored Threat Actors Target Security Researchers
2021-01-26 15:01:33
Patch Tuesday - January 2021
2021-01-12 23:59:00
threatpost
threatpost
Twitter Suspends Accounts Used to Snare Security Researchers
2021-10-18 16:23:21
North Korea Targets Security Researchers in Elaborate 0-Day Campaign
2021-01-26 14:49:03
Critical Microsoft Defender Bug Actively Exploited; Patch Tuesday Offers 83 Fixes
2021-01-12 21:45:23
kaspersky
kaspersky
KLA12044 ACE vulnerability in Microsoft System Center
2021-01-12 00:00:00
nvd
nvd
CVE-2021-1647
2021-01-12 20:15:30
attackerkb
attackerkb
CVE-2021-1647 Microsoft Windows Defender Zero-Day Vulnerability
2021-01-12 00:00:00
openvas
openvas
Microsoft Windows Defender Antimalware Platform Remote Code Execution Vulnerability (Jan 2021)
2021-01-13 00:00:00
Microsoft Security Essentials Remote Code Execution Vulnerability (Jan 2021)
2021-01-13 00:00:00
cvelist
cvelist
CVE-2021-1647 Microsoft Defender Remote Code Execution Vulnerability
2021-01-12 19:42:01
prion
prion
Remote code execution
2021-01-12 20:15:00
cisa
cisa
RCE Vulnerability Affecting Microsoft Defender
2021-01-14 00:00:00
thn
thn
N. Korean Hackers Targeting Security Experts to Steal Undisclosed Researches
2021-01-26 05:10:00
Microsoft Issues Patches for Defender Zero-Day and 82 Other Windows Flaws
2021-01-13 05:01:00
cisa_kev
cisa_kev
Microsoft Defender Remote Code Execution Vulnerability
2021-11-03 00:00:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2021-01-20 10:05:00
mscve
mscve
Microsoft Defender Remote Code Execution Vulnerability
2021-01-12 08:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Defender Remote Code Execution (CVE-2021-1647)
2021-01-12 00:00:00
malwarebytes
malwarebytes
Microsoft issues 83 patches, one for actively exploited vulnerability
2021-01-13 19:40:58
qualysblog
qualysblog
January 2021 Patch Tuesday – 83 Vulnerabilities, 10 Critical, One Zero Day, Adobe
2021-01-12 20:01:43
Qualys Response to CISA Alert: Binding Operational Directive 22-01
2021-11-09 06:15:01
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
krebs
krebs
Microsoft Patch Tuesday, January 2021 Edition
2021-01-13 01:32:20
securelist
securelist
IT threat evolution Q1 2021. Non-mobile statistics
2021-05-31 10:00:05
avleonov
avleonov
Vulristics: Microsoft Patch Tuesdays Q1 2021
2021-03-26 02:47:52

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

High

0.092 Low

EPSS

Percentile

94.7%

JSON
Related for CVE-2021-1647
nessus2rapid7blog2threatpost3kaspersky1nvd1attackerkb1openvas2cvelist1prion1cisa1thn2cisa_kev1githubexploit1mscve1checkpoint_advisories1malwarebytes1qualysblog3krebs1securelist1avleonov1