Lucene search
MicrosoftCVELIST:CVE-2021-27091HistoryApr 13, 2021 - 7:32 p.m.
CVE-2021-27091 RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
2021-04-1319:32:42
microsoft
www.cve.org
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
8.4 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.6%
CNA Affected
[
{
"vendor": "Microsoft",
"product": "Windows 7",
"cpes": [
"cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:x86:*"
],
"platforms": [
"32-bit Systems"
],
"versions": [
{
"version": "6.1.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows 7 Service Pack 1",
"cpes": [
"cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.1.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2008 R2 Service Pack 1",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.1.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2008_R2:*:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.0.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2012",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.2.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
},
{
"vendor": "Microsoft",
"product": "Windows Server 2012 (Server Core installation)",
"cpes": [
"cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:x64:*"
],
"platforms": [
"x64-based Systems"
],
"versions": [
{
"version": "6.2.0",
"lessThan": "publication",
"versionType": "custom",
"status": "affected"
}
]
}
]Related
mscve
mscve
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
2021-04-13 07:00:00
cve
cve
CVE-2021-27091
2021-04-13 20:15:15
prion
prion
Privilege escalation
2021-04-13 20:15:00
nvd
nvd
CVE-2021-27091
2021-04-13 20:15:15
thn
thn
NSA Discovers New Vulnerabilities Affecting Microsoft Exchange Servers
2021-04-14 04:58:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5001335)
2021-04-14 00:00:00
kaspersky
kaspersky
KLA12142 Multiple vulnerabilities in Microsoft Products (ESU)
2021-04-13 00:00:00
KLA12139 Multiple vulnerabilities in Microsoft Windows
2021-04-13 00:00:00
nessus
nessus
KB5001387: Windows Server 2012 Security Update (Apr 2021)
2021-04-13 00:00:00
KB5001335: Windows 7 and Windows Server 2008 R2 Security Update (Apr 2021)
2021-04-13 00:00:00
KB5001382: Windows 8.1 and Windows Server 2012 R2 Security Update (Apr 2021)
2021-04-13 00:00:00
mskb
mskb
April 13, 2021âKB5001387 (Monthly Rollup)
2021-04-13 07:00:00
April 13, 2021âKB5001392 (Security-only update)
2021-04-13 07:00:00
April 13, 2021âKB5001383 (Security-only update)
2021-04-13 07:00:00
rapid7blog
rapid7blog
Patch Tuesday - April 2021
2021-04-13 17:37:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
8.4 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.6%
Related for CVELIST:CVE-2021-27091