9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
9.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
10 High
AI Score
Confidence
High
0.966 High
EPSS
Percentile
99.6%
Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, bypass security restrictions, obtain sensitive information.
Below is a complete list of vulnerabilities:
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
CVE-2021-31956 critical
CVE-2021-31973 critical
CVE-2021-33742 critical
CVE-2021-31954 critical
CVE-2021-31201 high
CVE-2021-31199 high
CVE-2021-1675 critical
CVE-2021-31953 critical
CVE-2021-31968 critical
CVE-2021-31958 critical
CVE-2021-31971 high
CVE-2021-26414 warning
CVE-2021-31959 high
CVE-2021-31962 critical
CVE-2021-31975 critical
CVE-2021-31972 high
CVE-2021-31976 critical
CVE-2021-31970 high
CVE-2021-31974 critical
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
support.microsoft.com/kb/5003636
support.microsoft.com/kb/5003661
support.microsoft.com/kb/5003667
support.microsoft.com/kb/5003671
support.microsoft.com/kb/5003681
support.microsoft.com/kb/5003694
support.microsoft.com/kb/5003695
support.microsoft.com/kb/5003696
support.microsoft.com/kb/5003697
support.microsoft.com/kb/5014742
support.microsoft.com/kb/5014748
support.microsoft.com/kb/5023752
support.microsoft.com/kb/5023754
support.microsoft.com/kb/5023755
support.microsoft.com/kb/5023756
support.microsoft.com/kb/5023759
support.microsoft.com/kb/5023764
support.microsoft.com/kb/5023765
support.microsoft.com/kb/5023769
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1675
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26414
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31199
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31201
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31953
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31954
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31956
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31958
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31959
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31962
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31968
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31970
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31971
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31972
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31973
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31974
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31975
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31976
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-33742
statistics.securelist.com/
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Windows-7/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2008/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2012/
threats.kaspersky.com/en/product/Microsoft-Windows-Server/
threats.kaspersky.com/en/product/Microsoft-Windows/
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
9.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
10 High
AI Score
Confidence
High
0.966 High
EPSS
Percentile
99.6%