7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.9 High
AI Score
Confidence
High
0.093 Low
EPSS
Percentile
94.7%
Multiple vulnerabilities were found in Microsoft Products (Extended Security Update). Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges.
Below is a complete list of vulnerabilities:
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
CVE-2021-43217 critical
CVE-2021-43216 high
CVE-2021-43223 critical
CVE-2021-43238 critical
CVE-2021-43883 critical
CVE-2021-43229 critical
CVE-2021-43226 critical
CVE-2021-43232 critical
CVE-2021-43234 critical
CVE-2021-43215 critical
CVE-2021-43893 critical
CVE-2021-43230 critical
CVE-2021-43224 high
CVE-2021-43222 critical
CVE-2021-43233 critical
CVE-2021-43245 critical
CVE-2021-40441 critical
CVE-2021-43248 critical
CVE-2021-41333 critical
CVE-2021-43236 critical
CVE-2021-43207 critical
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
support.microsoft.com/kb/5008244
support.microsoft.com/kb/5008255
support.microsoft.com/kb/5008263
support.microsoft.com/kb/5008271
support.microsoft.com/kb/5008274
support.microsoft.com/kb/5008277
support.microsoft.com/kb/5008282
support.microsoft.com/kb/5008285
support.microsoft.com/kb/5015861
support.microsoft.com/kb/5015862
support.microsoft.com/kb/5015863
support.microsoft.com/kb/5015874
support.microsoft.com/kb/5015875
support.microsoft.com/kb/5015877
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40441
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-41333
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43207
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43215
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43216
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43217
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43222
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43223
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43224
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43226
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43229
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43230
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43232
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43233
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43234
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43236
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43238
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43245
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43248
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43883
msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43893
statistics.securelist.com/
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Windows-7/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2008/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2012/
threats.kaspersky.com/en/product/Microsoft-Windows-Server/
threats.kaspersky.com/en/product/Microsoft-Windows/
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
8.9 High
AI Score
Confidence
High
0.093 Low
EPSS
Percentile
94.7%