Lucene search

K

MicrosoftMS:CVE-2021-27089

HistoryApr 13, 2021 - 7:00 a.m.

Microsoft Internet Messaging API Remote Code Execution Vulnerability

2021-04-1307:00:00

Microsoft

msrc.microsoft.com

31

vulnerability

remote code execution

microsoft

internet messaging api

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

High

EPSS

0.012

Percentile

85.4%

Affected configurations

Vulners

Node

microsoftwindows_server_2012Range<2021-Aprr2

OR

microsoftwindows_server_2012Range<2021-Aprr2

OR

microsoftwindows_server_2012Range<2021-Aprr2

OR

microsoftwindows_server_2012Range<2021-Aprr2

OR

microsoftwindows_server\,_1803_\(server_core_installation\)Range<2021-Apr

OR

microsoftwindows_server\,_1803_\(server_core_installation\)Range<2021-Apr

OR

microsoftwindows_server_2012Range<2021-Apr

OR

microsoftwindows_server_2012Range<2021-Apr

OR

microsoftwindows_server_2008Range<2021-Aprr2x64

OR

microsoftwindows_server_2008Range<2021-Aprr2x64

OR

microsoftwindows_server_2008Range<2021-Aprr2x64

OR

microsoftwindows_server_2008Range<2021-Aprr2x64

OR

microsoftwindows_server_2008Range<2021-Aprx64

OR

microsoftwindows_server_2008Range<2021-Aprx64

OR

microsoftwindows_server_2008Range<2021-Aprx64

OR

microsoftwindows_server_2008Range<2021-Aprx64

OR

microsoftwindows_server\,_1803_\(server_core_installation\)Range<2021-Apr

OR

microsoftwindows_server\,_1803_\(server_core_installation\)Range<2021-Apr

OR

microsoftwindows_10_2004_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_10_2004_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_rt_8.1Range<2021-Apr

OR

microsoftwindows_10_1903_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_1903_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_2004_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_10_2004_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_10_1903_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_1903_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_2004_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_10_2004_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_server\,_1803_\(server_core_installation\)Range<2021-Apr

OR

microsoftwindows_server_2016Range<2021-Apr

OR

microsoftwindows_defender_on_windows_10_1607_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_defender_on_windows_10_1607_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_10_1903_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_2004_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_server_20h2Range<2021-Apr

OR

microsoftwindows_10_20h2Range<2021-Aprarm64

OR

microsoftwindows_10_2004_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_10_1903_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_server_version_2004Range<2021-Apr

OR

microsoftwindows_10_2004_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_2004_for_arm64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_2004_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_server\,_version_1909Range<2021-Apr

OR

microsoftwindows_10_1909_for_arm64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_1909_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_1909_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_server\,_1803_\(server_core_installation\)Range<2021-Apr

OR

microsoftwindows_server_2019Range<2021-Apr

OR

microsoftwindows_10_1809_for_arm64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_1809_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_1809_for_32-bit_systemsRange<2021-Apr

OR

microsoftwindows_10_1803_for_arm64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_1803_for_x64-based_systemsRange<2021-Apr

OR

microsoftwindows_10_1803_for_32-bit_systemsRange<2021-Apr

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

High

EPSS

0.012

Percentile

85.4%

Related for MS:CVE-2021-27089

cvelist1 prion1 nvd1 cve1 nessus10 mskb14 kaspersky2 openvas8 rapid7blog1