Lucene search
MicrosoftMS:CVE-2021-34448HistoryJul 13, 2021 - 7:00 a.m.
Scripting Engine Memory Corruption Vulnerability
2021-07-1307:00:00
Microsoft
msrc.microsoft.com
47
scripting engine
memory corruption
vulnerability
microsoft
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
AI Score
9.3
Confidence
High
EPSS
0.957
Percentile
99.5%
Affected configurations
Node
microsoftwindows_server_2012Range<6.3.9600.20069r2
ORmicrosoftwindows_10_1607Range<10.0.14393.4530
ORmicrosoftwindows_10Range<10.0.10240.19003x64
ORmicrosoftwindows_10Range<10.0.10240.19003
ORmicrosoftwindows_10_20h2Range<10.0.19042.1110arm64
ORmicrosoftwindows_10_20h2Range<10.0.19042.1110
ORmicrosoftwindows_10_20h2Range<10.0.19042.1110x64
ORmicrosoftwindows_10_2004Range<10.0.19041.1110
ORmicrosoftwindows_10_2004Range<10.0.19041.1110
ORmicrosoftwindows_10_2004Range<10.0.19041.1110
ORmicrosoftwindows_10_21h1Range<10.0.19043.1110
ORmicrosoftwindows_10_21h1Range<10.0.19043.1110arm64
ORmicrosoftwindows_10_21h1Range<10.0.19043.1110x64
ORmicrosoftwindows_10_1909Range<10.0.18363.1679
ORmicrosoftwindows_10_1909Range<10.0.18363.1679
ORmicrosoftwindows_10_1909Range<10.0.18363.1679
ORmicrosoftwindows_server_2019Range<10.0.17763.2061
ORmicrosoftwindows_server_2012Range<6.2.9200.23409
ORmicrosoftwindows_server_2012Range<v1.001
ORmicrosoftwindows_server_2008Range<6.1.7601.25661r2x64
ORmicrosoftwindows_rt_8.1Range<6.3.9600.20069
ORmicrosoftwindows_8.1Range<6.3.9600.20069x64
ORmicrosoftwindows_8.1Range<6.3.9600.20069
ORmicrosoftwindows_7Range<6.1.7601.25661x64
ORmicrosoftwindows_7Range<6.1.7601.25661
ORmicrosoftwindows_server_2016Range<10.0.14393.4530
ORmicrosoftwindows_10_1607Range<10.0.14393.4530x64
ORmicrosoftwindows_10_1809Range<10.0.17763.2061arm64
ORmicrosoftwindows_10_1809Range<10.0.17763.2061x64
ORmicrosoftwindows_10_1809Range<10.0.17763.2061
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_server_2012 | * | cpe:2.3:o:microsoft:windows_server_2012:*:r2:*:*:*:*:*:* |
| microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:* |
| microsoft | windows_10 | * | cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:x64:* |
| microsoft | windows_10 | * | cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:arm64:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x64:* |
| microsoft | windows_10_2004 | * | cpe:2.3:o:microsoft:windows_10_2004:*:*:*:*:*:*:*:* |
| microsoft | windows_10_21h1 | * | cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:* |
| microsoft | windows_10_21h1 | * | cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:arm64:* |
Related
cvelist
cvelist
CVE-2021-34448 Scripting Engine Memory Corruption Vulnerability
2021-07-16 20:19:39
prion
prion
Memory corruption
2021-07-16 21:15:00
cisa_kev
cisa_kev
Microsoft Windows Scripting Engine Memory Corruption Vulnerability
2021-11-03 00:00:00
nvd
nvd
CVE-2021-34448
2021-07-16 21:15:09
checkpoint_advisories
checkpoint_advisories
Microsoft Scripting Engine Memory Corruption (CVE-2021-34448)
2021-07-14 00:00:00
cve
cve
CVE-2021-34448
2021-07-16 21:15:09
attackerkb
attackerkb
CVE-2021-34448
2021-07-16 00:00:00
nessus
nessus
Security Updates for Internet Explorer (July 2021)
2021-07-13 00:00:00
KB5004307: Windows 7 and Windows Server 2008 R2 Security Update (July 2021)
2021-07-13 00:00:00
KB5004249: Windows 10 1507 LTS Security Update (July 2021)
2021-07-13 00:00:00
mskb
mskb
July 13, 2021βKB5004289 (Monthly Rollup)
2021-07-13 07:00:00
July 13, 2021βKB5004249 (OS Build 10240.19003) - EXPIRED
2021-07-13 07:00:00
krebs
krebs
Microsoft Patch Tuesday, July 2021 Edition
2021-07-13 21:41:47
avleonov
avleonov
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday (July 2021) β Microsoft 117 Vulnerabilities with 13 Critical, Adobe 26 Vulnerabilities
2021-07-13 19:49:37
Qualys Response to CISA Alert: Binding Operational Directive 22-01
2021-11-09 06:15:01
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
malwarebytes
malwarebytes
Four in-the-wild exploits, 13 critical patches headline bumper Patch Tuesday
2021-07-14 11:56:06
thn
thn
Update Your Windows PCs to Patch 117 New Flaws, Including 9 Zero-Days
2021-07-14 05:03:00
threatpost
threatpost
Microsoft Crushes 116 Bugs, Three Actively Exploited
2021-07-13 21:26:27
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5004289)
2021-07-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5004298)
2021-07-14 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5004305)
2021-07-14 00:00:00
kaspersky
kaspersky
KLA12226 Multiple vulnerabilities in Microsoft Products (ESU)
2021-07-13 00:00:00
KLA12221 Multiple vulnerabillities in Microsoft Windows
2021-07-13 00:00:00
googleprojectzero
googleprojectzero
The More You Know, The More You Know You Donβt Know
2022-04-19 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - July 2021
2021-07-13 20:56:26
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
AI Score
9.3
Confidence
High
EPSS
0.957
Percentile
99.5%
Related for MS:CVE-2021-34448