Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
msrcMicrosoft Security Response CenterMSRC:9050B952753E7892309AACE8E5768F59
HistoryFeb 09, 2021 - 8:00 a.m.

Multiple Security Updates Affecting TCP/IP:  CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086

2021-02-0908:00:00
Microsoft Security Response Center
msrc.microsoft.com
16
microsoft
tcp/ip
vulnerabilities
fixes
critical
important
rce
dos

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.035

Percentile

91.7%

JSON

Today Microsoft released a set of fixes affecting Windows TCP/IP implementation that include two Critical Remote Code Execution (RCE) vulnerabilities (CVE-2021-24074, CVE-2021-24094) and an Important Denial of Service (DoS) vulnerability (CVE-2021-24086). The two RCE vulnerabilities are complex which make it difficult to create functional exploits, so they are not likely in the short term.

Related

mscve 3
msrc 3
githubexploit 3
trellix 2
attackerkb 3
qualysblog 1
cvelist 3
nvd 3
cve 3
prion 3
seebug 1
mskb 14
nessus 10
thn 1
openvas 9
securelist 2
malwarebytes 1
kaspersky 2
avleonov 1
threatpost 1
rapid7blog 1
mscve
mscve
Windows TCP/IP Denial of Service Vulnerability
2021-02-09 08:00:00
Windows TCP/IP Remote Code Execution Vulnerability
2021-02-09 08:00:00
Windows TCP/IP Remote Code Execution Vulnerability
2021-02-09 08:00:00
msrc
msrc
Multiple Security Updates Affecting TCP/IP:  CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086
2021-02-09 18:10:59
TCP/IP に影響を与える脆弱性情報に関する注意喚起
2021-02-11 08:00:00
Multiple Security Updates Affecting TCP/IP:  CVE-2021-24074, CVE-2021-24094, and CVE-2021-24086
2021-02-09 08:00:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2021-04-07 11:10:40
Exploit for CVE-2021-24086
2021-11-25 04:56:33
Exploit for CVE-2021-24086
2021-11-25 04:56:33
trellix
trellix
Researchers Follow the Breadcrumbs: The Latest Vulnerabilities in Windows' Network Stack | McAfee Blogs
2021-02-09 00:00:00
Researchers Follow the Breadcrumbs: The Latest Vulnerabilities in Windows' Network Stack | McAfee Blogs
2021-02-09 00:00:00
attackerkb
attackerkb
CVE-2021-24094
2021-02-25 00:00:00
CVE-2021-24074
2021-02-25 00:00:00
CVE-2020-16898 aka Bad Neighbor / Ping of Death Redux
2020-10-16 00:00:00
qualysblog
qualysblog
February 2021 Patch Tuesday – 56 Vulnerabilities, 11 Critical, Adobe
2021-02-09 20:22:38
cvelist
cvelist
CVE-2021-24094 Windows TCP/IP Remote Code Execution Vulnerability
2021-02-25 23:01:50
CVE-2021-24074 Windows TCP/IP Remote Code Execution Vulnerability
2021-02-25 23:01:38
CVE-2021-24086 Windows TCP/IP Denial of Service Vulnerability
2021-02-25 23:01:46
nvd
nvd
CVE-2021-24094
2021-02-25 23:15:15
CVE-2021-24074
2021-02-25 23:15:14
CVE-2021-24086
2021-02-25 23:15:15
cve
cve
CVE-2021-24094
2021-02-25 23:15:15
CVE-2021-24074
2021-02-25 23:15:14
CVE-2021-24086
2021-02-25 23:15:15
prion
prion
Remote code execution
2021-02-25 23:15:00
Denial of service
2021-02-25 23:15:00
Remote code execution
2021-02-25 23:15:00
seebug
seebug
Windows TCP/IP 拒绝服务漏洞(CVE-2021-24086)
2021-04-08 00:00:00
mskb
mskb
February 9, 2021—KB4601366 (Security-only update)
2021-02-09 08:00:00
February 9, 2021—KB4601360 (Monthly Rollup)
2021-02-09 08:00:00
February 9, 2021—KB4601363 (Security-only update)
2021-02-09 08:00:00
nessus
nessus
KB4601366: Windows Server 2008 February 2021 Security Update
2021-02-09 00:00:00
KB4601363: Windows 7 and Windows Server 2008 R2 February 2021 Security Update
2021-02-09 00:00:00
KB4601357: Windows Server 2012 February 2021 Security Update
2021-02-09 00:00:00
thn
thn
Microsoft Issues Patches for In-the-Wild 0-day and 55 Others Windows Bugs
2021-02-10 04:44:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4601347)
2021-02-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4601348)
2021-02-10 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4601384)
2021-02-10 00:00:00
securelist
securelist
Kaspersky Security Bulletin 2020-2021. EU statistics
2021-05-26 10:00:32
IT threat evolution Q1 2021. Non-mobile statistics
2021-05-31 10:00:05
malwarebytes
malwarebytes
Big Patch Tuesday: Microsoft and Adobe fix in-the-wild exploits
2021-02-10 17:26:33
kaspersky
kaspersky
KLA12075 Multiple vulnerabilities in Microsoft Products (ESU)
2021-02-09 00:00:00
KLA12071 Multiple vulnerabilities in Microsoft Windows
2021-02-09 00:00:00
avleonov
avleonov
Vulristics: Microsoft Patch Tuesdays Q1 2021
2021-03-26 02:47:52
threatpost
threatpost
Actively Exploited Windows Kernel Bug Allows Takeover
2021-02-09 22:33:08
rapid7blog
rapid7blog
Patch Tuesday - February 2021
2021-02-09 23:51:27

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.035

Percentile

91.7%

JSON
Related for MSRC:9050B952753E7892309AACE8E5768F59
mscve3msrc3githubexploit3trellix2attackerkb3qualysblog1cvelist3nvd3cve3prion3seebug1mskb14nessus10thn1openvas9securelist2malwarebytes1kaspersky2avleonov1threatpost1rapid7blog1