Lucene search
HistoryJun 08, 2021 - 11:15 p.m.
CVE-2021-31199
microsoft
cryptographic provider
elevation of privilege
vulnerability
cve-2021-31199
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS3
5.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
EPSS
0.005
Percentile
77.5%
Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability
Affected configurations
Node
microsoftwindows_10_1507Range<10.0.10240.18967
ORmicrosoftwindows_10_1607Range<10.0.14393.4467
ORmicrosoftwindows_10_1809Range<10.0.17763.1999
ORmicrosoftwindows_10_1909Range<10.0.18363.1621
ORmicrosoftwindows_10_2004Range<10.0.19041.1052
ORmicrosoftwindows_10_20h2Range<10.0.19042.1052
ORmicrosoftwindows_10_21h1Range<10.0.19043.1052
ORmicrosoftwindows_7Match-sp1
ORmicrosoftwindows_8.1Match-
ORmicrosoftwindows_rt_8.1Match-
ORmicrosoftwindows_server_2004Range<10.0.19041.1052
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2sp1x64
ORmicrosoftwindows_server_2012Match-
ORmicrosoftwindows_server_2012Matchr2
ORmicrosoftwindows_server_2016Range<10.0.14393.4467
ORmicrosoftwindows_server_2019Range<10.0.17763.1999
ORmicrosoftwindows_server_20h2Range<10.0.19042.1052
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_10_1507 | * | cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1809 | * | cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:* |
| microsoft | windows_10_1909 | * | cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:*:* |
| microsoft | windows_10_2004 | * | cpe:2.3:o:microsoft:windows_10_2004:*:*:*:*:*:*:*:* |
| microsoft | windows_10_20h2 | * | cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:* |
| microsoft | windows_10_21h1 | * | cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:* |
| microsoft | windows_7 | - | cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:* |
| microsoft | windows_8.1 | - | cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:* |
| microsoft | windows_rt_8.1 | - | cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:* |
Related
checkpoint_advisories
checkpoint_advisories
Microsoft Windows rsaenh.dll Elevation of Privilege (CVE-2021-31199)
2021-06-08 00:00:00
prion
prion
Privilege escalation
2021-06-08 23:15:00
cve
cve
CVE-2021-31199
2021-06-08 23:15:08
cisa_kev
cisa_kev
Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability
2021-11-03 00:00:00
cvelist
cvelist
attackerkb
attackerkb
CVE-2021-31199
2021-06-08 00:00:00
mscve
mscve
thn
thn
Microsoft Uncovers Austrian Company Exploiting Windows and Adobe Zero-Day Exploits
2022-07-28 11:18:00
Update Your Windows Computers to Patch 6 New In-the-Wild Zero-Day Bugs
2021-06-09 06:07:00
mssecure
mssecure
mmpc
mmpc
krebs
krebs
Microsoft Patches Six Zero-Day Security Holes
2021-06-08 20:53:28
mskb
mskb
June 8, 2021βKB5003695 (Security-only update)
2021-06-08 07:00:00
June 8, 2021βKB5003694 (Security-only update)
2021-06-08 07:00:00
June 8, 2021βKB5003661 (Monthly Rollup)
2021-06-08 07:00:00
threatpost
threatpost
Microsoft Patch Tuesday Fixes 6 In-The-Wild Exploits
2021-06-08 21:45:12
nessus
nessus
KB5003695: Windows Server 2008 Security Update (June 2021)
2021-06-08 00:00:00
KB5003694: Windows 7 and Windows Server 2008 R2 Security Update (June 2021)
2021-06-08 00:00:00
malwarebytes
malwarebytes
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5003667)
2021-06-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5003671)
2021-06-09 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5003687)
2021-06-10 00:00:00
avleonov
avleonov
Vulristics: Microsoft Patch Tuesdays Q2 2021
2021-07-10 00:14:59
kaspersky
kaspersky
KLA12198 Multiple vulnerabilities in Microsoft Products (ESU)
2021-06-08 00:00:00
KLA12202 Multiple vulnerabilities in Microsoft Windows
2021-06-08 00:00:00
securelist
securelist
IT threat evolution in Q2 2021. PC statistics
2021-08-12 10:00:12
rapid7blog
rapid7blog
Patch Tuesday - June 2021
2021-06-08 10:00:00
qualysblog
qualysblog
Microsoft & Adobe Patch Tuesday (June 2021) β Microsoft 50 Vulnerabilities with 5 Critical, Adobe 21 Critical Vulnerabilities
2021-06-08 21:19:29
Qualys Response to CISA Alert: Binding Operational Directive 22-01
2021-11-09 06:15:01
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
googleprojectzero
googleprojectzero
The More You Know, The More You Know You Donβt Know
2022-04-19 00:00:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
CVSS3
5.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
EPSS
0.005
Percentile
77.5%
Related for NVD:CVE-2021-31199