CVE-2021-36954

HIGH8.8JSON export Create alert

Description

Windows Bind Filter Driver Elevation of Privilege Vulnerability

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

E

Unchanged

RL

O

RC

Changed

Affected products

Microsoft / windows_10_180910.0.17763.2183 – 10.0.17763.2183
Microsoft / windows_10_180910.0.19041.1237 – 10.0.19041.1237
Microsoft / windows_10_180910.0.18363.1801 – 10.0.18363.1801
Microsoft / windows_10_180910.0.17763.2183 – 10.0.17763.2183
Microsoft / windows_10_180910.0.17763.2183 – 10.0.17763.2183
Microsoft / windows_10_190910.0.18363.1801 – 10.0.18363.1801
Microsoft / windows_10_190910.0.18363.1801 – 10.0.18363.1801
Microsoft / windows_10_20H210.0.19042.1237 – 10.0.19042.1237
Microsoft / windows_10_20H210.0.19042.1237 – 10.0.19042.1237
Microsoft / windows_10_21H110.0.19043.1237 – 10.0.19043.1237
Microsoft / windows_10_21H110.0.19043.1237 – 10.0.19043.1237
Microsoft / windows_10_21H110.0.19043.1237 – 10.0.19043.1237
Microsoft / windows_server_200410.0.19041.1237 – 10.0.19041.1237
Microsoft / Windows Server 201910.0.17763.2183 – 10.0.17763.2183
Microsoft / Windows Server 202210.0.20348.230 – 10.0.20348.230
Microsoft / windows_server_20H210.0.19042.1237 – 10.0.19042.1237

References

VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36954