CVE-2021-40461

HIGH8.0JSON export Create alert

Description

Windows Hyper-V Remote Code Execution Vulnerability

CVSS breakdown

CVSS 3.1

Attack Vector

Adjacent

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

E

Unchanged

RL

O

RC

Changed

Affected products

Microsoft / windows_10_180910.0.19041.1288 – 10.0.19041.1288
Microsoft / windows_10_180910.0.17763.2237 – 10.0.17763.2237
Microsoft / windows_10_190910.0.18363.1854 – 10.0.18363.1854
Microsoft / windows_10_21H110.0.19043.1288 – 10.0.19043.1288
Microsoft / windows_11_21H210.0.22000.258 – 10.0.22000.258
Microsoft / windows_server_200410.0.19041.1288 – 10.0.19041.1288
Microsoft / Windows Server 201910.0.17763.2237 – 10.0.17763.2237
Microsoft / Windows Server 202210.0.20348.288 – 10.0.20348.288
Microsoft / windows_server_20H210.0.19042.1288 – 10.0.19042.1288

References

VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40461