Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2021-43217
HistoryDec 15, 2021 - 3:15 p.m.

CVE-2021-43217

2021-12-1515:15:00
NVD-CWE-noinfo
[email protected]
web.nvd.nist.gov
96
In Wild
cve
2021
43217
windows
encrypting file system
efs
remote code execution
vulnerability
nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.028 Low

EPSS

Percentile

90.6%

JSON

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

VendorProductVersionCPE
microsoftwindows_10_1809*cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*
microsoftwindows_server_2019*cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
microsoftwindows_server_2019*cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
microsoftwindows_10_1909*cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:*:*
microsoftwindows_10_21h1*cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:*
microsoftwindows_server_2022*cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*
microsoftwindows_10_2004*cpe:2.3:o:microsoft:windows_10_2004:*:*:*:*:*:*:*:*
microsoftwindows_server_version_2004*cpe:2.3:o:microsoft:windows_server_version_2004:*:*:*:*:*:*:*:*
microsoftwindows_10_20h2*cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:*
microsoftwindows_server_20h2*cpe:2.3:o:microsoft:windows_server_20h2:*:*:*:*:*:*:*:*
Rows per page:
1-10 of 301

Related

cvelist 1
mscve 1
prion 1
attackerkb 1
rapid7blog 2
qualysblog 1
malwarebytes 1
avleonov 1
thn 1
nessus 11
mskb 15
threatpost 1
openvas 7
kaspersky 2
cvelist
cvelist
CVE-2021-43217 Windows Encrypting File System (EFS) Remote Code Execution Vulnerability
2021-12-15 14:15:07
mscve
mscve
Windows Encrypting File System (EFS) Remote Code Execution Vulnerability
2021-12-14 08:00:00
prion
prion
Remote code execution
2021-12-15 15:15:00
attackerkb
attackerkb
CVE-2021-36942
2021-08-12 00:00:00
rapid7blog
rapid7blog
Dropping Files on a Domain Controller Using CVE-2021-43893
2022-02-14 15:30:52
Patch Tuesday - December 2021
2021-12-14 22:12:53
qualysblog
qualysblog
Microsoft & Adobe Patch Tuesday (December 2021) – Microsoft 83 Vulnerabilities with 7 Critical, 1 Actively Exploited. Adobe 60 Vulnerabilities, 28 critical.
2021-12-14 22:08:33
malwarebytes
malwarebytes
After Log4j, December’s Patch Tuesday has snuck up on us
2021-12-16 10:47:28
avleonov
avleonov
Microsoft Patch Tuesday December 2021
2021-12-16 20:53:37
thn
thn
Microsoft Issues Windows Update to Patch 0-Day Used to Spread Emotet Malware
2021-12-15 07:14:00
nessus
nessus
KB5008271: Windows Server 2008 Security Update (December 2021)
2021-12-14 00:00:00
KB5008282: Windows 7 and Windows Server 2008 R2 Security Update (December 2021)
2021-12-14 00:00:00
KB5008255: Windows Server 2012 Security Update (December 2021)
2021-12-14 00:00:00
mskb
mskb
December 14, 2021—KB5008274 (Monthly Rollup)
2021-12-14 08:00:00
December 14, 2021—KB5008271 (Security-only update)
2021-12-14 08:00:00
December 14, 2021—KB5008244 (Monthly Rollup)
2021-12-14 08:00:00
threatpost
threatpost
Actively Exploited Microsoft Zero-Day Allows App Spoofing, Malware Delivery
2021-12-14 22:21:35
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB5008244)
2021-12-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5008230)
2021-12-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB5008263)
2021-12-15 00:00:00
kaspersky
kaspersky
KLA12388 Multiple vulnerabilities in Microsoft Products (ESU)
2021-12-14 00:00:00
KLA12387 Multiple vulnerabilities in Microsoft Windows
2021-12-14 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.028 Low

EPSS

Percentile

90.6%

JSON
Related for CVE-2021-43217
cvelist1mscve1prion1attackerkb1rapid7blog2qualysblog1malwarebytes1avleonov1thn1nessus11mskb15threatpost1openvas7kaspersky2