CVE-2021-43247

HIGH7.8JSON export Create alert

Description

Windows TCP/IP Driver Elevation of Privilege Vulnerability

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

E

Unchanged

RL

O

RC

Changed

Affected products

Microsoft / windows_10_180910.0.19041.1415 – 10.0.19041.1415
Microsoft / windows_10_180910.0.17763.2366 – 10.0.17763.2366
Microsoft / windows_10_180910.0.17763.2366 – 10.0.17763.2366
Microsoft / windows_10_180910.0.17763.2366 – 10.0.17763.2366
Microsoft / windows_10_180910.0.18363.1977 – 10.0.18363.1977
Microsoft / windows_10_190910.0.18363.1977 – 10.0.18363.1977
Microsoft / windows_10_190910.0.18363.1977 – 10.0.18363.1977
Microsoft / windows_10_20H210.0.19042.1415 – 10.0.19042.1415
Microsoft / windows_10_20H210.0.19042.1415 – 10.0.19042.1415
Microsoft / windows_10_21H110.0.19043.1415 – 10.0.19043.1415
Microsoft / windows_10_21H110.0.19043.1415 – 10.0.19043.1415
Microsoft / windows_10_21H110.0.19043.1415 – 10.0.19043.1415
Microsoft / windows_10_21H210.0.19044.1415 – 10.0.19044.1415
Microsoft / windows_10_21H210.0.19044.1415 – 10.0.19044.1415
Microsoft / windows_10_21H210.0.19044.1415 – 10.0.19044.1415
Microsoft / windows_11_21H210.0.22000.376 – 10.0.22000.376
Microsoft / windows_11_21H210.0.22000.376 – 10.0.22000.376
Microsoft / windows_server_200410.0.19041.1415 – 10.0.19041.1415
Microsoft / Windows Server 201910.0.17763.2366 – 10.0.17763.2366
Microsoft / Windows Server 202210.0.20348.405 – 10.0.20348.405
Microsoft / windows_server_20H210.0.19042.1415 – 10.0.19042.1415

References

VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43247
VENDOR_ADVISORYhttps://www.zerodayinitiative.com/advisories/ZDI-21-1554/