Kaspersky Threats

Описание

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, spoof user interface, obtain sensitive information, bypass security restrictions, cause denial of service.

Below is a complete list of vulnerabilities:

A remote code execution vulnerability in Hyper-V can be exploited remotely to execute arbitrary code.
An elevation of privilege vulnerability in Windows Graphics Component can be exploited remotely to gain privileges.
A spoofing vulnerability in Windows Wireless Networking can be exploited remotely to spoof user interface.
A remote code execution vulnerability in HTTP Protocol Stack can be exploited remotely to execute arbitrary code.
A remote code execution vulnerability in Windows Media Foundation Core can be exploited remotely to execute arbitrary code.
An information disclosure vulnerability in Microsoft Windows Infrared Data Association (IrDA) can be exploited remotely to obtain sensitive information.
A remote code execution vulnerability in Web Media Extensions can be exploited remotely to execute arbitrary code.
An elevation of privilege vulnerability in Windows Container Manager Service can be exploited remotely to gain privileges.
An information disclosure vulnerability in Windows Projected File System FS Filter Driver can be exploited remotely to obtain sensitive information.
A security feature bypass vulnerability in Windows SMB Client can be exploited remotely to bypass security restrictions.
An elevation of privilege vulnerability in Windows WalletService can be exploited remotely to gain privileges.
An elevation of privilege vulnerability in Windows SSDP Service can be exploited remotely to gain privileges.
A remote code execution vulnerability in Microsoft Jet Red Database Engine and Access Connectivity Engine can be exploited remotely to execute arbitrary code.
An information disclosure vulnerability in Windows Remote Desktop Protocol (RDP) can be exploited remotely to obtain sensitive information.
An elevation of privilege vulnerability in Windows Container Isolation FS Filter Driver can be exploited remotely to gain privileges.
A spoofing vulnerability in Microsoft Bluetooth Driver can be exploited remotely to spoof user interface.
A denial of service vulnerability in Windows Desktop Bridge can be exploited remotely to cause denial of service.
An information disclosure vulnerability in Windows CSC Service can be exploited remotely to obtain sensitive information.
A remote code execution vulnerability in OLE Automation can be exploited remotely to execute arbitrary code.
An information disclosure vulnerability in Windows Wireless Networking can be exploited remotely to obtain sensitive information.

Первичный источник обнаружения

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

Список CVE

CVE-2021-28476
critical
CVE-2021-31188
critical
CVE-2021-31186
high
CVE-2020-24588
warning
CVE-2021-31184
high
CVE-2021-31182
high
CVE-2020-26144
high
CVE-2021-31193
critical
CVE-2021-28455
critical
CVE-2021-31194
critical
CVE-2020-24587
warning
CVE-2021-31166
critical
CVE-2021-31192
critical
CVE-2021-28465
critical
CVE-2021-31167
critical
CVE-2021-31191
high
CVE-2021-31205
high
CVE-2021-31208
critical
CVE-2021-31187
critical
CVE-2021-31165
critical
CVE-2021-31190
critical
CVE-2021-31185
high
CVE-2021-28479
high
CVE-2021-31168
critical
CVE-2021-31169
critical
CVE-2021-31170
critical

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!