CVE-2021-34527

Опубликовано: 02 июл. 2021

Источник: nvd

CVSS3: 8.8

CVSS2: 9

EPSS Критический

Описание

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

UPDATE July 7, 2021: The security update for Windows Server 2012, Windows Server 2016 and Windows 10, Version 1607 have been released. Please see the Security Updates table for the applicable update for your system. We recommend that you install these updates immediately. If you are unable to install these updates, see the FAQ and Workaround sections in this CVE for information on how to help protect your system from this vulnerability.

In addition to installing the updates, in order to secure your system, you must confirm that the following registry settings are set to 0 (zero) or are not defined (Note

Ссылки

http://packetstormsecurity.com/files/167261/Print-Spooler-Remote-DLL-Injection.html
Exploit
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34527
Mitigation
Patch
Vendor Advisory
http://packetstormsecurity.com/files/167261/Print-Spooler-Remote-DLL-Injection.html
Exploit
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34527
Mitigation
Patch
Vendor Advisory
https://www.vicarius.io/vsociety/posts/cve-2021-34527-printnightmare-detection-script
Exploit
Third Party Advisory
https://www.vicarius.io/vsociety/posts/cve-2021-34527-printnightmare-mitigation-script
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:*:*

Версия до 10.0.10240.18969 (исключая)

cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:*:*

Версия до 10.0.14393.4470 (исключая)

cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*

Версия до 10.0.17763.2029 (исключая)

cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:*:*

Версия до 10.0.19042.1083 (исключая)

cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*

Версия до 10.0.19044.1415 (исключая)

cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*

Версия до 10.0.19045.2251 (исключая)

cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*

Версия до 10.0.22000.318 (исключая)

cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*

Версия до 10.0.22621.674 (исключая)

cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*

cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*

Версия до 10.0.14393.4470 (исключая)

cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*

Версия до 10.0.17763.2029 (исключая)

cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*

Версия до 10.0.20348.230 (исключая)

cpe:2.3:o:microsoft:windows_server_20h2:*:*:*:*:*:*:*:*

Версия до 10.0.19042.1083 (исключая)

EPSS

Процентиль: 100%

0.94265

Критический

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-75f9-mm5v-2rgm

CVSS3: 8.8

github

около 3 лет назад

Windows Print Spooler Remote Code Execution Vulnerability

CVE-2021-1675

CVSS3: 7.8

msrc

около 4 лет назад

Windows Print Spooler Remote Code Execution Vulnerability

BDU:2021-03578

CVSS3: 8.8

fstec

почти 4 года назад

Уязвимость диспетчера очереди печати Windows Print Spooler операционных систем Windows, позволяющая нарушителю выполнить произвольный код

CVE-2021-34527

CVSS3: 8.8

msrc

почти 4 года назад

Windows Print Spooler Remote Code Execution Vulnerability

EPSS

Процентиль: 100%

0.94265

Критический

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

NVD-CWE-noinfo