1. Home
  2. Vulnerabilities
  3. CVE-2021-31955

CVE-2021-31955

CVSS v3.1 5.5 (Medium)
55% Progress
CVSS v2.0 2.1 (Low)
21% Progress
EPSS 1.04 % (84th)
1.04% Progress
Affected Products 8
Advisories 2
NVD Status Analyzed
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

Windows Kernel Information Disclosure Vulnerability

Weaknesses
CWE-497
Exposure of Sensitive System Information to an Unauthorized Control Sphere
CWE-NVD-noinfo
CVE Status
PUBLISHED
NVD Status
Analyzed
CNA
Microsoft Corporation
Published Date
2021-06-08 23:15:08
(3 years ago)
Updated Date
2024-07-29 17:34:00
(7 weeks ago)
Microsoft Windows Kernel Information Disclosure Vulnerability (CISA - Known Exploited Vulnerabilities Catalog)
Description
Microsoft Windows Kernel contains an unspecified vulnerability that allows for information disclosure. Successful exploitation allows attackers to read the contents of kernel memory from a user-mode process.
Required Action
Apply updates per vendor instructions.
Known to be Used in Ransomware Campaigns
Unknown
Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-31955
Vendor
Microsoft
Product
Windows
In CISA Catalog from
2021-11-03
(2 years ago)
Due Date
2021-11-17
(2 years ago)

Affected Products

Microsoft

Configuration #1

    CPE23 From Up To
  Microsoft Windows 10 1809 prior 10.0.17763.1999 version cpe:2.3:o:microsoft:windows_10_1809 < 10.0.17763.1999
  Microsoft Windows 10 1909 prior 10.0.18363.1621 version cpe:2.3:o:microsoft:windows_10_1909 < 10.0.18363.1621
  Microsoft Windows 10 2004 prior 10.0.19041.1052 version cpe:2.3:o:microsoft:windows_10_2004 < 10.0.19041.1052
  Microsoft Windows 10 20h2 prior 10.0.19042.1052 version cpe:2.3:o:microsoft:windows_10_20h2 < 10.0.19042.1052
  Microsoft Windows 10 21h1 prior 10.0.19043.1052 version cpe:2.3:o:microsoft:windows_10_21h1 < 10.0.19043.1052
  Microsoft Windows Server 2004 prior 10.0.19041.1052 version cpe:2.3:o:microsoft:windows_server_2004 < 10.0.19041.1052
  Microsoft Windows Server 2019 prior 10.0.17763.1999 version cpe:2.3:o:microsoft:windows_server_2019 < 10.0.17763.1999
  Microsoft Windows Server 20h2 prior 10.0.19042.1052 version cpe:2.3:o:microsoft:windows_server_20h2 < 10.0.19042.1052