1. Home
  2. Vulnerabilities
  3. CVE-2021-40450

CVE-2021-40450

CVSS v3.1 7.8 (High)
78% Progress
CVSS v2.0 4.6 (Medium)
46% Progress
EPSS 0.07 % (32th)
0.07% Progress
Affected Products 10
Advisories 2
NVD Status Analyzed
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

Win32k Elevation of Privilege Vulnerability

Weaknesses
CWE-NVD-noinfo
CVE Status
PUBLISHED
NVD Status
Analyzed
CNA
Microsoft Corporation
Published Date
2021-10-13 01:15:09
(2 years ago)
Updated Date
2024-07-02 17:03:33
(2 months ago)
Microsoft Win32k Privilege Escalation Vulnerability (CISA - Known Exploited Vulnerabilities Catalog)
Description
Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
Required Action
Apply updates per vendor instructions.
Known to be Used in Ransomware Campaigns
Unknown
Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-40450
Vendor
Microsoft
Product
Win32k
In CISA Catalog from
2022-04-25
(2 years ago)
Due Date
2022-05-16
(2 years ago)

Affected Products

Microsoft

Configuration #1

    CPE23 From Up To
  Microsoft Windows 10 1809 prior 10.0.17763.2237 version cpe:2.3:o:microsoft:windows_10_1809 < 10.0.17763.2237
  Microsoft Windows 10 1909 prior 10.0.18363.1854 version cpe:2.3:o:microsoft:windows_10_1909 < 10.0.18363.1854
  Microsoft Windows 10 2004 prior 10.0.19041.1288 version cpe:2.3:o:microsoft:windows_10_2004 < 10.0.19041.1288
  Microsoft Windows 10 20h2 prior 10.0.19042.1288 version cpe:2.3:o:microsoft:windows_10_20h2 < 10.0.19042.1288
  Microsoft Windows 10 21h1 prior 10.0.19043.1288 version cpe:2.3:o:microsoft:windows_10_21h1 < 10.0.19043.1288
  Microsoft Windows 11 21h2 prior 10.0.22000.258 version cpe:2.3:o:microsoft:windows_11_21h2 < 10.0.22000.258
  Microsoft Windows Server 2004 prior 10.0.19041.1288 version cpe:2.3:o:microsoft:windows_server_2004 < 10.0.19041.1288
  Microsoft Windows Server 2019 prior 10.0.17763.2237 version cpe:2.3:o:microsoft:windows_server_2019 < 10.0.17763.2237
  Microsoft Windows Server 2022 prior 10.0.20348.288 version cpe:2.3:o:microsoft:windows_server_2022 < 10.0.20348.288
  Microsoft Windows Server 20h2 prior 10.0.19042.1288 version cpe:2.3:o:microsoft:windows_server_20h2 < 10.0.19042.1288