Details of VAR-202109-1575

ID

VAR-202109-1575

CVE

CVE-2021-36955

TITLE

plural Microsoft Windows Elevated authority vulnerabilities in products

Trust: 0.8

sources: JVNDB: JVNDB-2021-002697

DESCRIPTION

Windows Common Log File System Driver Elevation of Privilege Vulnerability. This vulnerability is CVE-2021-36963 and CVE-2021-38633 Is a different vulnerability.You may be elevated. Pillow is a Python-based image processing library. There is currently no information about this vulnerability, please feel free to follow CNNVD or manufacturer announcements. Microsoft Windows是美国微软（Microsoft）公司的一套个人设备使用的操作系统. microsoft Windows Common Log File System Driver存在权限许可和访问控制问题漏洞。以下产品和版本受到影响：Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based Systems,Windows 10 Version 1809 for ARM64-based Systems,Windows Server 2019,Windows Server 2019 (Server Core installation),Windows 10 Version 1909 for 32-bit Systems,Windows 10 Version 1909 for x64-based Systems,Windows 10 Version 1909 for ARM64-based Systems,Windows 10 Version 21H1 for x64-based Systems,Windows 10 Version 21H1 for ARM64-based Systems,Windows 10 Version 21H1 for 32-bit Systems,Windows Server 2022,Windows Server 2022 (Server Core installation),Windows Server 2012 R2 (Server Core installation),Windows Server 2008 for x64-based Systems Service Pack 2,Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation),Windows Server 2008 R2 for x64-based Systems Service Pack 1,Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation),Windows Server 2012,Windows Server 2016,Windows Server 2016 (Server Core installation),Windows 7 for 32-bit Systems Service Pack 1,Windows 7 for x64-based Systems Service Pack 1,Windows 8.1 for 32-bit systems,Windows 10 Version 2004 for 32-bit Systems,Windows 10 Version 2004 for ARM64-based Systems,Windows 10 Version 2004 for x64-based Systems,Windows Server, version 2004 (Server Core installation),Windows 10 Version 20H2 for x64-based Systems,Windows 10 Version 20H2 for 32-bit Systems,Windows 10 Version 20H2 for ARM64-based Systems,Windows Server, version 20H2 (Server Core Installation),Windows 10 for 32-bit Systems,Windows 10 for x64-based Systems,Windows 10 Version 1607 for 32-bit Systems,Windows 10 Version 1607 for x64-based Systems,Windows 8.1 for x64-based systems,Windows RT 8.1,Windows Server 2008 for 32-bit Systems Service Pack 2,Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation),Windows Server 2012 (Server Core installation),Windows Server 2012 R2

Trust: 2.79

sources: NVD: CVE-2021-36955 // JVNDB: JVNDB-2021-002697 // CNNVD: CNNVD-202104-975 // CNNVD: CNNVD-202109-881 // VULMON: CVE-2021-36955

AFFECTED PRODUCTS

vendor:	microsoft	model:	windows 7	scope:	eq	version:	-	Trust: 1.0
vendor:	microsoft	model:	windows server 2008	scope:	eq	version:	r2	Trust: 1.0
vendor:	microsoft	model:	windows 10 1909	scope:	lt	version:	10.0.18363.1801	Trust: 1.0
vendor:	microsoft	model:	windows 10 1607	scope:	lt	version:	10.0.14393.4651	Trust: 1.0
vendor:	microsoft	model:	windows 10 2004	scope:	lt	version:	10.0.19041.1237	Trust: 1.0
vendor:	microsoft	model:	windows 10 1507	scope:	lt	version:	10.0.10240.19060	Trust: 1.0
vendor:	microsoft	model:	windows rt 8.1	scope:	eq	version:	-	Trust: 1.0
vendor:	microsoft	model:	windows server 2008	scope:	eq	version:	-	Trust: 1.0
vendor:	microsoft	model:	windows server 2012	scope:	eq	version:	-	Trust: 1.0
vendor:	microsoft	model:	windows server 2019	scope:	lt	version:	10.0.17763.2183	Trust: 1.0
vendor:	microsoft	model:	windows server 2022	scope:	lt	version:	10.0.20348.230	Trust: 1.0
vendor:	microsoft	model:	windows server 20h2	scope:	lt	version:	10.0.19042.1237	Trust: 1.0
vendor:	microsoft	model:	windows 10 21h1	scope:	lt	version:	10.0.19043.1237	Trust: 1.0
vendor:	microsoft	model:	windows server 2004	scope:	lt	version:	10.0.19041.1237	Trust: 1.0
vendor:	microsoft	model:	windows server 2016	scope:	lt	version:	10.0.14393.4651	Trust: 1.0
vendor:	microsoft	model:	windows 10 20h2	scope:	lt	version:	10.0.19042.1237	Trust: 1.0
vendor:	microsoft	model:	windows 10 1809	scope:	lt	version:	10.0.17763.2183	Trust: 1.0
vendor:	microsoft	model:	windows 8.1	scope:	eq	version:	-	Trust: 1.0
vendor:	マイクロソフト	model:	microsoft windows server 2012	scope:	-	version:	-	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server 2008	scope:	-	version:	-	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2012 r2 (server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2022 (server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows rt 8.1	scope:	-	version:	-	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2012 (server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2008 for 32-bit systems sp2 (server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows 8.1	scope:	-	version:	-	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2022	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2019	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	20h2 (server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2008 for x64-based systems sp2	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2016	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows 7	scope:	-	version:	-	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server 2022	scope:	eq	version:	-	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2008 for x64-based systems sp2 (server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2008 r2 for x64-based systems sp1 (server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2012	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2008 for 32-bit systems sp2	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server 2019	scope:	-	version:	-	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2012 r2	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2004 (server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server 2016	scope:	-	version:	-	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2016 (server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows 10	scope:	-	version:	-	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server 2022	scope:	eq	version:	(server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2019 (server core installation)	Trust: 0.8
vendor:	マイクロソフト	model:	microsoft windows server	scope:	eq	version:	2008 r2 for x64-based systems sp1	Trust: 0.8

sources: JVNDB: JVNDB-2021-002697 // NVD: CVE-2021-36955

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2021-36955
value:	HIGH
Trust: 1.8
secure@microsoft.com:	CVE-2021-36955
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-202104-975
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-202109-881
value:	HIGH
Trust: 0.6
VULMON:	CVE-2021-36955
value:	MEDIUM
Trust: 0.1

NVD:
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	FALSE
obtainAllPrivilege:	FALSE
obtainUserPrivilege:	FALSE
obtainOtherPrivilege:	FALSE
userInteractionRequired:	FALSE
version:	2.0
Trust: 1.0
NVD:	CVE-2021-36955
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.9

NVD:
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.1
Trust: 2.0
NVD:	CVE-2021-36955
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULMON: CVE-2021-36955 // JVNDB: JVNDB-2021-002697 // CNNVD: CNNVD-202104-975 // CNNVD: CNNVD-202109-881 // NVD: CVE-2021-36955 // NVD: CVE-2021-36955

PROBLEMTYPE DATA

problemtype:	NVD-CWE-noinfo	Trust: 1.0
problemtype:	Improper authority management (CWE-269) [NVD Evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2021-002697 // NVD: CVE-2021-36955

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202109-881

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-202104-975

CONFIGURATIONS

sources: NVD: CVE-2021-36955

PATCH

title:	Windows Common Log File System Driver Elevation of Privilege Vulnerability Security Update Guide	url:	https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2021-36955	Trust: 0.8
title:	Multiple Microsoft Product Privilege License and Access Control Issue Vulnerability Fixes	url:	http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=162413	Trust: 0.6
title:	CVE-2021-36955-EXP	url:	https://github.com/jiajinrong12138/cve-2021-36955-exp	Trust: 0.1
title:	Contents	url:	https://github.com/hktalent/bug-bounty	Trust: 0.1
title:	Known Exploited Vulnerabilities Detector	url:	https://github.com/ostorlab/kev	Trust: 0.1
title:	The Register	url:	https://www.theregister.co.uk/2021/09/15/microsoft_patch_tuesday/	Trust: 0.1
title:	The Register	url:	https://www.theregister.co.uk/2021/09/15/microsoft_endofsummer_cleanse_crushes_more/	Trust: 0.1
title:	Threatpost	url:	https://threatpost.com/microsoft-patch-tuesday-exploited-windows-zero-day/169459/	Trust: 0.1

sources: VULMON: CVE-2021-36955 // JVNDB: JVNDB-2021-002697 // CNNVD: CNNVD-202109-881

EXTERNAL IDS

db:	NVD	id:	CVE-2021-36955	Trust: 2.5
db:	JVNDB	id:	JVNDB-2021-002697	Trust: 0.8
db:	CS-HELP	id:	SB2021041363	Trust: 0.6
db:	CNNVD	id:	CNNVD-202104-975	Trust: 0.6
db:	CS-HELP	id:	SB2021091435	Trust: 0.6
db:	CNNVD	id:	CNNVD-202109-881	Trust: 0.6
db:	VULMON	id:	CVE-2021-36955	Trust: 0.1

sources: VULMON: CVE-2021-36955 // JVNDB: JVNDB-2021-002697 // CNNVD: CNNVD-202104-975 // CNNVD: CNNVD-202109-881 // NVD: CVE-2021-36955

REFERENCES

url:	https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2021-36955	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2021-36955	Trust: 0.8
url:	https://www.ipa.go.jp/security/ciadr/vul/20210915-ms.html	Trust: 0.8
url:	https://www.jpcert.or.jp/at/2021/at210041.html	Trust: 0.8
url:	https://www.cybersecurity-help.cz/vdb/sb2021041363	Trust: 0.6
url:	https://www.cybersecurity-help.cz/vdb/sb2021091435	Trust: 0.6
url:	https://vigilance.fr/vulnerability/microsoft-windows-vulnerabilities-of-september-2021-36413	Trust: 0.6
url:	https://msrc.microsoft.com/update-guide/vulnerability/cve-2021-36955	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://github.com/jiajinrong12138/cve-2021-36955-exp	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: VULMON: CVE-2021-36955 // JVNDB: JVNDB-2021-002697 // CNNVD: CNNVD-202104-975 // CNNVD: CNNVD-202109-881 // NVD: CVE-2021-36955

SOURCES

db:	VULMON	id:	CVE-2021-36955
db:	JVNDB	id:	JVNDB-2021-002697
db:	CNNVD	id:	CNNVD-202104-975
db:	CNNVD	id:	CNNVD-202109-881
db:	NVD	id:	CVE-2021-36955

LAST UPDATE DATE

2024-07-30T20:32:45.804000+00:00

SOURCES UPDATE DATE

db:	VULMON	id:	CVE-2021-36955	date:	2023-12-28T00:00:00
db:	JVNDB	id:	JVNDB-2021-002697	date:	2021-09-29T06:47:00
db:	CNNVD	id:	CNNVD-202104-975	date:	2021-04-14T00:00:00
db:	CNNVD	id:	CNNVD-202109-881	date:	2021-09-26T00:00:00
db:	NVD	id:	CVE-2021-36955	date:	2024-07-29T19:42:48.337

SOURCES RELEASE DATE

db:	VULMON	id:	CVE-2021-36955	date:	2021-09-15T00:00:00
db:	JVNDB	id:	JVNDB-2021-002697	date:	2021-09-29T00:00:00
db:	CNNVD	id:	CNNVD-202104-975	date:	2021-04-13T00:00:00
db:	CNNVD	id:	CNNVD-202109-881	date:	2021-09-14T00:00:00
db:	NVD	id:	CVE-2021-36955	date:	2021-09-15T12:15:13.197