CVE-2021-40449 – Microsoft / Windows – Privilege escalation

October 13, 2021

CVE-2021-40449 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC) was not observed publicly or in the underground. Microsoft claimed to be aware of the vulnerability being actively exploited in the wild.

Summary:

CVE-2021-40449 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC) was not observed publicly or in the underground. Microsoft claimed to be aware of the vulnerability being actively exploited in the wild.

PoC Links(if available):

Microsoft exploitation information –
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40449

Known Counter Measures:

Microsoft addressed the vulnerability in a security update.

Links to patches(if available)

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40449

You may have missed

image

[HUNTERS] – Ransomware Victim: A&O IT Group

November 15, 2024
image

[RANSOMHUB] – Ransomware Victim: www[.]gob[.]mx

November 15, 2024
image

[EVEREST] – Ransomware Victim: Bio-Clima Service Srl

November 15, 2024
image

[FOG] – Ransomware Victim: Vector Transport (vectortransport[.]com)

November 15, 2024
image

[EVEREST] – Ransomware Victim: A Sensitive Touch Home Health;Alphastar Home Health Care;Heart of Texas Home Healthcare Se

November 15, 2024