CVE-2021-1670Sensitive Information Exposure in Microsoft Windows 10 Version 2004

CWE-200Sensitive Information ExposureCWE-476NULL Pointer Dereference7 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.5%
top 32.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Microsoft Windows 10 Version 2004Microsoft Windows 10 Version 20h2Microsoft Windows Server Version 2004+3 more
Timeline
PublishedJan 12
Latest updateMay 21

Description

Windows Projected File System FS Filter Driver Information Disclosure Vulnerability

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages6 packages

CVEListV5microsoft/windows_10_version_200410.0.0publication
CVEListV5microsoft/windows_10_version_20h210.0.0publication
CVEListV5microsoft/windows_server_version_200410.0.0publication
CVEListV5microsoft/windows_server_version_20h210.0.0publication
NVDmicrosoft/windows2004, 20h2+1

🔴Vulnerability Details

4
GHSA
GHSA-vwqx-6jjv-7xr6: Windows Projected File System FS Filter Driver Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-1663, CVE-2021-16722022-05-24
GHSA
GHSA-w9m8-m2vw-mpxf: Windows Projected File System FS Filter Driver Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-1670, CVE-2021-16722022-05-24
GHSA
GHSA-wgvg-578m-gp2m: Windows Projected File System FS Filter Driver Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-1663, CVE-2021-16702022-05-24
CVEList
Windows Projected File System FS Filter Driver Information Disclosure Vulnerability2021-01-12

📋Vendor Advisories

2
Red Hat
kernel: jfs: fix GPF in diFree2024-05-21
Microsoft
Windows Projected File System FS Filter Driver Information Disclosure Vulnerability2021-01-12
CVE-2021-1670 — Sensitive Information Exposure | cvebase