CVE-2021-27091
published 2021-04-13CVE-2021-27091: RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_7 | >= 6.1.0 < publication | publication |
| microsoft | windows_7_service_pack_1 | >= 6.1.0 < publication | publication |
| microsoft | windows_server_2008 | — | — |
| microsoft | windows_server_2008_r2_service_pack_1 | >= 6.0.0 < publication | publication |
| microsoft | windows_server_2008_r2_service_pack_1 | >= 6.1.0 < publication | publication |
| microsoft | windows_server_2012 | >= 6.2.0 < publication | publication |
| msrc | windows_7_for_32-bit_systems_service_pack_1 | — | — |
| msrc | windows_7_for_x64-based_systems_service_pack_1 | — | — |
| msrc | windows_server_2008_r2_for_x64-based_systems_service_pack_1 | — | — |
| msrc | windows_server_2012 | — | — |
GHSA
GHSA-vcr7-q7v7-v84f: RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
ghsa_unreviewed·2022-05-24
CVE-2021-27091 [HIGH] CWE-269 GHSA-vcr7-q7v7-v84f: RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
Microsoft
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
vendor_msrc·2021-04-13·CVSS 7.8
CVE-2021-27091 [HIGH] RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
Windows Registry: Windows Registry
Microsoft: Microsoft
Impact: Elevation of Privilege
Exploit Status: Publicly Disclosed:Yes;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely;DOS:N/A
Reference: https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5001335
Reference: https://support.microsoft.com/help/5001335
Reference: https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5001392
Reference: https://support.microsoft.com/help/5001392
Reference: https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5001387
Reference: https://support.microsoft.com/help/5001387
Reference: https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB500138
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2021-04-13
Published