CVE-2021-36948
published 2021-08-12CVE-2021-36948: Windows Update Medic Service Elevation of Privilege Vulnerability
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2021-11-17
Exploited in the wild
Windows Update Medic Service Elevation of Privilege Vulnerability
Affected
34 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_10_1809 | < 10.0.17763.2114 | 10.0.17763.2114 |
| microsoft | windows_10_1909 | < 10.0.18363.1734 | 10.0.18363.1734 |
| microsoft | windows_10_2004 | < 10.0.19041.1165 | 10.0.19041.1165 |
| microsoft | windows_10_20h2 | < 10.0.19042.1165 | 10.0.19042.1165 |
| microsoft | windows_10_21h1 | < 10.0.19043.1165 | 10.0.19043.1165 |
| microsoft | windows_10_version_1809 | >= 10.0.0 < 10.0.17763.2114 | 10.0.17763.2114 |
| microsoft | windows_10_version_1909 | >= 10.0.0 < 10.0.18363.1734 | 10.0.18363.1734 |
| microsoft | windows_10_version_2004 | >= 10.0.0 < 10.0.19041.1165 | 10.0.19041.1165 |
| microsoft | windows_10_version_20h2 | >= 10.0.0 < 10.0.19042.1165 | 10.0.19042.1165 |
| microsoft | windows_10_version_21h1 | >= 10.0.0 < 10.0.19043.1165 | 10.0.19043.1165 |
| microsoft | windows_server_2004 | < 10.0.19041.1165 | 10.0.19041.1165 |
| microsoft | windows_server_2019 | < 10.0.17763.2114 | 10.0.17763.2114 |
| microsoft | windows_server_2019 | >= 10.0.0 < 10.0.17763.2114 | 10.0.17763.2114 |
| microsoft | windows_server_20h2 | < 10.0.19042.1165 | 10.0.19042.1165 |
| microsoft | windows_server_version_2004 | >= 10.0.0 < 10.0.19041.1165 | 10.0.19041.1165 |
| microsoft | windows_server_version_20h2 | >= 10.0.0 < 10.0.19042.1165 | 10.0.19042.1165 |
| msrc | windows_10_version_1809_for_32-bit_systems | — | — |
| msrc | windows_10_version_1809_for_arm64-based_systems | — | — |
| msrc | windows_10_version_1809_for_x64-based_systems | — | — |
| msrc | windows_10_version_1909_for_32-bit_systems | — | — |
| msrc | windows_10_version_1909_for_arm64-based_systems | — | — |
| msrc | windows_10_version_1909_for_x64-based_systems | — | — |
| msrc | windows_10_version_2004_for_32-bit_systems | — | — |
| msrc | windows_10_version_2004_for_arm64-based_systems | — | — |
| msrc | windows_10_version_2004_for_x64-based_systems | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vulncheck7.8HIGH
cisa7.8HIGH