CVE-2021-1706

HIGH

Description

Windows LUAFV Elevation of Privilege Vulnerability

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1706

Details

Source: MITRE

Published: 2021-01-12

Updated: 2021-01-19

Type: CWE-269

Risk Information

CVSS v2.0

Base Score: 9

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 8

Severity: HIGH

CVSS v3.0

Base Score: 8.8

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 2.8

Severity: HIGH

Tenable Plugins

View all (10 total)

IDNameProductFamilySeverity
144888KB4598275: Windows 8.1 and Windows Server 2012 R2 January 2021 Security UpdateNessusWindows : Microsoft Bulletins
high
144887KB4598230: Windows 10 Version 1809 and Windows Server 2019 January 2021 Security UpdateNessusWindows : Microsoft Bulletins
high
144884KB4598229: Windows 10 Version 1909 January 2021 Security UpdateNessusWindows : Microsoft Bulletins
high
144882KB4598243: Windows 10 Version 1607 and Windows Server 2016 January 2021 Security UpdateNessusWindows : Microsoft Bulletins
high
144881KB4598297: Windows Server 2012 January 2021 Security UpdateNessusWindows : Microsoft Bulletins
high
144880KB4598245: Windows 10 Version 1803 January 2021 Security UpdateNessusWindows : Microsoft Bulletins
high
144878KB4598287: Windows Server 2008 January 2021 Security UpdateNessusWindows : Microsoft Bulletins
high
144877KB4598289: Windows 7 and Windows Server 2008 R2 January 2021 Security UpdateNessusWindows : Microsoft Bulletins
high
144874KB4598242: Windows 10 Version 2004 / Windows 10 Version 20H2 January 2021 Security UpdateNessusWindows : Microsoft Bulletins
high
144873KB4598231: Windows 10 January 2021 Security UpdateNessusWindows : Microsoft Bulletins
high