CVE-2021-26414medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
Windows DCOM Server Security Feature Bypass
References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26414
Details
Source: MITRE
Published: 2021-06-08
Updated: 2021-06-17
Type: NVD-CWE-noinfo
Risk Information
CVSS v2
Base Score: 4.3
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Impact Score: 2.9
Exploitability Score: 8.6
Severity: MEDIUM
CVSS v3
Base Score: 6.5
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Impact Score: 3.6
Exploitability Score: 2.8
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 150374 | KB5003646: Windows 10 version 1809 / Windows Server 2019 Security Update (June 2021) | Nessus | Windows : Microsoft Bulletins | high |
| 150370 | KB5003637: Windows 10 version 2004 / Windows 10 version 20H2 / Windows 10 version 21H1 Security Update (June 2021) | Nessus | Windows : Microsoft Bulletins | high |
| 150369 | KB5003635: Windows 10 version 1909 Security Update (June 2021) | Nessus | Windows : Microsoft Bulletins | high |
| 150368 | KB5003694: Windows Server 2008 R2 Security Update (June 2021) | Nessus | Windows : Microsoft Bulletins | high |
| 150367 | KB5003638: Windows 10 version 1607 / Windows Server 2016 Security Update (June 2021) | Nessus | Windows : Microsoft Bulletins | high |
| 150363 | KB5003697: Windows Server 2012 Security Update (June 2021) | Nessus | Windows : Microsoft Bulletins | high |
| 150357 | KB5003695: Windows Server 2008 Security Update (June 2021) | Nessus | Windows : Microsoft Bulletins | high |
| 150354 | KB5003681: Windows Server 2012 R2 Security Update (June 2021) | Nessus | Windows : Microsoft Bulletins | high |
| 150353 | KB5003687: Windows 10 version 1507 LTS Security Update (June 2021) | Nessus | Windows : Microsoft Bulletins | high |