Jun 2021: Windows Kernel Information Disclosure Vulnerability
CVE-2021-31955 Published on June 8, 2021
Windows Kernel Information Disclosure Vulnerability
Windows Kernel Information Disclosure Vulnerability
Known Exploited Vulnerability
This Microsoft Windows Kernel Information Disclosure Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Windows Kernel Information Disclosure Vulnerability.
The following remediation steps are recommended / required by November 17, 2021: Apply updates per vendor instructions.
Weakness Type
Exposure of Sensitive System Information to an Unauthorized Control Sphere
The application does not properly prevent sensitive system-level information from being accessed by unauthorized actors who do not have the same level of access to the underlying system as the application does.
Products Associated with CVE-2021-31955
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-31955 are published in these products:
Affected Versions
Microsoft Windows 10 Version 1809:- Version 10.0.0 and below 10.0.17763.1999 is affected.
- Version 10.0.0 and below 10.0.17763.1999 is affected.
- Version 10.0.0 and below 10.0.17763.1999 is affected.
- Version 10.0.0 and below 10.0.18363.1621 is affected.
- Version 10.0.0 and below 10.0.19043.1052 is affected.
- Version 10.0.0 and below 10.0.19041.1052 is affected.
- Version 10.0.0 and below 10.0.19041.1052 is affected.
- Version 10.0.0 and below 10.0.19042.1052 is affected.
- Version 10.0.0 and below 10.0.19042.1052 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.