Jun 2021: Windows NTFS Elevation of Privilege Vulnerability
CVE-2021-31956 Published on June 8, 2021
Windows NTFS Elevation of Privilege Vulnerability
Windows NTFS Elevation of Privilege Vulnerability
Known Exploited Vulnerability
This Microsoft Windows NTFS Privilege Escalation Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Windows NTFS Privilege Escalation Vulnerability.
The following remediation steps are recommended / required by November 17, 2021: Apply updates per vendor instructions.
Weakness Type
What is an Integer underflow Vulnerability?
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result. This can happen in signed and unsigned cases.
CVE-2021-31956 has been classified to as an Integer underflow vulnerability or weakness.
Products Associated with CVE-2021-31956
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-31956 are published in these products:
Affected Versions
Microsoft Windows 10 Version 1809:- Version 10.0.0 and below 10.0.17763.1999 is affected.
- Version 10.0.0 and below 10.0.17763.1999 is affected.
- Version 10.0.0 and below 10.0.17763.1999 is affected.
- Version 10.0.0 and below 10.0.18363.1621 is affected.
- Version 10.0.0 and below 10.0.19043.1052 is affected.
- Version 10.0.0 and below 10.0.19041.1052 is affected.
- Version 10.0.0 and below 10.0.19041.1052 is affected.
- Version 10.0.0 and below 10.0.19042.1052 is affected.
- Version 10.0.0 and below 10.0.19042.1052 is affected.
- Version 10.0.0 and below 10.0.10240.18967 is affected.
- Version 10.0.0 and below 10.0.14393.4467 is affected.
- Version 10.0.0 and below 10.0.14393.4467 is affected.
- Version 10.0.0 and below 10.0.14393.4467 is affected.
- Version 6.1.0 and below 6.1.7601.25632 is affected.
- Version 6.1.0 and below 6.1.7601.25632 is affected.
- Version 6.3.0 and below 6.3.9600.20045 is affected.
- Version 6.3.0 and below 6.3.9600.20044 is affected.
- Version 6.0.0 and below 6.0.6003.21137 is affected.
- Version 6.0.0 and below 6.0.6003.21137 is affected.
- Version 6.0.0 and below 6.0.6003.21137 is affected.
- Version 6.1.0 and below 6.1.7601.25632 is affected.
- Version 6.0.0 and below 6.1.7601.25632 is affected.
- Version 6.2.0 and below 6.2.9200.23372 is affected.
- Version 6.2.0 and below 6.2.9200.23372 is affected.
- Version 6.3.0 and below 6.3.9600.20045 is affected.
- Version 6.3.0 and below 6.3.9600.20044 is affected.
- Version 6.3.0 and below 6.3.9600.20045 is affected.
- Version 6.3.0 and below 6.3.9600.20044 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.