CVE-2021-36948 – Microsoft / Windows – Privilege escalation

CVE-2021-36948 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC) was not observed publicly or in the underground. Microsoft claimed the vulnerability was exploited in the wild.

Summary:

CVE-2021-36948 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC) was not observed publicly or in the underground. Microsoft claimed the vulnerability was exploited in the wild.

PoC Links(if available):

Microsoft exploitation information –
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-36948

Known Counter Measures:

Microsoft addressed the vulnerability in a security advisory with updated versions.

Links to patches(if available)

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-36948