CVE-2021-40449 – Microsoft / Windows – Privilege escalation

CVE-2021-40449 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC) was not observed publicly or in the underground. Microsoft claimed to be aware of the vulnerability being actively exploited in the wild.

Summary:

CVE-2021-40449 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC) was not observed publicly or in the underground. Microsoft claimed to be aware of the vulnerability being actively exploited in the wild.

PoC Links(if available):

Microsoft exploitation information –
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40449

Known Counter Measures:

Microsoft addressed the vulnerability in a security update.

Links to patches(if available)

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-40449