Microsoft security update-CVE-2021-35247

February 1, 2022

NAME

MicrosoftWindows

  • Platforms Affected:
    Windows

  • Risk Level:
    low

  • CVE Type:
    RCE

DESCRIPTION

CVE-2021-35247 is a remote code execution (RCE) vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC) was observed in open source and a link to a PoC was shared in the underground.

CVSS Information:

  • CVSS 2.0 SCORE:
  • CVSS 3.0 SCORE: 9.8

  • Exploit Disclosed in the Public:
    true

  • Exploit Weaponised:


  • PoC Link:
    hXXps://packetstormsecurity[.]com/files/165566/HTTP-Protocol-Stack-Denial-Of-Service-Remote-Code-Execution[.]html

MITIGATION

Microsoft addressed the vulnerability in a security advisory with a patch.

  • Reference Link:
    https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21907

  • Patch Available:
    available

If you like the site, please consider joining the telegram channel and supporting us on Patreon using the button below.

Digital Patreon Wordmark FieryCoralv2
Tags: , ,

You may have missed

image

CVE Alert: CVE-2025-36128 – IBM – MQ

October 16, 2025
image

CVE Alert: CVE-2025-53951 – Fortinet – FortiDLP

October 16, 2025
image

[PLAY] – Ransomware Victim: BMP Worldwide

October 16, 2025
hackerone

HackerOne Bug Bounty Disclosure: path-traversal-vulnerability-in-nextcloud-tables-enables-arbitrary-file-exfiltration-of-any-files-supported-by-phpspreadsheet-library-daroo

October 16, 2025
mythic

Mythic C2 Detected – 188[.]124[.]51[.]141:7443

October 16, 2025