Home

CVE-2021-42288

Description

Windows Hello Security Feature Bypass Vulnerability

Risk Information

Base Score
5.7
MODERATE
Vector
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C
EPSS Score
Exploitation Probability
0.578

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 2004 for x86-based Systems (KB5007186)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows Server, version 2004 for x64-based Systems (KB5007186)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 2004 for x64-based Systems (KB5007186)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 20H2 for x86-based Systems (KB5007186)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 20H2 for x64-based Systems (KB5007186)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 21H1 for x64-based Systems (KB5007186)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 21H1 for x86-based Systems (KB5007186)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 1909 for x64-based Systems (KB5007189)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 1909 for x86-based Systems (KB5007189)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows Server 2019 for x64-based Systems (KB5007206)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 1809 for x86-based Systems (KB5007206)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 1809 for x64-based Systems (KB5007206)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 21H2 for x86-based Systems (KB5007186)Windows
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability for Windows 10 Version 21H2 for x64-based Systems (KB5007186)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-323532021-11 Cumulative Update for Windows 10 Version 2004 for x86-based Systems (KB5007186) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323542021-11 Cumulative Update for Windows Server, version 2004 for x64-based Systems (KB5007186) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323552021-11 Cumulative Update for Windows 10 Version 2004 for x64-based Systems (KB5007186) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323562021-11 Cumulative Update for Windows 10 Version 20H2 for x86-based Systems (KB5007186) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323572021-11 Cumulative Update for Windows 10 Version 20H2 for x64-based Systems (KB5007186) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323592021-11 Cumulative Update for Windows 10 Version 21H1 for x64-based Systems (KB5007186) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323602021-11 Cumulative Update for Windows 10 Version 21H1 for x86-based Systems (KB5007186) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323612021-11 Cumulative Update for Windows 10 Version 1909 for x64-based Systems (KB5007189) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323622021-11 Cumulative Update for Windows 10 Version 1909 for x86-based Systems (KB5007189) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323502021-11 Cumulative Update for Windows Server 2019 for x64-based Systems (KB5007206) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323512021-11 Cumulative Update for Windows 10 Version 1809 for x86-based Systems (KB5007206) (CVE-2021-41371) (CVE-2021-38631)
PATCH-323522021-11 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5007206) (CVE-2021-41371) (CVE-2021-38631)
PATCH-324732021-11 Cumulative Update for Windows 10 Version 21H2 for x86-based Systems (KB5007186)
PATCH-324742021-11 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5007186)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234