CVE-2021-43226
Published Dec 15, 2021
Last updated a month ago
- Description
- Windows Common Log File System Driver Elevation of Privilege Vulnerability
- Source
- secure@microsoft.com
- NVD status
- Analyzed
- Products
- windows_10_1507, windows_10_1607, windows_10_1809, windows_10_1909, windows_10_2004, windows_10_20h2, windows_10_21h1, windows_10_21h2, windows_11_21h2, windows_7, windows_8.1, windows_rt_8.1, windows_server_2004, windows_server_2008, windows_server_2012, windows_server_2016, windows_server_2019, windows_server_2022, windows_server_20h2
CVSS 3.1
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
Data from CISA
- Vulnerability name
- Microsoft Windows Privilege Escalation Vulnerability
- Exploit added on
- Oct 6, 2025
- Exploit action due
- Oct 27, 2025
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "977D0C94-876B-48D1-9410-A8EE013A75E6",
"versionEndExcluding": "10.0.10240.19145"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
"vulnerable": true,
"matchCriteriaId": "AD29650C-5DED-43C6-8FCB-C5399E918AAF",
"versionEndExcluding": "10.0.10240.19145"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "6E22C459-2688-4358-A503-9A72089151F3",
"versionEndExcluding": "10.0.14393.4825"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
"vulnerable": true,
"matchCriteriaId": "1C10E4C1-670C-431D-B1D0-6F1C6DC49BB3",
"versionEndExcluding": "10.0.14393.4825"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C9A66AF-EC75-452F-A06B-8AFEF1335CC7",
"versionEndExcluding": "10.0.17763.2366"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A897CDFD-EBFA-481A-9CF8-DC2345338237",
"versionEndExcluding": "10.0.18363.1977"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_2004:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D754541D-CB1D-4AE1-B944-DBD625F1B3B4",
"versionEndExcluding": "10.0.19041.1415"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:arm64:*",
"vulnerable": true,
"matchCriteriaId": "CB442028-E6F4-48EC-9A10-EC3BC1C2419F",
"versionEndExcluding": "10.0.19042.1415"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_20h2:*:*:*:*:*:*:x86:*",
"vulnerable": true,
"matchCriteriaId": "CF3F1D50-3E59-4261-87B2-7E505FC51407",
"versionEndExcluding": "10.0.19042.1415"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h1:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "644C27E7-CD99-4229-B1FD-BFCD1EA627F5",
"versionEndExcluding": "10.0.19043.1415"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B773592-2AC2-48CD-A6B3-98D2632A2F88",
"versionEndExcluding": "10.0.19044.1415"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DC6610EB-3AD8-49EE-9969-3584A377D19E",
"versionEndExcluding": "10.0.22000.376"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C2B1C231-DE19-4B8F-A4AA-5B3A65276E46"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E93068DB-549B-45AB-8E5C-00EB5D8B5CF8"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C6CE5198-C498-4672-AF4C-77AB4BE06C5C"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9B5CD09F-F8B6-42C7-A3CA-758221044601",
"versionEndExcluding": "10.0.19041.1415"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "2127D10C-B6F3-4C1D-B9AA-5D78513CC996"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*",
"vulnerable": true,
"matchCriteriaId": "AB425562-C0A0-452E-AABE-F70522F15E1A"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
"vulnerable": true,
"matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DF4CA381-BFDC-4E03-866C-0AAF54333F06",
"versionEndExcluding": "10.0.14393.4825"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ED43D2B7-069F-44A6-8BF2-08B870B71149",
"versionEndExcluding": "10.0.17763.2366"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "14412312-B2F5-420B-9E77-512DDFD4B9F8",
"versionEndExcluding": "10.0.20348.405"
},
{
"criteria": "cpe:2.3:o:microsoft:windows_server_20h2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7550D91F-2050-49FD-996F-047207D55A47",
"versionEndExcluding": "10.0.19042.1415"
}
],
"operator": "OR"
}
]
}
]