CVE-2021-1678

HIGH

Windows Print Spooler - Spoofing Vulnerability

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-1678. PoCs published by alvaciroliveira.

AI-analyzed exploit summary This repository provides a detailed guide on mitigating CVE-2021-1678 by enabling the RpcAuthnLevelPrivacyEnabled registry key to enforce stricter RPC authentication for Windows Print Spooler. It includes steps for applying Windows updates and configuring the registry to prevent exploitation.

Description

Windows Print Spooler Spoofing Vulnerability

Exploits (1)

nomisec WRITEUP
by alvaciroliveira · poc
https://github.com/alvaciroliveira/RpcAuthnLevelPrivacyEnabled

This repository provides a detailed guide on mitigating CVE-2021-1678 by enabling the RpcAuthnLevelPrivacyEnabled registry key to enforce stricter RPC authentication for Windows Print Spooler. It includes steps for applying Windows updates and configuring the registry to prevent exploitation.

Classification
Writeup 90%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: Windows Print Spooler (CVE-2021-1678)
Auth required
Prerequisites: Administrative access to modify registry · Windows update KB4599464 or later installed
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Scores

CVSS v3 8.8
EPSS 0.0938
EPSS Percentile 94.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

Status published
Products (19)
microsoft/windows_10
microsoft/windows_10 20h2
microsoft/windows_10 1607
microsoft/windows_10 1803
microsoft/windows_10 1809
microsoft/windows_10 1909
microsoft/windows_10 2004
microsoft/windows_7
microsoft/windows_8.1
microsoft/windows_rt_8.1
... and 9 more
Published Jan 12, 2021
Tracked Since Feb 18, 2026