CVE-2021-26415

HIGH

Microsoft Windows 10 - Improper Input Validation

Title source: rule

Windows Installer Elevation of Privilege Vulnerability

nomisec WRITEUP 4 stars

by adenkiewicz · poc

Core 2

Core References

Patch, Vendor Advisory x_refsource_misc

Third Party Advisory x_refsource_misc

CVSS v3 7.8

EPSS 0.1147

EPSS Percentile 93.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-20

Status published

Products (19)

microsoft/windows_10

microsoft/windows_10 20h2

microsoft/windows_10 1607

microsoft/windows_10 1803

microsoft/windows_10 1809

microsoft/windows_10 1909

microsoft/windows_10 2004

microsoft/windows_7

microsoft/windows_8.1

microsoft/windows_rt_8.1

... and 9 more

Published Apr 13, 2021

Tracked Since Feb 18, 2026