CVE-2021-41379

MEDIUM KEV RANSOMWARE

Microsoft Windows 10 1507 < 10.0.10240.19119 - Symlink Following

Title source: rule

Windows Installer Elevation of Privilege Vulnerability

patchapalooza WORKING POC

by jbaines-r7 · local

CVSS v3 5.5

EPSS 0.0116

EPSS Percentile 78.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA KEV 2022-03-03

VulnCheck KEV 2021-11-30

InTheWild.io 2021-11-29

ENISA EUVD EUVD-2021-28407

Ransomware Use Confirmed

CWE

CWE-59

Status published

Products (20)

microsoft/windows_10_1507 < 10.0.10240.19119

microsoft/windows_10_1607 < 10.0.14393.4770

microsoft/windows_10_1809 < 10.0.17763.2300

microsoft/windows_10_1909 < 10.0.18363.1916

microsoft/windows_10_2004 < 10.0.19041.1348

microsoft/windows_10_20h2 < 10.0.19042.1348

microsoft/windows_10_21h1 < 10.0.19043.1348

microsoft/windows_11_21h2 < 10.0.22000.318

microsoft/windows_7

microsoft/windows_8.1

... and 10 more

Published Nov 10, 2021

KEV Added Mar 03, 2022

Tracked Since Feb 18, 2026