CVE-2021-40449

Description from NVD

Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-40450, CVE-2021-41357.

Information Acquisition Date:2021-11-09T14:54Z
CVSS 2.0: 4.6 MEDIUM CVSS 3.x: 7.8 HIGH

▼ CVSS3 Vec CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

▼ CVSS2 Vec AV:L/AC:L/Au:N/C:P/I:P/A:P

NVD References

 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40449
     source:MISC
     tags:Patch    Vendor Advisory    

This vulnerability may involve a PoC.

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Windows(1 tweets)

List of frequently cited URLs

URLNum of Times Referred to
http://twinybots.ch34
https://www.helpnetsecurity.com/2021/10/12/patch-tuesday-cv...9
https://github.com/ly4k/CallbackHell4
https://twitter.com/ollypwn/status/14494125058943303724
https://www.kaspersky.com/blog/mysterysnail-cve-2021-40449/...4
https://kristal-g.github.io/2021/11/05/CVE-2021-40449_POC.html4
http://feedproxy.google.com/~r/HelpNetSecurity/~3/mrzZVQ_EZAg/4
https://bit.ly/3CkEc9p3
https://kas.pr/q4vy3
https://www.heise.de/news/Patchday-Angreifer-attackieren-Ke...3
https://securelist.com/mysterysnail-attacks-with-windows-ze...3
https://www.tenable.com/blog/microsoft-s-october-2021-patch...3
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2...3
https://www.kaspersky.com.br/blog/mysterysnail-cve-2021-404...3
https://blog.trendmicro.co.jp/archives/289693

Information from Twitter

User URL Info Source Date
Ksecureteamlab https://github.com/SamuelTulach/voidmap Source Ksecureteamlab   1500501918396911616 2022/03/07
soheilhashemi_ https://github.com/Al1ex/WindowsElevation/tree/master/CVE-2... Source soheilhashemi_   1516556630451699713 2022/04/20
soheilhashemi_ https://github.com/Kristal-g/CVE-2021-40449_poc Source soheilhashemi_   1516556630451699713 2022/04/20

List of frequently cited URLs

URLNum of Times Referred to
twinybots.ch34
www.helpnetsecurity.com9
github.com4
twitter.com4
www.kaspersky.com4
kristal-g.github.io4
feedproxy.google.com4
bit.ly3
kas.pr3
www.heise.de3
securelist.com3
www.tenable.com3
msrc.microsoft.com3
www.kaspersky.com.br3
blog.trendmicro.co.jp3

Information from Twitter

User URL Info Source
Ksecureteamlab github.com Show Tweet
soheilhashemi_ github.com Show Tweet
soheilhashemi_ github.com Show Tweet
GitHub Search Results: Up to 10
NameURL
KaLendsi/CVE-2021-40449-Exploit https://github.com/KaLendsi/CVE-2021-40449-Exploit
ly4k/CallbackHell https://github.com/ly4k/CallbackHell
Kristal-g/CVE-2021-40449_poc https://github.com/Kristal-g/CVE-2021-40449_poc
hakivvi/CVE-2021-40449 https://github.com/hakivvi/CVE-2021-40449
BL0odz/CVE-2021-40449-NtGdiResetDC-UAF https://github.com/BL0odz/CVE-2021-40449-NtGdiResetDC-UAF
Ascotbe/Kernelhub https://github.com/Ascotbe/Kernelhub
CppXL/cve-2021-40449-poc https://github.com/CppXL/cve-2021-40449-poc
GitHub Search Results: Up to 10
NameURL
KaLendsi/CVE-2021-40449-Exploit github.com
ly4k/CallbackHell github.com
Kristal-g/CVE-2021-40449_poc github.com
hakivvi/CVE-2021-40449 github.com
BL0odz/CVE-2021-40449-NtGdiResetDC-UAF github.com
Ascotbe/Kernelhub github.com
CppXL/cve-2021-40449-poc github.com
2022/04/20 Score : 1
Added Har-sia Database : 2021/10/13
Last Modified : 2022/04/20
Highest Scored Date : 2021/10/13
Highest Score : 75