fr en

KEV · Actively exploited

CVE-2021-36942

HIGH 7.5 KEV Published on 2021-08-10

Windows LSA Spoofing Vulnerability

EPSS 93.73% exploit likely percentile 99.9%

CISA Known Exploited Vulnerability

Added to KEV: 2021-11-03
Remediation deadline: 2021-11-17
Required action: Apply updates per vendor instructions.
Ransomware: Yes, known ransomware campaign

OS versions that fix this CVE

This CVE is resolved by the following OS security releases. Update the OS to at least the listed version.

Windows Fixed in Windows Server 2019 (Server Core installation) 10.0.17763.2114 Windows Server 2019 10.0.17763.2114 Windows Server 2016 (Server Core installation) 10.0.14393.4583 Windows Server 2016 10.0.14393.4583

View on NVD ↗ CISA KEV catalog ↗