Rapid7 Vulnerability & Exploit Database

Microsoft Windows: CVE-2021-1706: Windows LUAFV Elevation of Privilege Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft Windows: CVE-2021-1706: Windows LUAFV Elevation of Privilege Vulnerability

Severity
9
CVSS
(AV:N/AC:L/Au:S/C:C/I:C/A:C)
Published
01/12/2021
Created
01/13/2021
Added
01/12/2021
Modified
09/24/2024

Description

Windows LUAFV Elevation of Privilege Vulnerability

Solution(s)

  • microsoft-windows-windows_10-1507-kb4598231
  • microsoft-windows-windows_10-1607-kb4598243
  • microsoft-windows-windows_10-1803-kb4598245
  • microsoft-windows-windows_10-1809-kb4598230
  • microsoft-windows-windows_10-1909-kb4598229
  • microsoft-windows-windows_10-2004-kb4598242
  • microsoft-windows-windows_10-20h2-kb4598242
  • microsoft-windows-windows_server_2012-kb4598297
  • microsoft-windows-windows_server_2012_r2-kb4598275
  • microsoft-windows-windows_server_2016-1607-kb4598243
  • microsoft-windows-windows_server_2019-1809-kb4598230
  • msft-kb4598229-81a03cc9-db2c-4005-b7aa-920a324621a3
  • msft-kb4598242-1d1381a1-869b-4a76-b77c-b1e58c036d70
  • msft-kb4598242-a64f57d9-ebb4-4a14-b08f-8be003223b3d
  • msft-kb4598275-008c503a-c7d5-4656-8275-0a74750f5770
  • msft-kb4598275-777a6c49-c06d-4be7-b7bd-8806ac6d4d7a
  • msft-kb4598287-3f0eb8bf-4d2f-4ed1-8898-d6714531532c
  • msft-kb4598287-d8094996-bbe9-4569-b208-6ccaf1b9989c
  • msft-kb4598289-502e1ccd-0828-49fd-87d4-b54e33d54682
  • msft-kb4598289-51985f7c-ebd5-4551-bb7c-d1f67a9d5e8f
  • msft-kb4598289-51ae4e7b-92b1-4569-abd0-10eeb7eed996
  • msft-kb4598289-b79c2ae4-8e4a-4dcc-bba2-1ca816c9246a
  • msft-kb4598289-d09a4b4a-4597-4c62-94f3-dbd16defbc57
  • msft-kb4598297-a13393a9-ef67-42ba-8db3-0911e086699d
  • msft-kb4598297-a4dadc66-fc3c-4f95-a85c-5aabaa1d59a9

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;