VULNERABILITY

Microsoft Windows: CVE-2021-26442: Windows HTTP.sys Elevation of Privilege Vulnerability

Try Surface Command Get a continuous 360° view of your attack surface
Back to Search

Microsoft Windows: CVE-2021-26442: Windows HTTP.sys Elevation of Privilege Vulnerability

Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
10/12/2021
Created
10/13/2021
Added
10/12/2021
Modified
09/24/2024

Description

Windows HTTP.sys Elevation of Privilege Vulnerability

Solution(s)

  • microsoft-windows-windows_10-1507-kb5006675
  • microsoft-windows-windows_10-1607-kb5006669
  • microsoft-windows-windows_10-1809-kb5006672
  • microsoft-windows-windows_10-1909-kb5006667
  • microsoft-windows-windows_10-2004-kb5006670
  • microsoft-windows-windows_10-20h2-kb5006670
  • microsoft-windows-windows_10-21h1-kb5006670
  • microsoft-windows-windows_11-21h2-kb5006674
  • microsoft-windows-windows_server_2012-kb5006732
  • microsoft-windows-windows_server_2012_r2-kb5006729
  • microsoft-windows-windows_server_2016-1607-kb5006669
  • microsoft-windows-windows_server_2019-1809-kb5006672
  • microsoft-windows-windows_server_2022-21h2-kb5006699
  • microsoft-windows-windows_server_2022-22h2-kb5006699
  • msft-kb5006670-42d3fd93-5287-491a-938b-06f8826e6490
  • msft-kb5006670-6277f48a-ef90-4f0b-b356-bec0c1e746e3
  • msft-kb5006715-cac304ee-bd90-463a-8b59-056d42e27b7f
  • msft-kb5006728-44434439-e83e-4885-8d57-904491e3edff
  • msft-kb5006728-655bcaee-ea00-4f4a-b777-a4ec05e51608
  • msft-kb5006728-746bc693-9ac8-4f50-975d-eaa00c73c876
  • msft-kb5006728-7d804969-f909-4581-bf35-ec1db79b35b0
  • msft-kb5006728-eb5eb653-eb41-4f24-b495-4c280a5c575e
  • msft-kb5006729-3b9ecfe7-a267-47be-a993-cdfb16957df0
  • msft-kb5006729-65fef155-da7e-470f-9158-a992c895c9be
  • msft-kb5006732-325600b8-155e-44b3-91aa-a67c23687255
  • msft-kb5006732-d6514bc6-283f-46c5-b52f-7b5d4642f0ef
  • msft-kb5006736-28cf7e62-4943-45e7-b4d9-c29421f30538
  • msft-kb5006739-fd7c78d6-5d3e-42fc-baee-fe86855332fb

References

View more

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;