vulnerability

Microsoft Windows: CVE-2021-31166: HTTP Protocol Stack Remote Code Execution Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	May 11, 2021	May 11, 2021	Nov 21, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

May 11, 2021

Added

May 11, 2021

Modified

Nov 21, 2025

Description

HTTP Protocol Stack Remote Code Execution Vulnerability

Solutions

microsoft-windows-windows_10-2004-kb5003173microsoft-windows-windows_10-20h2-kb5003173msft-kb5003173-526cbcf1-1a27-4425-b1c8-4ad4ba713cf9msft-kb5003173-d9fd3f4a-b6b8-4bb8-a5f5-55bc477b259d

References

CVE-2021-31166
https://attackerkb.com/topics/CVE-2021-31166
CWE-416
https://support.microsoft.com/help/5003173

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report