cnvd - cnvd-2021-48427

cnvd-2021-48427

Vulnerability from cnvd

Title: Microsoft Windows Print Spooler权限提升漏洞

Description:

Windows Print Spooler是Windows的打印机后台处理程序

Microsoft Windows Print Spooler存在权限提升漏洞。攻击者可利用该漏洞提升权限。

Severity: 高

Patch Name: Microsoft Windows Print Spooler权限提升漏洞的补丁

Patch Description:

Windows Print Spooler是Windows的打印机后台处理程序

Microsoft Windows Print Spooler存在权限提升漏洞。攻击者可利用该漏洞提升权限。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1675

Impacted products

Name
['Microsoft Corporation Windows RT 8.1', 'Microsoft Corporation Windows Server 2012', 'Microsoft Corporation Windows Server 2016', 'Microsoft Corporation Windows Server 2012 R2', 'Microsoft Corporation Windows 7 for x64-based Systems SP1', 'Microsoft Corporation Windows 7 for 32-bit Systems SP1', 'Microsoft Corporation Windows 10 for 32-bit Systems', 'Microsoft Corporation Windows Server 2019', 'Microsoft Corporation Windows Server 20H2 (Server Core Insta', 'Microsoft Corporation Windows Server 2004 (Server Core insta', 'Microsoft Corporation Windows Server 2012 R2 (Server Core in', 'Microsoft Corporation Windows Server 2012 (Server Core insta', 'Microsoft Corporation Windows Server 2016 (Server Core Insta', 'Microsoft Corporation Windows Server 2019 (Server Core Insta', 'Microsoft Corporation Windows 10 21H1 for x64-based Systems', 'Microsoft Corporation Windows 10 1607 for x64-based Systems', 'Microsoft Corporation Windows 10 1909 for x64-based Systems', 'Microsoft Corporation Windows 10 for x64-based Systems', 'Microsoft Corporation Windows 10 20H2 for x64-based Systems', 'Microsoft Corporation Windows 10 2004 for x64-based Systems', 'Microsoft Corporation Windows 10 2004 for 32-bit Systems', 'Microsoft Corporation Windows 10 21H1 for 32-bit Systems', 'Microsoft Corporation Windows 10 20H2 for 32-bit Systems', 'Microsoft Corporation Windows 8.1 for x64-based systems', 'Microsoft Corporation Windows 10 20H2 for ARM64-based Systems', 'Microsoft Corporation Windows 10 1909 for 32-bit Systems', 'Microsoft Corporation Windows 10 1607 for 32-bit Systems', 'Microsoft Corporation Windows Server 2008 for x64-based Syst', 'Microsoft Corporation Windows 10 1909 for ARM64-based Systems', 'Microsoft Corporation Windows 8.1 for 32-bit systems', 'Microsoft Corporation Windows Server 2008 R2 for x64-based S', 'Microsoft Corporation Windows Server 2008 for 32-bit Systems', 'Microsoft Corporation Windows 10 21H1 for ARM64-based Systems', 'Microsoft Corporation Windows 10 2004 for ARM64-based Systems']

Name

['Microsoft Corporation Windows RT 8.1', 'Microsoft Corporation Windows Server 2012', 'Microsoft Corporation Windows Server 2016', 'Microsoft Corporation Windows Server 2012 R2', 'Microsoft Corporation Windows 7 for x64-based Systems SP1', 'Microsoft Corporation Windows 7 for 32-bit Systems SP1', 'Microsoft Corporation Windows 10 for 32-bit Systems', 'Microsoft Corporation Windows Server 2019', 'Microsoft Corporation Windows Server 20H2 (Server Core Insta', 'Microsoft Corporation Windows Server 2004 (Server Core insta', 'Microsoft Corporation Windows Server 2012 R2 (Server Core in', 'Microsoft Corporation Windows Server 2012 (Server Core insta', 'Microsoft Corporation Windows Server 2016 (Server Core Insta', 'Microsoft Corporation Windows Server 2019 (Server Core Insta', 'Microsoft Corporation Windows 10 21H1 for x64-based Systems', 'Microsoft Corporation Windows 10 1607 for x64-based Systems', 'Microsoft Corporation Windows 10 1909 for x64-based Systems', 'Microsoft Corporation Windows 10 for x64-based Systems', 'Microsoft Corporation Windows 10 20H2 for x64-based Systems', 'Microsoft Corporation Windows 10 2004 for x64-based Systems', 'Microsoft Corporation Windows 10 2004 for 32-bit Systems', 'Microsoft Corporation Windows 10 21H1 for 32-bit Systems', 'Microsoft Corporation Windows 10 20H2 for 32-bit Systems', 'Microsoft Corporation Windows 8.1 for x64-based systems', 'Microsoft Corporation Windows 10 20H2 for ARM64-based Systems', 'Microsoft Corporation Windows 10 1909 for 32-bit Systems', 'Microsoft Corporation Windows 10 1607 for 32-bit Systems', 'Microsoft Corporation Windows Server 2008 for x64-based Syst', 'Microsoft Corporation Windows 10 1909 for ARM64-based Systems', 'Microsoft Corporation Windows 8.1 for 32-bit systems', 'Microsoft Corporation Windows Server 2008 R2 for x64-based S', 'Microsoft Corporation Windows Server 2008 for 32-bit Systems', 'Microsoft Corporation Windows 10 21H1 for ARM64-based Systems', 'Microsoft Corporation Windows 10 2004 for ARM64-based Systems']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-1675",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-1675"
    }
  },
  "description": "Windows Print Spooler\u662fWindows\u7684\u6253\u5370\u673a\u540e\u53f0\u5904\u7406\u7a0b\u5e8f\n\nMicrosoft Windows Print Spooler\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u5347\u6743\u9650\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a  https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1675",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-48427",
  "openTime": "2021-07-07",
  "patchDescription": "Windows Print Spooler\u662fWindows\u7684\u6253\u5370\u673a\u540e\u53f0\u5904\u7406\u7a0b\u5e8f\r\n\r\nMicrosoft Windows Print Spooler\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u63d0\u5347\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Microsoft Windows Print Spooler\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Microsoft Corporation Windows RT 8.1",
      "Microsoft Corporation Windows Server 2012",
      "Microsoft Corporation Windows Server 2016",
      "Microsoft Corporation Windows Server 2012 R2",
      "Microsoft Corporation Windows 7 for x64-based Systems SP1",
      "Microsoft Corporation Windows 7 for 32-bit Systems SP1",
      "Microsoft Corporation Windows 10 for 32-bit Systems",
      "Microsoft Corporation Windows Server 2019",
      "Microsoft Corporation Windows Server 20H2 (Server Core Insta",
      "Microsoft Corporation Windows Server 2004 (Server Core insta",
      "Microsoft Corporation Windows Server 2012 R2 (Server Core in",
      "Microsoft Corporation Windows Server 2012 (Server Core insta",
      "Microsoft Corporation Windows Server 2016 (Server Core Insta",
      "Microsoft Corporation Windows Server 2019 (Server Core Insta",
      "Microsoft Corporation Windows 10 21H1 for x64-based Systems",
      "Microsoft Corporation Windows 10 1607 for x64-based Systems",
      "Microsoft Corporation Windows 10 1909 for x64-based Systems",
      "Microsoft Corporation Windows 10 for x64-based Systems",
      "Microsoft Corporation Windows 10 20H2 for x64-based Systems",
      "Microsoft Corporation Windows 10 2004 for x64-based Systems",
      "Microsoft Corporation Windows 10 2004 for 32-bit Systems",
      "Microsoft Corporation Windows 10 21H1 for 32-bit Systems",
      "Microsoft Corporation Windows 10 20H2 for 32-bit Systems",
      "Microsoft Corporation Windows 8.1 for x64-based systems",
      "Microsoft Corporation Windows 10 20H2 for ARM64-based Systems",
      "Microsoft Corporation Windows 10 1909 for 32-bit Systems",
      "Microsoft Corporation Windows 10 1607 for 32-bit Systems",
      "Microsoft Corporation Windows Server 2008 for x64-based Syst",
      "Microsoft Corporation Windows 10 1909 for ARM64-based Systems",
      "Microsoft Corporation Windows 8.1 for 32-bit systems",
      "Microsoft Corporation Windows Server 2008 R2 for x64-based S",
      "Microsoft Corporation Windows Server 2008 for 32-bit Systems",
      "Microsoft Corporation Windows 10 21H1 for ARM64-based Systems",
      "Microsoft Corporation Windows 10 2004 for ARM64-based Systems"
    ]
  },
  "serverity": "\u9ad8",
  "submitTime": "2021-07-07",
  "title": "Microsoft Windows Print Spooler\u6743\u9650\u63d0\u5347\u6f0f\u6d1e"
}

CVE-2021-1675 (GCVE-0-2021-1675)

Vulnerability from cvelistv5

Published

2021-06-08 22:46

Modified

2025-07-30 01:38

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

CWE

Elevation of Privilege

Summary

Windows Print Spooler Remote Code Execution Vulnerability

References

▼	URL	Tags
	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1675	x_refsource_MISC
	https://www.kb.cert.org/vuls/id/383432	third-party-advisory, x_refsource_CERT-VN
	http://packetstormsecurity.com/files/163349/Microsoft-PrintNightmare-Proof-Of-Concept.html	x_refsource_MISC
	http://packetstormsecurity.com/files/163351/PrintNightmare-Windows-Spooler-Service-Remote-Code-Execution.html	x_refsource_MISC
	http://packetstormsecurity.com/files/167261/Print-Spooler-Remote-DLL-Injection.html	x_refsource_MISC

Impacted products

Vendor

Product

Version

▼

Microsoft

Windows 10 Version 1809

Version: 10.0.0   < 10.0.17763.1999
    cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.1999:*:*:*:*:*:x86:*
    cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.1999:*:*:*:*:*:x64:*
    cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.1999:*:*:*:*:*:arm64:*

Microsoft	Windows Server 2019	Version: 10.0.0 < 10.0.17763.1999 cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.1999:::::::*
Microsoft	Windows Server 2019 (Server Core installation)	Version: 10.0.0 < 10.0.17763.1999 cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.1999:::::::*
Microsoft	Windows 10 Version 1909	Version: 10.0.0 < 10.0.18363.1621 cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1621::::::x86: cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1621::::::x64: cpe:2.3:o:microsoft:windows_10_1809:10.0.18363.1621::::::x64:
Microsoft	Windows 10 Version 21H1	Version: 10.0.0 < 10.0.19043.1052 cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1052::::::x64: cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1052::::::arm64: cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1052::::::x86:
Microsoft	Windows 10 Version 2004	Version: 10.0.0 < 10.0.19041.1052 cpe:2.3:o:microsoft:windows_10_1809:10.0.19041.1052::::::x64:
Microsoft	Windows Server version 2004	Version: 10.0.0 < 10.0.19041.1052 cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1052:::::::*
Microsoft	Windows 10 Version 20H2	Version: 10.0.0 < 10.0.19042.1052 cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1052::::::x86: cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1052::::::arm64:
Microsoft	Windows Server version 20H2	Version: 10.0.0 < 10.0.19042.1052 cpe:2.3:o:microsoft:windows_server_20H2:10.0.19042.1052:::::::*
Microsoft	Windows 10 Version 1507	Version: 10.0.0 < 10.0.10240.18967 cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.18967::::::x86: cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.18967::::::x64:
Microsoft	Windows 10 Version 1607	Version: 10.0.0 < 10.0.14393.4467 cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4467::::::x86: cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4467::::::x64:
Microsoft	Windows Server 2016	Version: 10.0.0 < 10.0.14393.4467 cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4467:::::::*
Microsoft	Windows Server 2016 (Server Core installation)	Version: 10.0.0 < 10.0.14393.4467 cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4467:::::::*
Microsoft	Windows 7	Version: 6.1.0 < 6.1.7601.25632 cpe:2.3:o:microsoft:windows_7:6.1.7601.25632:sp1:::::x86:*
Microsoft	Windows 7 Service Pack 1	Version: 6.1.0 < 6.1.7601.25632 cpe:2.3:o:microsoft:windows_7:6.1.7601.25632:sp1:::::x64:*
Microsoft	Windows 8.1	Version: 6.3.0 < 6.3.9600.20045 Version: 6.3.0 < 6.3.9600.20044 cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20045::::::x86: cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20044::::::x86: cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20045::::::x64: cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20044::::::x64: cpe:2.3:o:microsoft:windows_rt_8.1:6.3.9600.20045:::::::*
Microsoft	Windows Server 2008 Service Pack 2	Version: 6.0.0 < 6.0.6003.21137 cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21137::::::x64:
Microsoft	Windows Server 2008 Service Pack 2 (Server Core installation)	Version: 6.0.0 < 6.0.6003.21137 cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21137::::::x64: cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21137::::::x86:
Microsoft	Windows Server 2008 Service Pack 2	Version: 6.0.0 < 6.0.6003.21137 cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21137::::::x86:
Microsoft	Windows Server 2008 R2 Service Pack 1	Version: 6.1.0 < 6.1.7601.25632 cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25632::::::x64:
Microsoft	Windows Server 2008 R2 Service Pack 1 (Server Core installation)	Version: 6.0.0 < 6.1.7601.25632 cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25632::::::x64:
Microsoft	Windows Server 2012	Version: 6.2.0 < 6.2.9200.23372 cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23372::::::x64:
Microsoft	Windows Server 2012 (Server Core installation)	Version: 6.2.0 < 6.2.9200.23372 cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23372::::::x64:
Microsoft	Windows Server 2012 R2	Version: 6.3.0 < 6.3.9600.20045 Version: 6.3.0 < 6.3.9600.20044 cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20045::::::x64: cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20044::::::x64:
Microsoft	Windows Server 2012 R2 (Server Core installation)	Version: 6.3.0 < 6.3.9600.20045 Version: 6.3.0 < 6.3.9600.20044 cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20045::::::x64: cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20044::::::x64:

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-1675",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-20T19:19:04.437235Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2021-11-03",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-1675"
              },
              "type": "kev"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-07-30T01:38:09.160Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "timeline": [
          {
            "lang": "en",
            "time": "2021-11-03T00:00:00+00:00",
            "value": "CVE-2021-1675 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T16:18:11.042Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1675"
          },
          {
            "name": "VU#383432",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "https://www.kb.cert.org/vuls/id/383432"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/163349/Microsoft-PrintNightmare-Proof-Of-Concept.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/163351/PrintNightmare-Windows-Spooler-Service-Remote-Code-Execution.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/167261/Print-Spooler-Remote-DLL-Injection.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.1999:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.1999:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.1999:*:*:*:*:*:arm64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1809",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.17763.1999",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.1999:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.17763.1999",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.1999:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2019 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.17763.1999",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1621:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1621:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_1809:10.0.18363.1621:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 1909",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.18363.1621",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1052:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1052:*:*:*:*:*:arm64:*",
            "cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1052:*:*:*:*:*:x86:*"
          ],
          "platforms": [
            "x64-based Systems",
            "ARM64-based Systems",
            "32-bit Systems"
          ],
          "product": "Windows 10 Version 21H1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.19043.1052",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1809:10.0.19041.1052:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "ARM64-based Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 2004",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.19041.1052",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1052:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server version 2004",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.19041.1052",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1052:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1052:*:*:*:*:*:arm64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 10 Version 20H2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.19042.1052",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_20H2:10.0.19042.1052:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server version 20H2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.19042.1052",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.18967:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.18967:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1507",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.10240.18967",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4467:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4467:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows 10 Version 1607",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.14393.4467",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4467:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.14393.4467",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4467:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2016 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.14393.4467",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_7:6.1.7601.25632:sp1:*:*:*:*:x86:*"
          ],
          "platforms": [
            "32-bit Systems"
          ],
          "product": "Windows 7",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.1.7601.25632",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_7:6.1.7601.25632:sp1:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows 7 Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.1.7601.25632",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20045:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20044:*:*:*:*:*:x86:*",
            "cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20045:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_8.1:6.3.9600.20044:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_rt_8.1:6.3.9600.20045:*:*:*:*:*:*:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems",
            "ARM64-based Systems"
          ],
          "product": "Windows 8.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.3.9600.20045",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            },
            {
              "lessThan": "6.3.9600.20044",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21137:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "32-bit Systems"
          ],
          "product": "Windows Server 2008 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.0.6003.21137",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21137:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21137:*:*:*:*:*:x86:*"
          ],
          "platforms": [
            "32-bit Systems",
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 Service Pack 2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.0.6003.21137",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_sp2:6.0.6003.21137:*:*:*:*:*:x86:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008  Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.0.6003.21137",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25632:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Service Pack 1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.1.7601.25632",
              "status": "affected",
              "version": "6.1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2008_R2:6.1.7601.25632:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.1.7601.25632",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23372:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.2.9200.23372",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012:6.2.9200.23372:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.2.9200.23372",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20045:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20044:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.3.9600.20045",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            },
            {
              "lessThan": "6.3.9600.20044",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20045:*:*:*:*:*:x64:*",
            "cpe:2.3:o:microsoft:windows_server_2012_R2:6.3.9600.20044:*:*:*:*:*:x64:*"
          ],
          "platforms": [
            "x64-based Systems"
          ],
          "product": "Windows Server 2012 R2 (Server Core installation)",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "6.3.9600.20045",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            },
            {
              "lessThan": "6.3.9600.20044",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2021-06-08T07:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": "Windows Print Spooler Remote Code Execution Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Elevation of Privilege",
              "lang": "en-US",
              "type": "Impact"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-05-29T14:55:40.040Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1675"
        },
        {
          "name": "VU#383432",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "https://www.kb.cert.org/vuls/id/383432"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/163349/Microsoft-PrintNightmare-Proof-Of-Concept.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/163351/PrintNightmare-Windows-Spooler-Service-Remote-Code-Execution.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/167261/Print-Spooler-Remote-DLL-Injection.html"
        }
      ],
      "title": "Windows Print Spooler Remote Code Execution Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2021-1675",
    "datePublished": "2021-06-08T22:46:11.000Z",
    "dateReserved": "2020-12-02T00:00:00.000Z",
    "dateUpdated": "2025-07-30T01:38:09.160Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted