Windows Cloud Files Mini Filter Driver 特权提升漏洞

admin

0
文章

0
评论

2023-12-01 14:18:28 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

中危 Windows Cloud Files Mini Filter Driver 特权提升漏洞

CVE编号

CVE-2021-31969

利用情况

暂无

补丁情况

官方补丁

披露时间

2021-06-08

漏洞描述

Microsoft Windows是一款由美国微软公司开发的窗口化操作系统。 Microsoft Windows Cloud Files Mini Filter Driver存在权限提升漏洞。攻击者可利用该漏洞提升权限。受影响系统： Microsoft Windows Server 20H2 (Server Core Insta Microsoft Windows Server 2019 (Server Core Insta Microsoft Windows Server 2019 Microsoft Windows Server 2004 (Server Core insta Microsoft Windows 10 21H1 for x64-based Systems Microsoft Windows 10 21H1 for ARM64-based Systems Microsoft Windows 10 21H1 for 32-bit Systems Microsoft Windows 10 20H2 for x64-based Systems Microsoft Windows 10 20H2 for ARM64-based Systems Microsoft Windows 10 20H2 for 32-bit Systems Microsoft Windows 10 2004 for x64-based Systems Microsoft Windows 10 2004 for ARM64-based Systems Microsoft Windows 10 2004 for 32-bit Systems Microsoft Windows 10 1909 for x64-based Systems Microsoft Windows 10 1909 for ARM64-based Systems Microsoft Windows 10 1909 for 32-bit Systems Microsoft Windows 10 1809 for x64-based Systems Microsoft Windows 10 1809 for ARM64-based Systems Microsoft Windows 10 1809 for 32-bit Systems

解决建议

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31969

参考链接
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31969
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31969
https://www.zerodayinitiative.com/advisories/ZDI-21-797/

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	系统	microsoft	windows_10	1909	-
	运行在以下环境
	系统	microsoft	windows_10	2004	-
	运行在以下环境
	系统	microsoft	windows_10	20h2	-
	运行在以下环境
	系统	microsoft	windows_10	21h1	-
	运行在以下环境
	系统	microsoft	windows_server_2016	2004	-
	运行在以下环境
	系统	microsoft	windows_server_2016	20h2	-
	运行在以下环境
	系统	microsoft	windows_server_2019	-	-