Vulnerability Details : CVE-2021-41379
Used for ransomware!
Windows Installer Elevation of Privilege Vulnerability
Vulnerability category: Gain privilege
CVE-2021-41379 is in the CISA Known Exploited Vulnerabilities Catalog
This issue is known to have been leveraged as part of a ransomware campaign.
CISA vulnerability name:
Microsoft Windows Installer Privilege Escalation Vulnerability
CISA required action:
Apply updates per vendor instructions.
CISA description:
Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation.
Notes:
https://nvd.nist.gov/vuln/detail/CVE-2021-41379
Added on
2022-03-03
Action due date
2022-03-17
Exploit prediction scoring system (EPSS) score for CVE-2021-41379
1.68%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 88 %
Percentile, the proportion of vulnerabilities that are scored at or less