CVE-2021-26419

EUVD-2021-13225
Scripting Engine Memory Corruption Vulnerability
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
microsoftCNA
7.5 HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
Windows Releases
Platform
Version
Windows 10
(x64, x86)
KB5003172
1607 (x64, x86)
KB5003197
1803 (arm64, x64, x86)
KB5003174
1809 (arm64, x64, x86)
KB5003171
1909 (arm64, x64, x86)
KB5003169
2004 (arm64, x64, x86)
KB5003173
20H2 (arm64, x86)
KB5003173
Windows 7
Service Pack 1 (x64, x86)
KB5003233
Windows 8.1
(x64, x86)
KB5003209
Windows RT 8.1
All
KB5003209
Windows Server 2008
Service Pack 2 (x64, x86)
KB5003210
Windows Server 2008 R2
Service Pack 1 (x64)
KB5003233
Windows Server 2012
Standard
KB5003208
Windows Server 2012 R2
Standard
KB5003209
Windows Server 2016
Standard
KB5003197
Windows Server 2019
Standard
KB5003171
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/162570/Internet-Explorer-jscript9.dll-Memory-Corruption.html
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26419
http://packetstormsecurity.com/files/162570/Internet-Explorer-jscript9.dll-Memory-Corruption.html
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26419