Summaryinfo

A vulnerability was found in Microsoft Windows up to Server 2019 and classified as critical. This affects an unknown function of the component Container Manager Service. The manipulation results in an unknown weakness. This vulnerability is cataloged as CVE-2021-31167. The attack may be launched remotely. There is no exploit available. Applying a patch is advised to resolve this issue.

Detailsinfo

A vulnerability, which was classified as critical, was found in Microsoft Windows up to Server 2019 (Operating System). Affected is an unknown code of the component Container Manager Service. This is going to have an impact on confidentiality, integrity, and availability.

The weakness was shared 05/11/2021 as confirmed security guidance (Website). The advisory is shared for download at portal.msrc.microsoft.com. This vulnerability is traded as CVE-2021-31167. There are neither technical details nor an exploit publicly available. The current price for an exploit might be approx. USD $5k-$25k (estimation calculated on 05/12/2021).

Applying a patch is able to eliminate this problem. A possible mitigation has been published immediately after the disclosure of the vulnerability.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Productinfo

Type

• Operating System

Vendor

• Microsoft

Name

• Windows

Version

• 10 20H2
• 10 1809
• 10 1909
• 10 2004
• Server 20H2
• Server 1909
• Server 2004
• Server 2019

License

• commercial

Website

• Vendor: https://www.microsoft.com/
• Product: https://www.microsoft.com/en-us/windows

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion