Microsoft Defender Remote Code Execution Vulnerability

Technical Severity

HIGH

7.8 / 10

Minimal Risk Critical

Vector Specification

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

Exploitation Likelihood

77.89 %

Predictive Probability

Percentile Rank

99.0 th

Documented as more likely to be exploited than 99.0% of known CVEs.

Detection Date

Nov 03, 2021

Remediation Due

Nov 17, 2021

CISA Catalog Active

Threat Analysis

Microsoft Defender contains an unspecified vulnerability that allows for remote code execution.

Apply updates per vendor instructions.

Vendor Identity

Microsoft

Affected Product

Defender

Ransomware Status

Campaign Use Unknown

Weakness Classification

National Vulnerability Database

https://nvd.nist.gov/vuln/detail/CVE-2021-1647