CVE-2021-42286 HIGH

CVE-2021-42286: Windows Core Shell SI Host Extension Framework for Composable Shell Elevation of Privilege Vulnerability

Vendor Microsoft
Product Windows 10 Version 21H1
Published November 10, 2021
Last update November 18, 2024

CVSS base score

7.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

What the vulnerability does

01Description

Windows Core Shell SI Host Extension Framework for Composable Shell Elevation of Privilege Vulnerability

Key dates

02Disclosure timeline

November 10, 2021 CVE published
November 18, 2024 Record updated