First published: Tue Jan 12 2021(Updated: )
Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1651.
Credit: secure@microsoft.com secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Visual Studio | =2015-update3 | |
Microsoft Visual Studio 2017 | >=15.0<=15.8 | |
Microsoft Visual Studio 2019 | >=16.0<=16.7.0 | |
Microsoft Visual Studio 2019 | =16.8 | |
Microsoft Windows 10 | ||
Microsoft Windows 10 | =20h2 | |
Microsoft Windows 10 | =1607 | |
Microsoft Windows 10 | =1803 | |
Microsoft Windows 10 | =1809 | |
Microsoft Windows 10 | =1909 | |
Microsoft Windows 10 | =2004 | |
Microsoft Windows Server 2016 | ||
Microsoft Windows Server 2016 | =20h2 | |
Microsoft Windows Server 2016 | =1909 | |
Microsoft Windows Server 2016 | =2004 | |
Microsoft Windows Server 2019 | ||
Microsoft Windows 10 | =1803 | |
Microsoft Windows 10 | =1803 | |
Microsoft Windows Server | =2004 | |
Microsoft Visual Studio 2019 | =16.8 | |
Microsoft Windows 10 | =1909 | |
Microsoft Windows 10 | =20H2 | |
Microsoft Windows Server 2019 | ||
Microsoft Windows 10 | =1607 | |
Microsoft Windows Server | =20H2 | |
Microsoft Windows 10 | =2004 | |
Microsoft Visual Studio 2019 (includes 16.0 – 16.6) | =16.7 | |
Microsoft Windows 10 | =1803 | |
Microsoft Windows 10 | =1909 | |
Microsoft Windows Server 2019 | ||
Microsoft Windows 10 | =1809 | |
Microsoft Visual Studio 2017 (includes 15.0 - 15.8) | =15.9 | |
Microsoft Windows 10 | =1809 | |
Microsoft Windows Server 2016 | ||
Microsoft Windows Server 2016 | ||
Microsoft Windows 10 | =2004 | |
Microsoft Visual Studio 2015 | =3 | |
Microsoft Windows 10 | ||
Microsoft Windows Server | =1909 | |
Microsoft Windows 10 | ||
Microsoft Windows 10 | =1909 | |
Microsoft Windows 10 | =1607 | |
Microsoft Visual Studio 2019 (includes 16.0 - 16.3) | =16.4 | |
Microsoft Windows 10 | =20H2 | |
Microsoft Windows 10 | =2004 | |
Microsoft Windows 10 | =1809 | |
Microsoft Visual Studio 2019 | =16.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-1680 is a vulnerability in Diagnostics Hub Standard Collector that allows for elevation of privilege.
CVE-2021-1680 has a severity value of 7.8, indicating a high severity.
Software affected by CVE-2021-1680 includes Microsoft Visual Studio version 2015 update3, Microsoft Visual Studio 2017 (versions 15.0 to 15.8), Microsoft Visual Studio 2019 (versions 16.0 to 16.7.0), Microsoft Visual Studio 2019 version 16.8, and Microsoft Windows 10 (versions 1607, 1803, 1809, 1909, 2004, and 20h2).
To fix CVE-2021-1680, it is recommended to apply the latest security updates provided by Microsoft.
You can find more information about CVE-2021-1680 in the Microsoft Security Guidance Advisory at the following link: [link](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1680)