What is CVE-2021-28316?

CVE-2021-28316 is a vulnerability in the Windows WLAN AutoConfig Service that allows security features to be bypassed.

Which software versions are affected by CVE-2021-28316?

Microsoft Windows 10, Windows 7, Windows 8.1, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows Server 2016, and Windows Server 2019 are affected by CVE-2021-28316.

What is the severity of CVE-2021-28316?

CVE-2021-28316 has a severity rating of 4.6 (medium).

How does CVE-2021-28316 affect Windows?

CVE-2021-28316 allows attackers to bypass security features in the Windows WLAN AutoConfig Service.

Is there a fix for CVE-2021-28316?

Yes, Microsoft has released a security update to address CVE-2021-28316. It is recommended to install the latest updates to protect against this vulnerability.

Vulnerability/
CVE-2021-28316

medium

4.6

13/4/2021

3/8/2024

CVE-2021-28316: Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability

First published: Tue Apr 13 2021(Updated: )

Windows WLAN AutoConfig Service Security Feature Bypass Vulnerability

Credit: secure@microsoft.com secure@microsoft.com

Affected Software	Affected Version	How to fix

	=20h2
	=1607
	=1803
	=1809
	=1909
	=2004
	=sp1


	=r2-sp1

	=r2

	=20h2
	=1909
	=2004

Microsoft Windows 10
Microsoft Windows 10	=20h2
Microsoft Windows 10	=1607
Microsoft Windows 10	=1803
Microsoft Windows 10	=1809
Microsoft Windows 10	=1909
Microsoft Windows 10	=2004
Microsoft Windows 7	=sp1
Microsoft Windows 8.1
Microsoft Windows RT 8.1
Microsoft Windows Server 2008	=r2-sp1
Microsoft Windows Server 2012
Microsoft Windows Server 2012	=r2
Microsoft Windows Server 2016
Microsoft Windows Server 2016	=20h2
Microsoft Windows Server 2016	=1909
Microsoft Windows Server 2016	=2004
Microsoft Windows Server 2019

Remedy

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28316

Never miss a vulnerability like this again

Reference Links

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28316

Frequently Asked Questions

What is CVE-2021-28316?
CVE-2021-28316 is a vulnerability in the Windows WLAN AutoConfig Service that allows security features to be bypassed.
Which software versions are affected by CVE-2021-28316?
Microsoft Windows 10, Windows 7, Windows 8.1, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows Server 2016, and Windows Server 2019 are affected by CVE-2021-28316.
What is the severity of CVE-2021-28316?
CVE-2021-28316 has a severity rating of 4.6 (medium).
How does CVE-2021-28316 affect Windows?
CVE-2021-28316 allows attackers to bypass security features in the Windows WLAN AutoConfig Service.
Is there a fix for CVE-2021-28316?
Yes, Microsoft has released a security update to address CVE-2021-28316. It is recommended to install the latest updates to protect against this vulnerability.

agent/type
agent/last-modified-date
agent/first-publish-date
agent/author
agent/softwarecombine
agent/title
agent/severity
agent/references
agent/remedy
agent/event
collector/nvd-index
agent/software-canonical-lookup-request
agent/tags
agent/description
collector/nvd-api
source/NVD
agent/software-canonical-lookup
collector/mitre-cve
source/MITRE
vendor/microsoft
canonical/microsoft windows 10
version/microsoft windows 10/20h2
version/microsoft windows 10/1607
version/microsoft windows 10/1803
version/microsoft windows 10/1809
version/microsoft windows 10/1909
version/microsoft windows 10/2004
canonical/microsoft windows 7
version/microsoft windows 7/sp1
canonical/microsoft windows 8.1
canonical/microsoft windows rt 8.1
canonical/microsoft windows server 2008
version/microsoft windows server 2008/r2-sp1
canonical/microsoft windows server 2012
version/microsoft windows server 2012/r2
canonical/microsoft windows server 2016
version/microsoft windows server 2016/20h2
version/microsoft windows server 2016/1909
version/microsoft windows server 2016/2004
canonical/microsoft windows server 2019