CVE-2021-36958: Windows Print Spooler Remote Code Execution Vulnerability
First published: Thu Aug 12 2021(Updated: )
<p>A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.</p>
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the severity of CVE-2021-36958?
CVE-2021-36958 is rated as critical due to its potential for remote code execution with SYSTEM privileges.
How do I fix CVE-2021-36958?
To mitigate CVE-2021-36958, ensure that you apply the latest security updates provided by Microsoft for Windows.
What systems are affected by CVE-2021-36958?
CVE-2021-36958 affects multiple versions of the Microsoft Windows operating system that have the Print Spooler service enabled.
What type of attacks can exploit CVE-2021-36958?
CVE-2021-36958 can be exploited by attackers to run arbitrary code, potentially leading to system compromise.
How can I check if CVE-2021-36958 has been addressed on my system?
You can verify if CVE-2021-36958 has been mitigated by checking for the installation of the latest security patches from Microsoft.
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/description
- agent/remedy
- agent/title
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/darkreading
- source/Dark Reading
- alias/CVE-2021-34527
- alias/CVE-2021-34481
- alias/CVE-2021-34483
- alias/CVE-2021-36936
- alias/CVE-2021-36947
- alias/CVE-2021-36958
- alias/CVE-2021-36970
- alias/CVE-2021-38667
- alias/CVE-2021-38671
- alias/CVE-2021-40447
- alias/CVE-2021-1675
- alias/CVE-2021-41332
- alias/CVE-2024-21433
- alias/CVE-2024-38198
- alias/CVE-2024-43529
- alias/CVE-2022-38028
- alias/CVE-2022-41073
- alias/CVE-2022-22718
- alias/CVE-2022-21999
- alias/CVE-2022-29104
- alias/CVE-2023-21678
- agent/references
- agent/source
- agent/trending
- agent/severity
- agent/author
- agent/tags
- agent/event
- agent/news-ai
- exploited/true
- vendor/microsoft
- canonical/microsoft windows