CVE-2021-42275: Microsoft COM for Windows Remote Code Execution Vulnerability
First published: Wed Nov 10 2021(Updated: )
Microsoft COM for Windows Remote Code Execution Vulnerability
Credit: secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| =20h2 | ||
| =21h1 | ||
| =1607 | ||
| =1809 | ||
| =1909 | ||
| =2004 | ||
| =sp1 | ||
| =sp2 | ||
| =r2-sp1 | ||
| =r2 | ||
| =20h2 | ||
| =2004 | ||
| Microsoft Windows 10 | ||
| Microsoft Windows 10 | =20h2 | |
| Microsoft Windows 10 | =21h1 | |
| Microsoft Windows 10 | =1607 | |
| Microsoft Windows 10 | =1809 | |
| Microsoft Windows 10 | =1909 | |
| Microsoft Windows 10 | =2004 | |
| Microsoft Windows 11 | ||
| Microsoft Windows 11 | ||
| Microsoft Windows 7 | =sp1 | |
| Microsoft Windows 8.1 | ||
| Microsoft Windows RT 8.1 | ||
| Microsoft Windows Server 2008 | =sp2 | |
| Microsoft Windows Server 2008 | =r2-sp1 | |
| Microsoft Windows Server 2012 | ||
| Microsoft Windows Server 2012 | =r2 | |
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2016 | =20h2 | |
| Microsoft Windows Server 2016 | =2004 | |
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2022 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2021-42275?
CVE-2021-42275 is a vulnerability in Microsoft COM for Windows that allows remote code execution.
Which software versions are affected by CVE-2021-42275?
Microsoft Windows 10, Windows 11, Windows 7, Windows 8.1, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows Server 2016, Windows Server 2019, and Windows Server 2022 are affected by CVE-2021-42275.
What is the severity of CVE-2021-42275?
CVE-2021-42275 has a severity score of 8.8 out of 10 (high severity).
How can I fix CVE-2021-42275?
Apply the security patch provided by Microsoft to address the vulnerability.
Where can I find more information about CVE-2021-42275?
You can find more information about CVE-2021-42275 on the Microsoft Security Guidance Advisory at [https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42275](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42275).
- agent/type
- agent/first-publish-date
- agent/author
- agent/softwarecombine
- agent/remedy
- agent/title
- agent/references
- agent/severity
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/tags
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft windows 10
- version/microsoft windows 10/20h2
- version/microsoft windows 10/21h1
- version/microsoft windows 10/1607
- version/microsoft windows 10/1809
- version/microsoft windows 10/1909
- version/microsoft windows 10/2004
- canonical/microsoft windows 11
- canonical/microsoft windows 7
- version/microsoft windows 7/sp1
- canonical/microsoft windows 8.1
- canonical/microsoft windows rt 8.1
- canonical/microsoft windows server 2008
- version/microsoft windows server 2008/sp2
- version/microsoft windows server 2008/r2-sp1
- canonical/microsoft windows server 2012
- version/microsoft windows server 2012/r2
- canonical/microsoft windows server 2016
- version/microsoft windows server 2016/20h2
- version/microsoft windows server 2016/2004
- canonical/microsoft windows server 2019
- canonical/microsoft windows server 2022