CVE-2021-42278: Microsoft Active Directory Domain Services Privilege Escalation Vulnerability
First published: Wed Nov 10 2021(Updated: )
Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation.
Credit: secure@microsoft.com secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows Server 2008 | =sp2 | |
| Microsoft Windows Server 2008 | =r2-sp1 | |
| Microsoft Windows Server 2012 | ||
| Microsoft Windows Server 2012 | =r2 | |
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2016 | =20h2 | |
| Microsoft Windows Server 2016 | =2004 | |
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2022 | ||
| Microsoft Windows Server 2004 | <10.0.19041.1348 | |
| Microsoft Windows Server 2016 | <10.0.14393.4770 | |
| Microsoft Windows Server 2019 | <10.0.17763.2300 | |
| Microsoft Windows Server 2022 | <10.0.20348.350 | |
| Microsoft Windows Server 20h2 | <10.0.19042.1348 | |
| Microsoft Active Directory | ||
| <10.0.19041.1348 | ||
| =sp2 | ||
| =r2-sp1 | ||
| =r2 | ||
| <10.0.14393.4770 | ||
| <10.0.17763.2300 | ||
| <10.0.20348.350 | ||
| <10.0.19042.1348 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-42278?
CVE-2021-42278 is a Microsoft Active Directory Domain Services Privilege Escalation Vulnerability.
How severe is CVE-2021-42278?
CVE-2021-42278 has a severity rating of 8.8 (high).
Which software is affected by CVE-2021-42278?
Microsoft Active Directory on Windows Server 2008 SP2, Windows Server 2008 R2 SP1, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Windows Server 2016 20h2, Windows Server 2016 2004, Windows Server 2019, and Windows Server 2022 are affected.
How can I fix CVE-2021-42278?
Apply the security updates provided by Microsoft for the affected software.
Where can I find more information about CVE-2021-42278?
You can find more information about CVE-2021-42278 on the Microsoft Security Guidance Advisory page: [CVE-2021-42278](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42278).
- agent/type
- agent/first-publish-date
- agent/author
- agent/remedy
- agent/weakness
- agent/title
- agent/severity
- agent/description
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/bleeping-computer
- source/BleepingComputer
- alias/CVE-2017-0144
- alias/CVE-2020-1472
- alias/CVE-2023-27532
- alias/CVE-2021-42278
- alias/CVE-2021-42287
- alias/CVE-2022-42475
- alias/CVE-2017-0290
- agent/event
- exploited/true
- ransomware/true
- collector/cisa-known-exploited
- source/CISA
- agent/references
- agent/tags
- collector/nvd-cve
- vendor/microsoft
- canonical/microsoft windows server 2008
- version/microsoft windows server 2008/sp2
- version/microsoft windows server 2008/r2-sp1
- canonical/microsoft windows server 2012
- version/microsoft windows server 2012/r2
- canonical/microsoft windows server 2016
- version/microsoft windows server 2016/20h2
- version/microsoft windows server 2016/2004
- canonical/microsoft windows server 2019
- canonical/microsoft windows server 2022
- canonical/microsoft windows server 2004
- canonical/microsoft windows server 20h2
- canonical/microsoft active directory