Skip to main content

Windows 10 1909 CVE-2021-33739

HIGH
2021-06-08 secure@microsoft.com
8.4
CVSS 3.1 · Vendor: microsoft
Share

Severity by source

Vendor (microsoft) PRIMARY
8.4 HIGH
AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from Vendor (microsoft) · only source for this CVE.

CVSS VectorVendor: microsoft

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Added to CISA KEV
Jul 14, 2026 - 04:22 CISA
CVE Published
Jun 08, 2021 - 23:15 cve.org
HIGH 8.4

DescriptionCVE.org

Microsoft DWM Core Library Elevation of Privilege Vulnerability

AnalysisAI

Microsoft DWM Core Library Elevation of Privilege Vulnerability. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity.

Technical ContextAI

Microsoft DWM Core Library Elevation of Privilege Vulnerability Affected products include: Microsoft Windows 10 1909, Microsoft Windows 10 2004, Microsoft Windows 10 20H2, Microsoft Windows 10 21H1, Microsoft Windows Server 2004.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2020-0796 CRITICAL POC
10.0 Mar 12

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol h

CVE-2021-40449 HIGH POC
7.8 Oct 13

Win32k Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity

CVE-2021-1675 HIGH POC
7.8 Jun 08

Windows Print Spooler Remote Code Execution Vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no auth

CVE-2020-1054 HIGH POC
7.8 May 21

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle o

CVE-2020-0787 HIGH POC
7.8 Mar 12

An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperl

CVE-2022-26904 HIGH POC
7.0 Apr 15

Windows User Profile Service Elevation of Privilege Vulnerability. Rated high severity (CVSS 7.0).

CVE-2022-26923 HIGH POC
8.8 May 10

Active Directory Domain Services Elevation of Privilege Vulnerability. Rated high severity (CVSS 8.8), this vulnerabilit

CVE-2020-0601 HIGH POC
8.1 Jan 14

A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) c

CVE-2020-1464 HIGH POC
7.8 Aug 17

A spoofing vulnerability exists when Windows incorrectly validates file signatures. Rated high severity (CVSS 7.8), this

CVE-2020-1027 HIGH POC
7.8 Apr 15

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Window

CVE-2020-0683 HIGH POC
7.8 Feb 11

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'W

CVE-2022-26934 MEDIUM
6.5 May 10

Windows Graphics Component Information Disclosure Vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is

Share

CVE-2021-33739 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy