CVE-2021-42278 - Microsoft Active Directory Domain Services Privilege Escalation Vulnerability

CVE ID:CVE-2021-42278

Project:Microsoft

Product:Active Directory

Date Added:2022-04-11Due Date:2022-05-02

Vulnerability Name

Microsoft Active Directory Domain Services Privilege Escalation Vulnerability

Description

Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2021-42278

Related News Articles

RansomHub Becomes 2024's Top Ransomware Group, Hitting 600+ Organizations GloballyFebruary 14, 2025

CosmicBeetle Deploys Custom ScRansom Ransomware, Partnering with RansomHubSeptember 10, 2024

NoName ransomware gang deploying RansomHub malware in recent attacksSeptember 10, 2024

Latest Security News

Top CVE List

Top Alert List

CSP
Content Security Policy (CSP) Header Not Set
MediumAbsence of Anti-CSRF Tokens
MediumMissing Anti-clickjacking Header
InformationalInformation Disclosure - Suspicious Comments
LowCross-Domain JavaScript Source File Inclusion
MediumContent Security Policy (CSP) Header Not Set
LowTimestamp Disclosure - Unix
LowCSP: X-Content-Security-Policy
InformationalRe-examine Cache-control Directives

Common CWEs