| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2021-26443 | Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability | Windows 11 | Critical | 10-12-2021 |
Technical Information
Brief overview of the risk:
A remote code execution vulnerability in Microsoft VMBus which when exploited can allow guest-to-host escape. An attacker exploiting this vulnerability can escape from the guest machine and perform code execution on the host machine.
Further information on this vulnerability is available at : CVE-2021-26443
Affected Software
Windows 10 Version 1809 for x64-based SystemsWindows Server 2019
Windows Server 2019 (Server Core installation)
Windows 10 Version 1909 for x64-based Systems
Windows 10 Version 21H1 for x64-based Systems
Windows Server 2022
Windows Server 2022 (Server Core installation)
Windows 10 Version 2004 for x64-based Systems
Windows Server version 2004 (Server Core installation)
Windows 10 Version 20H2 for x64-based Systems
Windows Server version 20H2 (Server Core Installation)
Windows 11 for x64-based Systems