CVE-2021-34484

Known Exploited (CISA KEV)HIGH

7.8

CVSS Severity Score

EPSS Score34.1350%

EPSS Percentile90.29th

PublishedAug 12, 2021

Last ModifiedOct 30, 2025

Vulnerability Description

Windows User Profile Service Elevation of Privilege Vulnerability

Affected Platforms (CPE)

💻

Microsoft

Windows 10 1507

< 10.0.10240.19022

💻

Microsoft

Windows 10 1607

< 10.0.14393.4583

💻

Microsoft

Windows 10 1809

< 10.0.17763.2114

💻

Microsoft

Windows 10 1909

< 10.0.18363.1734

💻

Microsoft

Windows 10 2004

< 10.0.19041.1165

💻

Microsoft

Windows 10 20h2

< 10.0.19042.1165

💻

Microsoft

Windows 10 21h1

< 10.0.19043.1165

💻

Microsoft

Windows 7

All versions

💻

Microsoft

Windows 8.1

All versions

💻

Microsoft

Windows Rt 8.1

All versions

💻

Microsoft

Windows Server 2004

< 10.0.19041.1165

💻

Microsoft

Windows Server 2008

All versions

💻

Microsoft

Windows Server 2008

= r2

💻

Microsoft

Windows Server 2012

All versions

💻

Microsoft

Windows Server 2012

= r2

💻

Microsoft

Windows Server 2016

< 10.0.14393.4583

💻

Microsoft

Windows Server 2019

< 10.0.17763.2114

💻

Microsoft

Windows Server 20h2

< 10.0.19042.1165

References & Advisories

🔗 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34484

🔗 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-34484

Vulnerability Description

Affected Platforms (CPE)

Windows 10 1507

Windows 10 1607

Windows 10 1809

Windows 10 1909

Windows 10 2004

Windows 10 20h2

Windows 10 21h1

Windows 7

Windows 8.1

Windows Rt 8.1

Windows Server 2004

Windows Server 2008

Windows Server 2008

Windows Server 2012

Windows Server 2012

Windows Server 2016

Windows Server 2019

Windows Server 20h2

References & Advisories

Related Vulnerabilities