CVE-2021-36955

Known Exploited (CISA KEV)HIGH

7.8

CVSS Severity Score

EPSS Score45.2680%

EPSS Percentile91.12th

PublishedSep 15, 2021

Last ModifiedOct 30, 2025

Vulnerability Description

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Affected Platforms (CPE)

💻

Microsoft

Windows 10 1507

< 10.0.10240.19060

💻

Microsoft

Windows 10 1607

< 10.0.14393.4651

💻

Microsoft

Windows 10 1809

< 10.0.17763.2183

💻

Microsoft

Windows 10 1909

< 10.0.18363.1801

💻

Microsoft

Windows 10 2004

< 10.0.19041.1237

💻

Microsoft

Windows 10 20h2

< 10.0.19042.1237

💻

Microsoft

Windows 10 21h1

< 10.0.19043.1237

💻

Microsoft

Windows 7

All versions

💻

Microsoft

Windows 8.1

All versions

💻

Microsoft

Windows Rt 8.1

All versions

💻

Microsoft

Windows Server 2004

< 10.0.19041.1237

💻

Microsoft

Windows Server 2008

All versions

💻

Microsoft

Windows Server 2008

= r2

💻

Microsoft

Windows Server 2012

All versions

💻

Microsoft

Windows Server 2012

All versions

💻

Microsoft

Windows Server 2016

< 10.0.14393.4651

💻

Microsoft

Windows Server 2019

< 10.0.17763.2183

💻

Microsoft

Windows Server 2022

< 10.0.20348.230

💻

Microsoft

Windows Server 20h2

< 10.0.19042.1237

References & Advisories

🔗 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36955

🔗 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-36955

Vulnerability Description

Affected Platforms (CPE)

Windows 10 1507

Windows 10 1607

Windows 10 1809

Windows 10 1909

Windows 10 2004

Windows 10 20h2

Windows 10 21h1

Windows 7

Windows 8.1

Windows Rt 8.1

Windows Server 2004

Windows Server 2008

Windows Server 2008

Windows Server 2012

Windows Server 2012

Windows Server 2016

Windows Server 2019

Windows Server 2022

Windows Server 20h2

References & Advisories

Related Vulnerabilities