CVE-2021-31955
5.5MEDIUMWindows Kernel Information Disclosure Vulnerability
Published: 6/8/2021Updated: 10/30/2025
CISA Known Exploited Vulnerability
Microsoft Windows Kernel contains an unspecified vulnerability that allows for information disclosure. Successful exploitation allows attackers to read the contents of kernel memory from a user-mode process.
Required Action:
Apply updates per vendor instructions.
Due Date:
2021-11-17
Description
Windows Kernel Information Disclosure Vulnerability
AI AnalysisPowered by AI
Affected Products
microsoftwindows_10_1809
microsoftwindows_10_1909
microsoftwindows_10_2004
microsoftwindows_10_20h2
microsoftwindows_10_21h1
microsoftwindows_server_2004
microsoftwindows_server_2019
microsoftwindows_server_20h2
References
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31955PatchVendor Advisory
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31955PatchVendor Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-31955US Government Resource