A researcher has unearthed an easily exploitable vulnerability (CVE-2021-36934) in Windows 10 that may allow local non-administrative users to gain administrative-level privileges. yarh- by now its safe to say that win 10 also vulnerable. — Jonas L (@jonasLyk) July 19, 2021 About CVE-2021-36934 “An elevation of privilege vulnerability exists because of overly permissive Access Control Lists (ACLs) on multiple system files, including the Security Accounts Manager (SAM) database. An attacker who successfully exploited this vulnerability … More

The post Easily exploitable, unpatched Windows privilege escalation flaw revealed (CVE-2021-36934) appeared first on Help Net Security.

By admin