13/08/2021

Update on Microsoft Print Spooler Issues (CVE-2021-34481 and CVE-2021-36958)

Please see the latest two updates on the current Print Spooler Issues:

CVE-2021-34481 – 7.8 LPE Vulnerability:

Security Updates are now available for this local privilege escalation vulnerability which does not require user interaction, the full list of fixed operating systems, with links to the applicable security updates is available at: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34481.

Defenders are encouraged to apply these updates in line with their local processes for high severity vulnerabilities.

CVE-2021-36958 / ‘Queue-specific files’ – 7.3 LPE Vulnerability:

Microsoft has now acknowledged the Queue-specific files local privilege escalation vulnerability which does require user interaction, allocating it CVE-2021-36958 and calculating a base CVSSv3.0 score of 7.3 (High)

Defenders are encouraged to monitor https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-36958 for updates from Microsoft.

Advice

Our advice remains unchanged from the above, this is due to CVE-2021-36958 remaining unpatched at this time.

We will provide a further update when Microsoft releases updates for CVE-2021-36958.

Keeping Up To Date With Us Is Easy, Sign Up To Our Newsletter Today!

Stay in touch with emPSN, so that you get the latest e-safety advice and invites to our community events.

Our partners