PT-2021-3288 · Microsoft · Intune Management Extension

Aapo Oksman

Published

2021-06-08

Updated

2023-12-28

CVE-2021-31980

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Intune Management Extension (affected versions not specified)

Description The issue is related to privilege management errors in the Intune management extension for Windows operating systems. Exploitation of this issue may allow a remote attacker to execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

BDU:2021-03062

CVE-2021-31980

Affected Products

Intune Management Extension

PT-2021-3288 · Microsoft · Intune Management Extension

CVE-2021-31980

Weakness Enumeration

Related Identifiers

Affected Products

References · 6