CVE-2021-36958

Name of the Vulnerable Software and Affected Versions Windows Print Spooler (affected versions not specified)

Description A remote code execution issue exists due to the Windows Print Spooler service improperly performing privileged file operations. This allows an attacker to run arbitrary code with SYSTEM privileges, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. The vulnerability can be exploited by sending a specially crafted request, potentially allowing attackers to execute arbitrary code and affect the system.

Recommendations To prevent exploitation, stop and disable the Print Spooler service. As a temporary workaround, consider disabling the Print Spooler service to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.