Microsoft could not patch this vulnerability

Threat Advisories

Microsoft could not patch this vulnerability

THREAT LEVEL: Red.

For a detailed advisory, download the pdf file here.

Microsoft released patches for 44 vulnerabilities on November 9th. CVE-2021-41379 was among them. However, installing this patch does not completely eliminate the vulnerability.

An exploit for a new Windows zero-day local privilege elevation vulnerability that grants admin privileges in Windows 10, Windows 11, and Windows Server has been publicly disclosed by a security researcher, Abdelhamid Naceri.

CVE-2021-41379  is a privilege escalation vulnerability that allows an attacker with limited access on a compromised system to move laterally within the same network. All the versions of Windows 10, Windows 11 and Windows server are affected by this vulnerability.

After examining Microsoft’s fix,, the security researcher who discovered this vulnerability, discovered a bypass of the patch as well as a more powerful new zero-day privilege elevation vulnerability.

There are currently no workarounds for this vulnerability. Any attempt to directly patch the binary will result in a failure of the Windows installer. We must wait for Microsoft to resolve this issue.

Vulnerability Details

References

https://www.bleepingcomputer.com/news/microsoft/new-windows-zero-day-with-public-exploit-lets-you-become-an-admin/

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-41379