{"@odata.context":"https://api.msrc.microsoft.com/sug/v2.0/en-US/$metadata#vulnerability/$entity","id":"00000000-0000-0000-0000-0000ecf7feb9","releaseDate":"2021-05-11T07:00:00Z","cveNumber":"CVE-2021-28476","cveTitle":"Windows Hyper-V Remote Code Execution Vulnerability","releaseNumber":"2021-May","vulnType":"Security Vulnerability","latestRevisionDate":"2021-05-11T07:00:00Z","cweList":[],"mitreText":"CVE-2021-28476","mitreUrl":"https://www.cve.org/CVERecord?id=CVE-2021-28476","publiclyDisclosed":"No","exploited":"No","latestSoftwareReleaseId":2,"latestSoftwareRelease":"Exploitation Less Likely","olderSoftwareReleaseId":2,"olderSoftwareRelease":"Exploitation Less Likely","denialOfService":"N/A","tag":"Role: Windows Hyper-V","issuingCna":"Microsoft","severityId":100000001,"severity":"Important","impactId":100000005,"impact":"Remote Code Execution","langCode":"en-US","baseScore":"9.9","temporalScore":"8.6","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C","isMariner":false,"articles":[{"articleType":"FAQ","description":"
Under what circumstances might this vulnerability be exploited other than as a denial of service attack against a Hyper-V host?
\nThis issue allows a guest VM to force the Hyper-V host's kernel to read from an arbitrary, potentially invalid address. The contents of the address read would not be returned to the guest VM. In most circumstances, this would result in a denial of service of the Hyper-V host (bugcheck) due to reading an unmapped address. It is possible to read from a memory mapped device register corresponding to a hardware device attached to the Hyper-V host which may trigger additional, hardware device specific side effects that could compromise the Hyper-V host's security.
\n","ordinal":10000}],"revisions":[{"cveNumber":"CVE-2021-28476","version":1.0000000000,"revisionDate":"2021-05-11T07:00:00Z","initialDate":"0001-01-01T00:00:00Z","description":"Information published.
\n","unformattedDescription":"Information published.","notificationNeeded":false,"notificationSent":false,"sourceId":"642eb1db-0393-eb11-a834-000d3a6d35d9"}]}