{"@odata.context":"https://api.msrc.microsoft.com/sug/v2.0/sugodata/v2.0/en-US/$metadata#vulnerability/$entity","id":"00000000-0000-0000-0000-00008454387a","releaseDate":"2021-07-13T07:00:00Z","cveNumber":"CVE-2021-33757","cveTitle":"Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability","releaseNumber":"2021-Jul","vulnType":"Security Vulnerability","latestRevisionDate":"2021-07-13T07:00:00Z","cweList":[],"cweDetailsListForSearch":[],"mitreText":"CVE-2021-33757","mitreUrl":"https://www.cve.org/CVERecord?id=CVE-2021-33757","publiclyDisclosed":"No","exploited":"No","latestSoftwareReleaseId":2,"latestSoftwareRelease":"Exploitation Less Likely","olderSoftwareReleaseId":2,"olderSoftwareRelease":"Exploitation Less Likely","denialOfService":"N/A","tag":"Windows Security Account Manager","issuingCna":"Microsoft","issuingCnaId":0,"severityId":100000001,"severity":"Important","impactId":100000007,"impact":"Security Feature Bypass","langCode":"en-US","baseScore":"5.3","temporalScore":"4.6","vectorString":"CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C","isMariner":false,"customerActionRequired":true,"customerActionRequiredId":0,"cweDetailsList":[],"articles":[{"articleType":"FAQ","description":"<p><strong>How do the security updates released on July 13, 2021 provide protections for CVE-2021-33757?</strong></p>\n<p>After the security updates released on July 13, 2021 or later are installed, Advanced Encryption Standard (AES) encryption will be the preferred method when using the MS-SAMR protocol to change or set account passwords on Windows clients if AES encryption is supported by the SAM server. Please see [KB5004605: Update adds AES encryption protections for CVE-2021-33757[(https://support.microsoft.com/help/5004605) for the following information:</p>\n<ul>\n<li>Changes made by this update</li>\n<li>How does this new behavior work?</li>\n<li>Event logging</li>\n<li>Registry settings</li>\n<li>FAQ</li>\n</ul>\n","ordinal":10000}],"revisions":[{"cveNumber":"CVE-2021-33757","version":1,"revisionDate":"2021-07-13T07:00:00Z","initialDate":"0001-01-01T00:00:00Z","description":"<p>Information published.</p>\n","unformattedDescription":"Information published.","notificationNeeded":false,"notificationSent":false,"sourceId":"266395f4-e6c7-eb11-a83f-000d3a6d3364"}]}