Exploit for #VU55140 Improper access control in Windows and Windows Server

Vulnerability identifier: #VU55140

Vulnerability risk: Low

CVSSv4.0: 8.4 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:A/U:Clear]

CVE-ID: CVE-2021-36934

CWE-ID: CWE-284

Exploitation vector: Local

Exploits in database: 14

• August 23, 2023
  • CVE-2021-36934 (C# PoC for CVE-2021-36934/HiveNightmare/SeriousSAM) [Github]
• September 21, 2021
  • CVE-2021-36934-export-shadow-volume-POC () [Github]
• August 12, 2021
  • oxide_hive (Exploit for CVE-2021-36934) [Github]
• August 11, 2021
  • CVE-2021-36934_export_shadow_volume () [Github]
• August 2, 2021
  • poc_CVE-2021-36934 (POC experiments with Volume Shadow copy Service (VSS)) [Github]
• July 29, 2021
  • Windows SAM secrets leak - HiveNightmare [Metasploit]
• July 26, 2021
  • CVE-2021-36934 () [Github]
• July 25, 2021
  • CVE-2021-36934 (C# PoC for CVE-2021-36934/HiveNightmare/SeriousSAM) [Github]
  • ShadowSteal (Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation) [Github]
  • HiveNightmare (HiveNightmare/SeriousSAM（CVE_2021_36934）) [Github]
  • PyNightmare (PoC for CVE-2021-36934 Aka HiveNightmare/SeriousSAM written in python3) [Github]
  • SeriousSam (HiveNightmare a.k.a. SeriousSam Local Privilege Escalation in Windows – CVE-2021-36934) [Github]
  • Invoke-HiveDreams (A capability to identify and remediate CVE-2021-36934 (HiveNightmare)) [Github]
  • Invoke-HiveNightmare (PoC for CVE-2021-36934, which enables a standard user to be able to retrieve the SAM, Security, and Software Registry hives in Windows 10 version 1809 or newer) [Github]

Vulnerable software:
Windows
Operating systems & Components / Operating system
Windows Server
Operating systems & Components / Operating system

Vendor: Microsoft