Hello everyone,
CVE-2021-34527, an RCE vulnerability, dubbed PrintNightmare affects Windows print spooler. The print spooler is a default component in all Windows systems that allows the computer to interact with the printer and order the print jobs in your queue. This vulnerability is due to improper privileged file operations performed by the print spooler. It's a critical vulnerability that allows attackers to remotely execute code with system-level privileges on affected machines. After security researchers accidentally published proof-of-concept (PoC) exploit code, Microsoft has now issued out-of-band security updates to address the flaw. All versions of Windows are vulnerable.
Resolution:
Patch Manager Plus supports patches for CVE-2021-34527.
Note: Update the vulnerability database and scan all the machines in your network to detect missing patches associated with CVE-2021-34527.
To patch the vulnerability from the console,
Navigate to patches > Top priority patches.
Select "ZeroDay_CVE-2021-34527" in the Vulnerability Type filter.
All the patches fixing CVE-2021-34527 will be displayed.
Select the patches and click on Install Patch.
Alternatively, you can find the relevant patches in this missing patches view by searching for the bulletin ID/Patch ID mentioned below:
Bulletin ID | Patch ID |
MS21-JUL14 | 31697 31696 31690 31691 31692 31694 31695 31693 |
MS21-JUL13 | 31683 31684 31686 31688 31682 31687 31689 31681 31680 31679 31678 31677 31676 31675 |
MS21-JUL12 | 31673 31674 31667 31668 31669 31671 31672 31670 |
Update (8/07/2021):
You can find patches for those operating systems in the missing patches view by searching for the bulletin ID/Patch ID mentioned below:
Bulletin ID | Patch ID |
MS21-JUL14 | 31701 |
MS21-JUL13 | 31700 |
MS21-JUL12 | 31702 |