CVE-2017-0213

CVE Database · CVE-2017-0213

CVE-2017-0213

· HIGHAnalyzed

CVSS v3.1

7.3

EPSS

84.14%

Published

May 12, 2017

Modified

Apr 22, 2026

CISA Known Exploited Vulnerability

Added: 2022-03-28 · Due: 2022-04-18

Apply updates per vendor instructions.

Public PoC / Exploit (9)

All weaponized →

Exploit-DBMicrosoft Windows - COM Aggregate Marshaler/IRemUnknown2 Type Confusion Privilege Escalation TrickestTrickest PoC index GitHub PoCzcgonvh/CVE-2017-0213★58 GitHub PoCeonrickity/CVE-2017-0213★13 GitHub PoCjbooz1/CVE-2017-0213★1 GitHub PoCshaheemirza/CVE-2017-0213-★0 GitHub PoCbilla3283/CVE-2017-0213★0 GitHub PoClikekabin/CVE-2017-0213★0 GitHub PoCAnonymous-Family/CVE-2017-0213★0

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Windows COM Aggregate Marshaler in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation privilege vulnerability when an attacker runs a specially crafted application, aka "Windows COM Elevation of Privilege Vulnerability". This CVE ID is unique from CVE-2017-0214.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Affected Products (12)

microsoft · windows_10_1507vulnerable

microsoft · windows_10_1511vulnerable

microsoft · windows_10_1607vulnerable

microsoft · windows_10_1703vulnerable

microsoft · windows_7vulnerable

microsoft · windows_8.1vulnerable

microsoft · windows_rt_8.1vulnerable

microsoft · windows_server_2008vulnerable

microsoft · windows_server_2012vulnerable