NATIONAL CRITICAL INFORMATION INFRASTRUCTURE PROTECTION CENTRE (NCIIPC)

A Unit of National Technical Research Organisation




                                         

  CVE - KB Correlation, May 2021  



Published on: 17 May, 2021

Cyber Security Vulnerabilities are usually identified using its unique CVE (Common Vulnerabilities and Exposures) number. However, Microsoft's SCCM (System Center Configuration Manager) provides patch information in the form of Knowledge Base (KB) Articles that are associated to one or more CVEs. Microsoft released updates to address multiple vulnerabilities in its software for the month of May.

Below is the list of CVE IDs, Base Score, Temporal Score and Knowledge Base IDs as released by Microsoft during May 2021:-

S No. CVE Base Score Temporal Score KB
1. CVE-2020-24587 6.5 5.7 KB5003173, KB5003209, KB5003220, KB5003208, KB5003203, KB5003233, KB5003228, KB5003210, KB5003225, KB5003197, KB5003172, KB5003169, KB5003171, KB5003174
2. CVE-2020-24588 6.5 5.7 KB5003197, KB5003172, KB5003173, KB5003169, KB5003171, KB5003174, KB5003209, KB5003220, KB5003208, KB5003203, KB5003233, KB5003228, KB5003210, KB5003225
3. CVE-2020-26144 6.5 5.7 KB5003169, KB5003171, KB5003174, KB5003210, KB5003225, KB5003209, KB5003220, KB5003233, KB5003228, KB5003197, KB5003172, KB5003173, KB5003208, KB5003203
4. CVE-2021-26418 4.6 4 KB5001935, KB5001916, KB5001917
5. CVE-2021-26419 7.5 6.7 KB5003209, KB5003165, KB5003208, KB5003233, KB5003197, KB5003172, KB5003173, KB5003169, KB5003171, KB5003174, KB5003210
6. CVE-2021-26419 6.4 5.8 KB5003209, KB5003165, KB5003208, KB5003233, KB5003197, KB5003172, KB5003173, KB5003169, KB5003171, KB5003174, KB5003210
7. CVE-2021-26421 6.5 5.7 KB5003729
8. CVE-2021-26422 7.2 6.3 KB5003729
9. CVE-2021-27068 8.8 7.7 Release Notes, Release Notes, Release Notes
10. CVE-2021-28455 8.8 7.7 KB5003209, KB5003220, KB5003208, KB5003203, KB5003233, KB5003228, KB5003210, KB5003225, KB5003197, KB5003172, KB5003173, KB5003169, KB5003171, KB5003174, KB4493206, KB4493197, Click to Run, Click to Run, Click to Run
11. CVE-2021-28461 6.1 5.5 Release Notes
12. CVE-2021-28465 7.8 6.8 Microsoft Store Link
13. CVE-2021-28474 8.8 7.7 KB5001935, KB5001916, KB5001917
14. CVE-2021-28476 9.9 8.6 KB5003209, KB5003220, KB5003208, KB5003203, KB5003233, KB5003228, KB5003210, KB5003225, KB5003197, KB5003172, KB5003173, KB5003169, KB5003171, KB5003174
15. CVE-2021-28478 7.6 6.6 KB5001935, KB5001916, KB5001917
16. CVE-2021-28479 5.5 4.8 KB5003171, KB5003174, KB5003209, KB5003220, KB5003208, KB5003203, KB5003197, KB5003172, KB5003173, KB5003169
17. CVE-2021-31165 7.8 6.8 KB5003173
18. CVE-2021-31166 9.8 8.5 KB5003173
19. CVE-2021-31167 7.8 6.8 KB5003173, KB5003169, KB5003171
20. CVE-2021-31168 7.8 6.8 KB5003173
21. CVE-2021-31169 7.8 6.8 KB5003173
22. CVE-2021-31170 7.8 6.8 KB5003174, KB5003173, KB5003169, KB5003171
23. CVE-2021-31171 4.1 3.6 KB5001935, KB5001916, KB5001917
24. CVE-2021-31172 7.1 6.2 KB5001935, KB5001916, KB5001917
25. CVE-2021-31173 5.3 4.8 KB5001935, KB5001916, KB5001917
26. CVE-2021-31174 5.5 4.8 KB5001928, KB5001927, KB5001936, KB5001923, KB5001918, Click to Run, KB5001914, Click to Run, Click to Run
27. CVE-2021-31175 7.8 6.8 KB5001928, KB5001927, KB5001936, KB5001923, KB5001918, Click to Run, KB5001914, Click to Run, Click to Run
28. CVE-2021-31175 N/A N/A KB5001928, KB5001927, KB5001936, KB5001923, KB5001918, Click to Run, KB5001914, Click to Run, Click to Run
29. CVE-2021-31176 7.8 6.8 KB5001925, KB5001920, Click to Run, Click to Run, Click to Run
30. CVE-2021-31177 7.8 6.8 KB5001928, KB5001936, KB5001918, Click to Run, KB5001914, Release Notes, Click to Run, Click to Run
31. CVE-2021-31178 5.5 4.8 KB5001928, KB5001927, KB5001936, KB5001923, KB5001918, Click to Run, KB5001914, Click to Run, Click to Run
32. CVE-2021-31179 7.8 6.8 KB5001914, Click to Run, Click to Run, KB5001928, KB5001927, KB5001936, KB5001923, KB5001918, Click to Run
33. CVE-2021-31180 7.8 6.8 KB5001931, KB4464542, KB5001919, Click to Run, Click to Run, Click to Run
34. CVE-2021-31181 8.8 7.7 KB5001935, KB5001916, KB5001917
35. CVE-2021-31182 7.1 6.2 KB5003209, KB5003220, KB5003233, KB5003228, KB5003197, KB5003172, KB5003173, KB5003169, KB5003171, KB5003174
36. CVE-2021-31184 5.5 4.8 KB5003208, KB5003203, KB5003233, KB5003228, KB5003210, KB5003225, KB5003209, KB5003220, KB5003197, KB5003172, KB5003173, KB5003169, KB5003171, KB5003174
37. CVE-2021-31185 5.5 4.8 KB5003173
38. CVE-2021-31186 7.4 6.4 KB5003209, KB5003220, KB5003208, KB5003203, KB5003233, KB5003228, KB5003210, KB5003225, KB5003197, KB5003172, KB5003173, KB5003169, KB5003171, KB5003174
39. CVE-2021-31187 7.8 6.8 KB5003197, KB5003172, KB5003173, KB5003169, KB5003171, KB5003174
40. CVE-2021-31188 7.8 6.8 KB5003173, KB5003169, KB5003171, KB5003174, KB5003209, KB5003220, KB5003233, KB5003228, KB5003197, KB5003172, KB5003208, KB5003203, KB5003210, KB5003225
41. CVE-2021-31190 7.8 6.8 KB5003171
42. CVE-2021-31191 5.5 4.8 KB5003173, KB5003169, KB5003171, KB5003174
43. CVE-2021-31192 7.3 6.4 KB5003173
44. CVE-2021-31193 7.8 6.8 KB5003209, KB5003220, KB5003208, KB5003203, KB5003233, KB5003228, KB5003210, KB5003225, KB5003197, KB5003172, KB5003173, KB5003169, KB5003171, KB5003174
45. CVE-2021-31194 8.8 7.7 KB5003173, KB5003169, KB5003171, KB5003174, KB5003209, KB5003220, KB5003208, KB5003203, KB5003233, KB5003228, KB5003210, KB5003225, KB5003197, KB5003172
46. CVE-2021-31195 6.5 5.7 KB5003435
47. CVE-2021-31198 7.8 6.8 KB5003435
48. CVE-2021-31200 7.2 6.7 Github Repo
49. CVE-2021-31204 7.3 6.4 Release Notes, Release Notes, Release Notes, Release Notes, Release Notes
50. CVE-2021-31205 4.3 3.8 KB5003173
51. CVE-2021-31207 6.6 5.8 KB5003435
52. CVE-2021-31208 7.8 6.8 KB5003173
53. CVE-2021-31209 6.5 5.7 KB5003435
54. CVE-2021-31211 7.8 6.8 Release Notes
55. CVE-2021-31213 7.8 6.8 Release Notes
56. CVE-2021-31214 7.8 6.8 Release Notes
57. CVE-2021-31936 7.4 6.7 Release Notes

References:


  1. https://msrc.microsoft.com/update-guide/releaseNote/2021-May
  2. https://portal.msrc.microsoft.com/en-us/security-guidance