Skip to content
← Browse CVEs

CVE-2021-34527

UnscoredEPSS 99.8%CISA KEVCWE-269 · Improper Privilege Management

Microsoft Windows Print Spooler contains an unspecified vulnerability due to the Windows Print Spooler service improperly performing privileged file operations. Successful exploitation allows an attacker to perform remote code execution with SYSTEM privileges. The vulnerability is also known under the moniker of PrintNightmare.

References

NVD MITRE CVE.org CISA KEV

Community ground truth

Community verdict

2 verdicts
Not a real issue

Includes TruePositive's curated baseline from public sources — community verdicts accrue on top.

to add your verdict.

Community real-world severity: Critical (Critical 1 · High 1)

Field notes & remediation

Verdicts are the quick signal — notes are the evidence and fixes behind them.

  • 0
    Field note · Hanna BergCurated

    Print Spooler RCE/LPE. The patch story was a mess — multiple bypasses, and Point-and-Print registry settings could re-open it after patching. Verify the registry hardening, not just the KB.

  • 0
    Remediation · Waleed AzizCurated

    Patch, then set NoWarningNoElevationOnInstall=0 and restrict Point-and-Print. Disable the Spooler on servers that don't print (esp. DCs).