CVE-2021-31201
Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability
CVSS
—
No CVSS
EPSS
2.6%
p84
KEV
YES
Nov 3, 2021
Exploit Today
75
0-100
Published: — · Last modified: —
2.6%EPSS · 30 days2.6%
2026-06-302026-07-17
Product
Microsoft / Enhanced Cryptographic Provider
Vulnerability
Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability
Added to KEV
Nov 3, 2021
Remediate by
Nov 17, 2021
Known ransomware use
No
Summary description
Microsoft Enhanced Cryptographic Provider contains an unspecified vulnerability that allows for privilege escalation.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-31201
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2021-31199—85.6%
KEV—76Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability—