Detection of CVE-2021-28550

%3CLINGO-SUB%20id%3D%22lingo-sub-2348504%22%20slang%3D%22en-US%22%3EDetection%20of%20CVE-2021-28550%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2348504%22%20slang%3D%22en-US%22%3E%3CP%3EI%20would%20like%20to%20know%20whether%20Defender%20for%20Endpoint%20has%20detection%20capabilities%20for%26nbsp%3BCVE-2021-28550%3F%20I%20can%20see%20in%20the%20MDE%20Portal%20Vulnerability%20Management%20this%20CVE%20is%20listed%2C%20but%20I'm%20not%20100%25%20sure%20if%20this%20also%20means%20the%20exploit%20of%20this%20cve%20will%20be%20detected.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2348504%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ECVE-2021-28550%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2352241%22%20slang%3D%22en-US%22%3ERe%3A%20Detection%20of%20CVE-2021-28550%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2352241%22%20slang%3D%22en-US%22%3EHi%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1052057%22%20target%3D%22_blank%22%3E%40Juulw%3C%2FA%3E%20%2C%3CBR%20%2F%3E%3CBR%20%2F%3EI%20don't%20know%20if%20I%20understood%20you%20right.%20You%20want%20to%20know%20if%20your%20Defender%20is%20able%20to%20detect%20a%20patched%20CVE%3F%20If%20so-%20there%20is%20no%20need%20to%20because%20if%20it's%20fixed%2C%20it%20can't%20be%20abused%20anymore.%3CBR%20%2F%3E%3CBR%20%2F%3EBest%20regards%2C%3CBR%20%2F%3ESchnittlauch%3CBR%20%2F%3E%3CBR%20%2F%3E%22First%2C%20No%20system%20is%20safe.%20Second%2C%20Aim%20for%20the%20impossible.%20Third%20no%20Backup%2C%20no%20Mercy%22%20-%20Schnittlauch%3CBR%20%2F%3E%3CBR%20%2F%3EMy%20answer%20helped%20you%3F%20Don't%20forget%20to%20leave%20a%20like.%20Also%20mark%20the%20answer%20as%20solved%20when%20your%20problem%20is%20solved.%20%3A)%3C%2Fimg%3E%3C%2FLINGO-BODY%3E
New Contributor

I would like to know whether Defender for Endpoint has detection capabilities for CVE-2021-28550? I can see in the MDE Portal Vulnerability Management this CVE is listed, but I'm not 100% sure if this also means the exploit of this cve will be detected.

2 Replies
Hi @Juulw ,

I don't know if I understood you right. You want to know if your Defender is able to detect a patched CVE? If so- there is no need to because if it's fixed, it can't be abused anymore.

Best regards,
Schnittlauch

"First, No system is safe. Second, Aim for the impossible. Third no Backup, no Mercy" - Schnittlauch

My answer helped you? Don't forget to leave a like. Also mark the answer as solved when your problem is solved. :)

@Schnittlauch Thanks for the reply. What I meant was if Defender is able to detect exploitation of this CVE on systems that have not been patched yet. Do you happen to know if Defender is capable of that?