Microsoft Storage Spaces Controller Driver Windows 10

Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability: Important: Windows Storage Spaces Controller: CVE-2021-34536: Storage Spaces Controller Elevation of Privilege. The Storage Spaces Driver service is a kernel mode driver. If Storage Spaces Driver fails to load or initialize, the error is logged and the computer attempts to restart, using the Last Known Good configuration. If the Last Known Good configuration fails, Windows 10 startup also fails, and the boot process halts with a Stop error. If you disable this service, Windows 10 will fail to start. Name Microsoft Storage Spaces Controller. Manufacturer Microsoft. PNP Device ID ROOT SPACEPORT 0000. Driver c: windows system32 drivers spaceport.sys (10.0.17763.1, 637.80 KB (653,112 bytes), 17:58) Name Samsung NVMe Controller. Manufacturer Samsung Electronics Co., Ltd. Just curious about something. I noticed in device manager that my hard drives are all using Microsoft drivers. I do have the latest firmware installed for them. The manufacturer's website does not have any drivers listed for the drives. Maybe this is just how it is, but I was curious, so I thought I would ask. Samsung SSD 840 PRO Series. Go to your computer or storage device to find and load an available RAID driver. After the device diver has been loaded, Windows 10 installing will successfully detect the hard disk. Then, follow the onscreen instructions to install Windows. Check the Hard Drive in BIOS.

Today is Microsoft's August 2021 Patch Tuesday, and with it comes fixes for three zero-day vulnerabilities and a total of 44 flaws, so please be nice to your Windows admins as they scramble to installed patches.

Microsoft Storage Spaces Controller Driver Windows 10

Microsoft has fixed 44 vulnerabilities (51 including Microsoft Edge) with today's update, with seven classified as Critical and 37 as Important.

Of the 44 vulnerabilities, 13 are remote code execution, eight are information disclosure, two are denial of service, and four are spoofing vulnerabilities.

For information about the non-security Windows updates, you can read about today's Windows 10 KB5005033 & KB5005031 cumulative updates.

Microsoft fixes PrintNightmare and PetitPotam attacks

Microsoft has released security updates for two eagerly anticipated zero-day vulnerabilities that were discovered over the past month.

One of the security updates fixes the PrintNightmare vulnerabilities that allow threat actors to gain SYSTEM level privileges simply by connecting to a remote print server under their control.

Microsoft has fixed this vulnerability by requiring users have administrative privileges to install printer drivers using the Point and Print Windows feature.

You can find more detailed information about the PrintNightmare vulnerability and the Point and Print mitigations in a dedicated article published today.

Microsoft also fixed the PetitPotam NTLM relay attack vector that uses the MS-EFSRPC API to force a device to negotiate with a remote relay server under an attacker's control.

Microsoft Storage Spaces Controller Driver Windows 10 Activation

A threat actor with low privileges could use this attack to take over a domain controller and thus the entire Windows domain.

Three zero-days fixed, with one actively exploited

August's Patch Tuesday includes three zero-day vulnerabilities, with one actively exploited in the wild.

Microsoft classifies a vulnerability as a zero-day if it is publicly disclosed or actively exploited with no official security updates or released.

Microsoft Storage Spaces Controller Driver Windows 10 Downloads

The two publicly disclosed, but not actively exploited, zero-day vulnerabilities are:

Controller

Microsoft Storage Spaces Controller Driver Windows 10 32-bit

  • CVE-2021-36936 - Windows Print Spooler Remote Code Execution Vulnerability
  • CVE-2021-36942 - Windows LSA Spoofing Vulnerability

The CVE-2021-36942 vulnerability is associated with the PetitPotam NTLM relay attack vector that allows the take over of domain controllers.

Finally, one actively exploited elevation of privileges vulnerability was discovered by the Microsoft Security Response Center (MSRC) and Microsoft Threat Intelligence Center (MSTIC).

Microsoft storage spaces controller driver windows 10 downloads
  • CVE-2021-36948 - Windows Update Medic Service Elevation of Privilege Vulnerability

It is unknown how threat actors used this vulnerability in attacks at this time.

Recent updates from other companies

Other vendors who released updates in July include:

  • Adobereleased security updates for two products.
  • Android's August security updates were released last week.
  • Ciscoreleased security updates for numerous products this month.
  • SAPreleased its August 2021 security updates.
  • VMware released security updates for VMware Workspace ONE
Windows

The August 2021 Patch Tuesday Security Updates

Storage

Microsoft Storage Spaces Controller Driver Windows 10 Download

Below is the complete list of resolved vulnerabilities and released advisories in the August 2021 Patch Tuesday updates. To access the full description of each vulnerability and the systems that it affects, you can view the full report here.

TagCVE IDCVE TitleSeverity
.NET Core & Visual StudioCVE-2021-34485.NET Core and Visual Studio Information Disclosure VulnerabilityImportant
.NET Core & Visual StudioCVE-2021-26423.NET Core and Visual Studio Denial of Service VulnerabilityImportant
ASP.NET Core & Visual StudioCVE-2021-34532ASP.NET Core and Visual Studio Information Disclosure VulnerabilityImportant
AzureCVE-2021-36943Azure CycleCloud Elevation of Privilege VulnerabilityImportant
AzureCVE-2021-33762Azure CycleCloud Elevation of Privilege VulnerabilityImportant
Azure SphereCVE-2021-26428Azure Sphere Information Disclosure VulnerabilityImportant
Azure SphereCVE-2021-26430Azure Sphere Denial of Service VulnerabilityImportant
Azure SphereCVE-2021-26429Azure Sphere Elevation of Privilege VulnerabilityImportant
Microsoft Azure Active Directory ConnectCVE-2021-36949Microsoft Azure Active Directory Connect Authentication Bypass VulnerabilityImportant
Microsoft DynamicsCVE-2021-36946Microsoft Dynamics Business Central Cross-site Scripting VulnerabilityImportant
Microsoft DynamicsCVE-2021-36950Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityImportant
Microsoft DynamicsCVE-2021-34524Microsoft Dynamics 365 (on-premises) Remote Code Execution VulnerabilityImportant
Microsoft Edge (Chromium-based)CVE-2021-30591Chromium: CVE-2021-30591 Use after free in File System APIUnknown
Microsoft Edge (Chromium-based)CVE-2021-30592Chromium: CVE-2021-30592 Out of bounds write in Tab GroupsUnknown
Microsoft Edge (Chromium-based)CVE-2021-30597Chromium: CVE-2021-30597 Use after free in Browser UIUnknown
Microsoft Edge (Chromium-based)CVE-2021-30594Chromium: CVE-2021-30594 Use after free in Page Info UIUnknown
Microsoft Edge (Chromium-based)CVE-2021-30596Chromium: CVE-2021-30596 Incorrect security UI in NavigationUnknown
Microsoft Edge (Chromium-based)CVE-2021-30590Chromium: CVE-2021-30590 Heap buffer overflow in BookmarksUnknown
Microsoft Edge (Chromium-based)CVE-2021-30593Chromium: CVE-2021-30593 Out of bounds read in Tab StripUnknown
Microsoft Graphics ComponentCVE-2021-34530Windows Graphics Component Remote Code Execution VulnerabilityCritical
Microsoft Graphics ComponentCVE-2021-34533Windows Graphics Component Font Parsing Remote Code Execution VulnerabilityImportant
Microsoft OfficeCVE-2021-34478Microsoft Office Remote Code Execution VulnerabilityImportant
Microsoft Office SharePointCVE-2021-36940Microsoft SharePoint Server Spoofing VulnerabilityImportant
Microsoft Office WordCVE-2021-36941Microsoft Word Remote Code Execution VulnerabilityImportant
Microsoft Scripting EngineCVE-2021-34480Scripting Engine Memory Corruption VulnerabilityCritical
Microsoft Windows Codecs LibraryCVE-2021-36937Windows Media MPEG-4 Video Decoder Remote Code Execution VulnerabilityImportant
Remote Desktop ClientCVE-2021-34535Remote Desktop Client Remote Code Execution VulnerabilityCritical
Windows Bluetooth ServiceCVE-2021-34537Windows Bluetooth Driver Elevation of Privilege VulnerabilityImportant
Windows Cryptographic ServicesCVE-2021-36938Windows Cryptographic Primitives Library Information Disclosure VulnerabilityImportant
Windows DefenderCVE-2021-34471Microsoft Windows Defender Elevation of Privilege VulnerabilityImportant
Windows Event TracingCVE-2021-34486Windows Event Tracing Elevation of Privilege VulnerabilityImportant
Windows Event TracingCVE-2021-34487Windows Event Tracing Elevation of Privilege VulnerabilityImportant
Windows Event TracingCVE-2021-26425Windows Event Tracing Elevation of Privilege VulnerabilityImportant
Windows MediaCVE-2021-36927Windows Digital TV Tuner device registration application Elevation of Privilege VulnerabilityImportant
Windows MSHTML PlatformCVE-2021-34534Windows MSHTML Platform Remote Code Execution VulnerabilityCritical
Windows NTLMCVE-2021-36942Windows LSA Spoofing VulnerabilityImportant
Windows Print Spooler ComponentsCVE-2021-34483Windows Print Spooler Elevation of Privilege VulnerabilityImportant
Windows Print Spooler ComponentsCVE-2021-36947Windows Print Spooler Remote Code Execution VulnerabilityImportant
Windows Print Spooler ComponentsCVE-2021-36936Windows Print Spooler Remote Code Execution VulnerabilityCritical
Windows Services for NFS ONCRPC XDR DriverCVE-2021-36933Windows Services for NFS ONCRPC XDR Driver Information Disclosure VulnerabilityImportant
Windows Services for NFS ONCRPC XDR DriverCVE-2021-26433Windows Services for NFS ONCRPC XDR Driver Information Disclosure VulnerabilityImportant
Windows Services for NFS ONCRPC XDR DriverCVE-2021-36932Windows Services for NFS ONCRPC XDR Driver Information Disclosure VulnerabilityImportant
Windows Services for NFS ONCRPC XDR DriverCVE-2021-26432Windows Services for NFS ONCRPC XDR Driver Remote Code Execution VulnerabilityCritical
Windows Services for NFS ONCRPC XDR DriverCVE-2021-36926Windows Services for NFS ONCRPC XDR Driver Information Disclosure VulnerabilityImportant
Windows Storage Spaces ControllerCVE-2021-34536Storage Spaces Controller Elevation of Privilege VulnerabilityImportant
Windows TCP/IPCVE-2021-26424Windows TCP/IP Remote Code Execution VulnerabilityCritical
Windows UpdateCVE-2021-36948Windows Update Medic Service Elevation of Privilege VulnerabilityImportant
Windows Update AssistantCVE-2021-36945Windows 10 Update Assistant Elevation of Privilege VulnerabilityImportant
Windows Update AssistantCVE-2021-26431Windows Recovery Environment Agent Elevation of Privilege VulnerabilityImportant
Windows User Profile ServiceCVE-2021-34484Windows User Profile Service Elevation of Privilege VulnerabilityImportant
Windows User Profile ServiceCVE-2021-26426Windows User Account Profile Picture Elevation of Privilege VulnerabilityImportant

Related Articles: