picoCTF Solutions
picoCTF 2022Binary ExploitationMedium

CVE-XXXX-XXXX

Published: July 20, 2023Updated: December 9, 2025

Description

The prompt only describes the first Windows Print Spooler remote code execution vulnerability disclosed in 2021. Identify the matching CVE and submit it in the picoCTF flag format.

Setup

View CVE-2021-34527

Search for the quoted clue (first 2021 Windows Print Spooler RCE) and note that every result references PrintNightmare.

Open the CVE database entry to verify the identifier CVE-2021-34527.

Wrap that ID in the picoCTF format: `picoCTF{CVE-2021-34527}`.

Solution

  1. Step 1Pivot on the clue
    Plugging the provided description into any search engine immediately surfaces Microsoft advisories for PrintNightmare, the bug tracked as CVE-2021-34527.
  2. Step 2Submit the CVE
    The challenge only needs the numeric portion formatted as `picoCTF{CVE-2021-34527}`. No downloads or binaries are required.

Flag

picoCTF{CVE-2021-34527}

This is the PrintNightmare vulnerability affecting the Windows Print Spooler service.