Windows 10 1507 Security Vulnerabilities and Issues — Page 31 of Windows 10 1507 CVE List

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the vulnerabi...

5.8CVSS6.9AI score0.01283EPSS

CVE•added 2019/08/14 9:15 p.m.•100 views

CVE-2019-1143

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system.There are multiple ways an attacker could exploit th...

5.5CVSS6.7AI score0.00902EPSS

CVE•added 2020/09/11 5:15 p.m.•100 views

CVE-2020-0997

A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user right...

9.3CVSS8.3AI score0.11894EPSS

CVE•added 2020/12/10 12:15 a.m.•100 views

CVE-2020-16964

Windows Backup Engine Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01076EPSS

CVE•added 2020/11/11 7:15 a.m.•100 views

CVE-2020-17040

Windows Hyper-V Security Feature Bypass Vulnerability

9.8CVSS7.9AI score0.03471EPSS

CVE•added 2021/01/12 8:15 p.m.•100 views

CVE-2021-1654

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS

CVE•added 2021/04/13 8:15 p.m.•100 views

CVE-2021-27096

NTFS Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00279EPSS

CVE•added 2021/04/13 8:15 p.m.•100 views

CVE-2021-28315

Windows Media Video Decoder Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01126EPSS

CVE•added 2021/04/13 8:15 p.m.•100 views

CVE-2021-28318

Windows GDI+ Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00542EPSS

CVE•added 2022/01/11 9:15 p.m.•100 views

CVE-2022-21860

Windows AppContracts API Server Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00492EPSS

CVE•added 2022/05/10 9:15 p.m.•100 views

CVE-2022-29105

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.03165EPSS

CVE•added 2022/12/13 7:15 p.m.•100 views

CVE-2022-44675

Windows Bluetooth Driver Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.0637EPSS

CVE•added 2022/12/13 7:15 p.m.•100 views

CVE-2022-44681

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00268EPSS

CVE•added 2023/04/11 9:15 p.m.•100 views

CVE-2023-28241

Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability

7.5CVSS7.4AI score0.03801EPSS

CVE•added 2024/12/12 2:4 a.m.•100 views

CVE-2024-49124

Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00302EPSS

CVE•added 2025/04/08 6:15 p.m.•100 views

CVE-2025-21191

Time-of-check time-of-use (toctou) race condition in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.

7CVSS7.1AI score0.00023EPSS

CVE•added 2025/01/14 6:15 p.m.•100 views

CVE-2025-21241

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00706EPSS

CVE•added 2025/01/14 6:15 p.m.•100 views

CVE-2025-21295

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.01083EPSS

CVE•added 2025/03/11 5:16 p.m.•100 views

CVE-2025-26645

Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

8.8CVSS8.8AI score0.00459EPSS

CVE•added 2019/06/12 2:29 p.m.•99 views

CVE-2019-1046

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

5.5CVSS5.6AI score0.07622EPSS

CVE•added 2019/08/14 9:15 p.m.•99 views

CVE-2019-1180

An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted...

7CVSS7.3AI score0.00229EPSS

CVE•added 2020/10/16 11:15 p.m.•99 views

CVE-2020-16974

An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The ...

7.8CVSS8.2AI score0.00542EPSS

CVE•added 2020/11/11 7:15 a.m.•99 views

CVE-2020-17038

Win32k Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.0073EPSS

CVE•added 2020/11/11 7:15 a.m.•99 views

CVE-2020-17055

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.07947EPSS

CVE•added 2021/01/12 8:15 p.m.•99 views

CVE-2021-1650

Windows Runtime C++ Template Library Elevation of Privilege Vulnerability