Windows 10 1507 Security Vulnerabilities and Issues — Page 37 of Windows 10 1507 CVE List

An elevation of privilege vulnerability exists in the way that the dnsrslvr.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially craft...

7.8CVSS8.1AI score0.00502EPSS

CVE•added 2020/09/11 5:15 p.m.•86 views

CVE-2020-0921

Microsoft Graphics Component Denial of Service Vulnerability

5.5CVSS6.7AI score0.01084EPSS

CVE•added 2020/09/11 5:15 p.m.•86 views

CVE-2020-1256

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

6.5CVSS6.4AI score0.158EPSS

CVE•added 2020/09/11 5:15 p.m.•86 views

CVE-2020-1471

An elevation of privilege vulnerability exists when Microsoft Windows CloudExperienceHost fails to check COM objects. An attacker who successfully exploited the vulnerability could gain elevated privileges on a targeted system.To exploit the vulnerability, an attacker would have to log on to an aff...

7.8CVSS7.7AI score0.01427EPSS

CVE•added 2020/10/16 11:15 p.m.•86 views

CVE-2020-16912

An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The ...

7.8CVSS8.2AI score0.00542EPSS

CVE•added 2021/01/12 8:15 p.m.•86 views

CVE-2021-1684

Microsoft is aware of the "Impersonation in the Passkey Entry Protocol" vulnerability. For more information regarding the vulnerability, please see this statement from the Bluetooth SIG.To address the vulnerability, Microsoft has released a software update that will fail attempts to pair if the rem...

5.5CVSS6.5AI score0.03167EPSS

CVE•added 2021/12/15 3:15 p.m.•86 views

CVE-2021-43232

Windows Event Tracing Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.01601EPSS

CVE•added 2021/12/15 3:15 p.m.•86 views

CVE-2021-43234

Windows Fax Service Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00768EPSS

CVE•added 2022/09/13 7:15 p.m.•86 views

CVE-2022-34728

Windows Graphics Component Information Disclosure Vulnerability

5.5CVSS7AI score0.01176EPSS

CVE•added 2023/07/11 6:15 p.m.•86 views

CVE-2023-35308

Windows MSHTML Platform Security Feature Bypass Vulnerability

6.5CVSS7.8AI score0.01019EPSS

CVE•added 2023/07/11 6:15 p.m.•86 views

CVE-2023-35316

Remote Procedure Call Runtime Information Disclosure Vulnerability

6.5CVSS7.7AI score0.0339EPSS

CVE•added 2024/07/09 5:15 p.m.•86 views

CVE-2024-37986

Secure Boot Security Feature Bypass Vulnerability

8CVSS8.4AI score0.01418EPSS

CVE•added 2024/07/09 5:15 p.m.•86 views

CVE-2024-38010

Secure Boot Security Feature Bypass Vulnerability

8CVSS8.1AI score0.01306EPSS

CVE•added 2024/07/09 5:15 p.m.•86 views

CVE-2024-38105

Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

6.5CVSS7.6AI score0.0079EPSS

CVE•added 2024/09/10 5:15 p.m.•86 views

CVE-2024-38254

Windows Authentication Information Disclosure Vulnerability

6.2CVSS7AI score0.00227EPSS

CVE•added 2024/12/12 2:4 a.m.•86 views

CVE-2024-49088

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00461EPSS

CVE•added 2025/03/11 5:16 p.m.•86 views

CVE-2025-24055

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack.

4.3CVSS4.1AI score0.00083EPSS

CVE•added 2025/03/11 5:16 p.m.•86 views

CVE-2025-24066

Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

7.8CVSS7.9AI score0.0009EPSS

CVE•added 2025/04/08 6:15 p.m.•86 views

CVE-2025-26668

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

7.5CVSS8.1AI score0.0006EPSS

CVE•added 2025/06/10 5:22 p.m.•86 views

CVE-2025-32720

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00071EPSS

CVE•added 2020/09/11 5:15 p.m.•85 views

CVE-2020-0790

A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited the vulnerability could elevate privileges on an affected system from low-integrity to medium-integrity.This vulnerability by itself does not allow arbitrary code ex...

7.8CVSS8.4AI score0.00512EPSS

CVE•added 2020/11/11 7:15 a.m.•85 views

CVE-2020-17007

Windows Error Reporting Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00311EPSS

CVE•added 2020/11/11 7:15 a.m.•85 views

CVE-2020-17028

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00514EPSS

CVE•added 2021/01/12 8:15 p.m.•85 views

CVE-2021-1681

Windows WalletService Elevation of Privilege Vulnerability