Windows 10 1607@* Security Vulnerabilities and Issues — Page 29 of Windows 10 1607@* CVE List

A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0854, CVE-2018-8129, CVE-2018-81...

5.3CVSS6.4AI score0.00718EPSS

CVE•added 2018/07/11 12:29 a.m.•112 views

CVE-2018-8282

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Wind...

7.8CVSS6.7AI score0.00503EPSS

CVE•added 2018/11/14 1:29 a.m.•112 views

CVE-2018-8471

An elevation of privilege vulnerability exists in the way that the Microsoft RemoteFX Virtual GPU miniport driver handles objects in memory, aka "Microsoft RemoteFX Virtual GPU miniport driver Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 8.1, Windows ...

7.8CVSS7.1AI score0.00351EPSS

CVE•added 2020/02/11 10:15 p.m.•112 views

CVE-2020-0731

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0719, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0723, CVE...

7.8CVSS7.7AI score0.00549EPSS

CVE•added 2020/03/12 4:15 p.m.•112 views

CVE-2020-0822

An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations, aka 'Windows Language Pack Installer Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00511EPSS

CVE•added 2020/06/09 8:15 p.m.•112 views

CVE-2020-1202

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector fail to properly handle objects in memory, aka 'Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1203.

7.8CVSS8AI score0.00549EPSS

CVE•added 2020/06/09 8:15 p.m.•112 views

CVE-2020-1247

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1251, CVE-2020-1253, CVE-2020-1310.

7.8CVSS7AI score0.00589EPSS

CVE•added 2021/09/15 12:15 p.m.•112 views

CVE-2021-36959

Windows Authenticode Spoofing Vulnerability

5.5CVSS6.8AI score0.02097EPSS

CVE•added 2021/10/13 1:15 a.m.•112 views

CVE-2021-40463

Windows Network Address Translation (NAT) Denial of Service Vulnerability

7.7CVSS7.9AI score0.11676EPSS

CVE•added 2022/10/11 7:15 p.m.•112 views

CVE-2022-24504

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00263EPSS

CVE•added 2022/09/13 7:15 p.m.•112 views

CVE-2022-35840

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.03169EPSS

CVE•added 2022/10/11 7:15 p.m.•112 views

CVE-2022-38021

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

7CVSS7.6AI score0.00116EPSS

CVE•added 2022/12/13 7:15 p.m.•112 views

CVE-2022-41121

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00188EPSS

CVE•added 2023/02/14 8:15 p.m.•112 views

CVE-2023-21693

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

5.7CVSS5.5AI score0.00634EPSS

CVE•added 2023/04/11 9:15 p.m.•112 views

CVE-2023-28272

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00386EPSS

CVE•added 2023/07/11 6:15 p.m.•112 views

CVE-2023-32038

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.00379EPSS

CVE•added 2024/05/14 5:16 p.m.•112 views

CVE-2024-30014

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

7.5CVSS7AI score0.01729EPSS

CVE•added 2024/05/14 5:17 p.m.•112 views

CVE-2024-30029

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

7.5CVSS7AI score0.01744EPSS

CVE•added 2024/08/13 6:15 p.m.•112 views

CVE-2024-38186

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00294EPSS

CVE•added 2024/11/12 6:15 p.m.•112 views

CVE-2024-43634

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

6.8CVSS6.7AI score0.0037EPSS

CVE•added 2018/05/09 7:29 p.m.•111 views

CVE-2018-8127

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Serv...

5.5CVSS5.3AI score0.0233EPSS

CVE•added 2018/09/13 12:29 a.m.•111 views

CVE-2018-8443

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

5.5CVSS5.7AI score0.03012EPSS

CVE•added 2018/09/13 12:29 a.m.•111 views

CVE-2018-8446

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

5.5CVSS5.7AI score0.03012EPSS

CVE•added 2019/09/11 10:15 p.m.•111 views

CVE-2019-1243

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1241, CVE-2019-1242, CVE-2019-1246, CVE-2019-1247, CVE-2019-1248,...

9.3CVSS8.5AI score0.35463EPSS

CVE•added 2019/09/11 10:15 p.m.•111 views

CVE-2019-1290

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-0788, CVE-2019-1291.

9.3CVSS8.8AI score0.32912EPSS

CVE•added 2020/02/11 10:15 p.m.•111 views

CVE-2020-0657

An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.00511EPSS

CVE•added 2020/03/12 4:15 p.m.•111 views

CVE-2020-0810

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system.An attacker could then run a specially cr...

7.8CVSS8.6AI score0.00404EPSS

CVE•added 2020/04/15 3:15 p.m.•111 views

CVE-2020-0889

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992, CVE-2020-0994,...

9.3CVSS8AI score0.33652EPSS

CVE•added 2020/06/09 8:15 p.m.•111 views

CVE-2020-1317

An elevation of privilege vulnerability exists when Group Policy improperly checks access, aka 'Group Policy Elevation of Privilege Vulnerability'.

9CVSS8.2AI score0.13405EPSS

CVE•added 2020/07/14 11:15 p.m.•111 views

CVE-2020-1362

An elevation of privilege vulnerability exists in the way that the Windows WalletService handles objects in memory, aka 'Windows WalletService Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1344, CVE-2020-1369.

7.8CVSS8.1AI score0.12863EPSS

CVE•added 2020/07/14 11:15 p.m.•111 views

CVE-2020-1408

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'.

9.3CVSS7.3AI score0.12696EPSS

CVE•added 2021/09/15 12:15 p.m.•111 views

CVE-2021-36962

Windows Installer Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00478EPSS

CVE•added 2022/06/15 10:15 p.m.•111 views

CVE-2022-30145

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

7.5CVSS8.2AI score0.0438EPSS

CVE•added 2023/05/31 7:15 p.m.•111 views

CVE-2022-35750

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.04896EPSS

CVE•added 2022/09/13 7:15 p.m.•111 views

CVE-2022-35831

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS7.1AI score0.00204EPSS

CVE•added 2022/10/11 7:15 p.m.•111 views

CVE-2022-37975

Windows Group Policy Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.05362EPSS

CVE•added 2023/03/14 5:15 p.m.•111 views

CVE-2023-24857

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

6.5CVSS6.3AI score0.04108EPSS

CVE•added 2023/04/11 9:15 p.m.•111 views

CVE-2023-28236

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00153EPSS

CVE•added 2024/08/13 6:15 p.m.•111 views

CVE-2024-38198

Windows Print Spooler Elevation of Privilege Vulnerability

7.5CVSS7.6AI score0.01448EPSS

CVE•added 2025/02/11 6:15 p.m.•111 views

CVE-2025-21376

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00512EPSS

CVE•added 2025/04/08 6:16 p.m.•111 views

CVE-2025-29810

Improper access control in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network.

7.5CVSS7.1AI score0.00019EPSS

CVE•added 2025/06/10 5:23 p.m.•111 views

CVE-2025-47160

Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.

5.4CVSS5.4AI score0.00087EPSS

CVE•added 2018/05/09 7:29 p.m.•110 views

CVE-2018-0854

A security feature bypass vulnerability exists in Windows Scripting Host which could allow an attacker to bypass Device Guard, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0958, CVE-2018-81...

5.3CVSS6.3AI score0.00718EPSS

CVE•added 2019/04/09 2:29 a.m.•110 views

CVE-2019-0766

An elevation of privilege vulnerability exists in Windows AppX Deployment Server that allows file creation in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.00274EPSS

Total number of security vulnerabilities2722