Windows 10 1607@* Security Vulnerabilities and Issues — Page 30 of Windows 10 1607@* CVE List

A security feature bypass vulnerability exists in Windows Scripting Host which could allow an attacker to bypass Device Guard, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0958, CVE-2018-81...

5.3CVSS6.3AI score0.00558EPSS

CVE•added 2018/05/09 7:29 p.m.•108 views

CVE-2018-8129

A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-0854, CVE-2018-0958, CVE-2018-81...

5.3CVSS6.4AI score0.00558EPSS

CVE•added 2018/06/14 12:29 p.m.•108 views

CVE-2018-8213

A remote code execution vulnerability exists when Windows improperly handles objects in memory, aka "Windows Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8210.

7.8CVSS8.2AI score0.14292EPSS

CVE•added 2019/04/09 2:29 a.m.•108 views

CVE-2019-0766

An elevation of privilege vulnerability exists in Windows AppX Deployment Server that allows file creation in arbitrary locations. To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.00274EPSS

CVE•added 2019/09/11 10:15 p.m.•108 views

CVE-2019-1285

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1256.

7.8CVSS8AI score0.01395EPSS

CVE•added 2020/01/14 11:15 p.m.•108 views

CVE-2020-0631

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627...

7.8CVSS7.7AI score0.00511EPSS

CVE•added 2020/02/11 10:15 p.m.•108 views

CVE-2020-0677

An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The security update addre...

5.5CVSS5.2AI score0.00996EPSS

CVE•added 2020/02/11 10:15 p.m.•108 views

CVE-2020-0681

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0734.

7.6CVSS8.2AI score0.26532EPSS

CVE•added 2020/03/12 4:15 p.m.•108 views

CVE-2020-0810

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system.An attacker could then run a specially cr...

7.8CVSS8.6AI score0.00404EPSS

CVE•added 2020/07/14 11:15 p.m.•108 views

CVE-2020-1408

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'.

9.3CVSS7.3AI score0.12696EPSS

CVE•added 2021/06/08 11:15 p.m.•108 views

CVE-2021-31975

Server for NFS Information Disclosure Vulnerability

7.8CVSS8.1AI score0.14121EPSS

CVE•added 2021/07/14 6:15 p.m.•108 views

CVE-2021-33782

Windows Authenticode Spoofing Vulnerability

5.5CVSS6.7AI score0.01232EPSS

CVE•added 2021/07/14 6:15 p.m.•108 views

CVE-2021-34507

Windows Remote Assistance Information Disclosure Vulnerability

6.5CVSS7.2AI score0.04042EPSS

CVE•added 2021/09/15 12:15 p.m.•108 views

CVE-2021-36972

Windows SMB Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00442EPSS

CVE•added 2021/10/13 1:15 a.m.•108 views

CVE-2021-40478

Storage Spaces Controller Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00496EPSS

CVE•added 2022/01/11 9:15 p.m.•108 views

CVE-2022-21958

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

7.2CVSS8.2AI score0.02021EPSS

CVE•added 2022/02/09 5:15 p.m.•108 views

CVE-2022-21993

Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability

7.8CVSS7.3AI score0.325EPSS

CVE•added 2022/04/15 7:15 p.m.•108 views

CVE-2022-26792

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00373EPSS

CVE•added 2022/04/15 7:15 p.m.•108 views

CVE-2022-26826

Windows DNS Server Remote Code Execution Vulnerability

9CVSS6.9AI score0.10713EPSS

CVE•added 2022/05/10 9:15 p.m.•108 views

CVE-2022-29103

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00437EPSS

CVE•added 2022/12/13 7:15 p.m.•108 views

CVE-2022-41074

Windows Graphics Component Information Disclosure Vulnerability

5.5CVSS6.3AI score0.00819EPSS

CVE•added 2023/06/14 12:15 a.m.•108 views

CVE-2023-32008

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00437EPSS

CVE•added 2023/07/11 6:15 p.m.•108 views

CVE-2023-35302

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.03462EPSS

CVE•added 2023/08/08 6:15 p.m.•108 views

CVE-2023-36912

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS8.4AI score0.0483EPSS

CVE•added 2024/07/09 5:15 p.m.•108 views

CVE-2024-38058

BitLocker Security Feature Bypass Vulnerability

6.8CVSS7.4AI score0.00798EPSS

CVE•added 2018/10/10 1:29 p.m.•107 views

CVE-2018-8333

An Elevation of Privilege vulnerability exists in Filter Manager when it improperly handles objects in memory, aka "Microsoft Filter Manager Elevation Of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Serve...

7CVSS7.1AI score0.01011EPSS

CVE•added 2018/09/13 12:29 a.m.•107 views

CVE-2018-8393

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Win...

9.3CVSS8AI score0.14816EPSS

CVE•added 2018/09/13 12:29 a.m.•107 views

CVE-2018-8424

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8....

6.5CVSS6.3AI score0.16EPSS

CVE•added 2018/09/13 12:29 a.m.•107 views

CVE-2018-8439

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka "Windows Hyper-V Remote Code Execution Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server ...

8.4CVSS7.9AI score0.00751EPSS

CVE•added 2018/10/10 1:29 p.m.•107 views

CVE-2018-8482

An information disclosure vulnerability exists when Windows Media Player improperly discloses file information, aka "Windows Media Player Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2...

3.1CVSS4.9AI score0.02409EPSS

CVE•added 2019/05/16 7:29 p.m.•107 views

CVE-2019-0896

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895,...

9.3CVSS8.1AI score0.29592EPSS

CVE•added 2019/05/16 7:29 p.m.•107 views

CVE-2019-0936

An elevation of privilege vulnerability exists in Microsoft Windows when Windows fails to properly handle certain symbolic links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0734.

7.8CVSS7.5AI score0.08355EPSS

CVE•added 2019/07/29 2:8 p.m.•107 views

CVE-2019-1108

An information disclosure vulnerability exists when the Windows RDP client improperly discloses the contents of its memory, aka 'Remote Desktop Protocol Client Information Disclosure Vulnerability'.

6.5CVSS6.3AI score0.21114EPSS

CVE•added 2019/10/10 2:15 p.m.•107 views

CVE-2019-1318

A spoofing vulnerability exists when Transport Layer Security (TLS) accesses non- Extended Master Secret (EMS) sessions, aka 'Microsoft Windows Transport Layer Security Spoofing Vulnerability'.

5.9CVSS7.1AI score0.05874EPSS

CVE•added 2019/10/10 2:15 p.m.•107 views

CVE-2019-1346

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-1343, CVE-2019-1347.

7.1CVSS7.4AI score0.37278EPSS

CVE•added 2019/12/10 10:15 p.m.•107 views

CVE-2019-1469

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'.

5.5CVSS6AI score0.0075EPSS

CVE•added 2020/03/12 4:15 p.m.•107 views

CVE-2020-0788

7.8CVSS7.6AI score0.13359EPSS

CVE•added 2020/03/12 4:15 p.m.•107 views

CVE-2020-0814

An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerabi...

7.8CVSS6.5AI score0.00646EPSS

CVE•added 2020/07/14 11:15 p.m.•107 views

CVE-2020-1362

An elevation of privilege vulnerability exists in the way that the Windows WalletService handles objects in memory, aka 'Windows WalletService Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1344, CVE-2020-1369.

7.8CVSS8.1AI score0.12863EPSS

CVE•added 2020/07/14 11:15 p.m.•107 views

CVE-2020-1384

An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1359.

7.8CVSS8.5AI score0.00513EPSS

CVE•added 2021/07/14 6:15 p.m.•107 views

CVE-2021-33758

Windows Hyper-V Denial of Service Vulnerability

7.7CVSS7.5AI score0.01299EPSS

CVE•added 2021/07/14 6:15 p.m.•107 views

CVE-2021-33788

Windows LSA Denial of Service Vulnerability

7.5CVSS7.9AI score0.04338EPSS

CVE•added 2021/07/14 6:15 p.m.•107 views

CVE-2021-34491

Win32k Information Disclosure Vulnerability