Windows 10 1803 Security Vulnerabilities and Issues — Windows 10 1803 CVE List

Lucene search

MicrosoftWindows 10 1803

94 matches found

CVE•added 2019/04/09 12:29 a.m.•1058 views

CVE-2019-0703

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0704, CVE-2019-0821.

6.5CVSS6.8AI score0.14208EPSS

CVE•added 2019/04/09 3:29 a.m.•236 views

CVE-2019-0821

6.5CVSS6.8AI score0.14208EPSS

CVE•added 2019/07/15 7:15 p.m.•179 views

CVE-2019-1094

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1095, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116.

6.5CVSS6.1AI score0.12437EPSS

CVE•added 2020/02/11 10:15 p.m.•178 views

CVE-2020-0689

A security feature bypass vulnerability exists in secure boot, aka 'Microsoft Secure Boot Security Feature Bypass Vulnerability'.

6.7CVSS6.8AI score0.00158EPSS

CVE•added 2019/07/15 7:15 p.m.•171 views

CVE-2019-0966

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'.

6.8CVSS6.5AI score0.00339EPSS

CVE•added 2019/09/11 10:15 p.m.•169 views

CVE-2019-1244

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1245, CVE-2019-1251.

6.5CVSS6.2AI score0.27638EPSS

CVE•added 2020/10/16 11:15 p.m.•148 views

CVE-2020-16910

A security feature bypass vulnerability exists when Microsoft Windows fails to handle file creation permissions, which could allow an attacker to create files in a protected Unified Extensible Firmware Interface (UEFI) location.To exploit this vulnerability, an attacker could run a specia...

6.2CVSS7AI score0.02409EPSS

CVE•added 2019/04/09 12:29 a.m.•135 views

CVE-2019-0690

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0695, CVE-2019-0701.

6.8CVSS6.9AI score0.00375EPSS

CVE•added 2019/06/12 2:29 p.m.•131 views

CVE-2019-0713

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual mach...

6.8CVSS7.1AI score0.00518EPSS

CVE•added 2019/03/06 12:0 a.m.•129 views

CVE-2019-0660

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/05/16 7:29 p.m.•129 views

CVE-2019-0882

6.5CVSS6.2AI score0.25343EPSS

CVE•added 2019/03/06 12:0 a.m.•128 views

CVE-2019-0602

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0660, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/03/06 12:0 a.m.•128 views

CVE-2019-0616

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0619, CVE-2019-0660, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/04/09 9:29 p.m.•128 views

CVE-2019-0802

6.5CVSS6.7AI score0.22134EPSS

CVE•added 2018/08/15 5:29 p.m.•127 views

CVE-2018-8398

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8....

6.5CVSS5.7AI score0.14286EPSS

CVE•added 2019/03/06 12:0 a.m.•126 views

CVE-2019-0619

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0616, CVE-2019-0660, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/03/06 12:0 a.m.•126 views

CVE-2019-0635

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Information Disclosure Vulnerability'.

6.2CVSS6.8AI score0.00573EPSS

CVE•added 2019/04/09 9:29 p.m.•124 views

CVE-2019-0849

6.5CVSS6.7AI score0.22134EPSS

CVE•added 2019/03/06 12:0 a.m.•123 views

CVE-2019-0615

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0616, CVE-2019-0619, CVE-2019-0660, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/12/10 10:15 p.m.•121 views

CVE-2019-1467

6.5CVSS6.7AI score0.26055EPSS

CVE•added 2019/04/09 3:29 a.m.•119 views

CVE-2019-0774

6.5CVSS6.7AI score0.25343EPSS

CVE•added 2019/07/15 7:15 p.m.•119 views

CVE-2019-1095

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1094, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116.

6.5CVSS6.1AI score0.12437EPSS

CVE•added 2018/08/15 5:29 p.m.•116 views

CVE-2018-8394

6.5CVSS5.7AI score0.14286EPSS

CVE•added 2019/06/12 2:29 p.m.•116 views

CVE-2019-1010

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

6.5CVSS5.6AI score0.07622EPSS

CVE•added 2018/12/12 12:29 a.m.•115 views

CVE-2018-8596

6.5CVSS7.1AI score0.27405EPSS

CVE•added 2019/04/09 12:29 a.m.•113 views

CVE-2019-0695

6.8CVSS6.9AI score0.00375EPSS

CVE•added 2019/08/14 9:15 p.m.•113 views

CVE-2019-0716

A denial of service vulnerability exists when Windows improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.To exploit this vulnerability, an attacker would have to log on to an affected system and run a special...

6.8CVSS7.1AI score0.00965EPSS

CVE•added 2018/12/12 12:29 a.m.•112 views

CVE-2018-8595

6.5CVSS7.1AI score0.27405EPSS

CVE•added 2019/09/11 10:15 p.m.•112 views

CVE-2019-1245

6.5CVSS6.2AI score0.27638EPSS

CVE•added 2019/06/12 2:29 p.m.•110 views

CVE-2019-1012

6.5CVSS5.6AI score0.07622EPSS

CVE•added 2018/09/13 12:29 a.m.•107 views

CVE-2018-8424

6.5CVSS6.3AI score0.16EPSS

CVE•added 2019/06/12 2:29 p.m.•107 views

CVE-2019-0972

This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause a denial of service on the ...

6.8CVSS7.3AI score0.17994EPSS

CVE•added 2019/07/29 2:8 p.m.•107 views

CVE-2019-1108

An information disclosure vulnerability exists when the Windows RDP client improperly discloses the contents of its memory, aka 'Remote Desktop Protocol Client Information Disclosure Vulnerability'.

6.5CVSS6.3AI score0.21114EPSS

CVE•added 2021/02/25 11:15 p.m.•105 views

CVE-2021-24080

Windows Trust Verification API Denial of Service Vulnerability

6.5CVSS7.8AI score0.20715EPSS

CVE•added 2018/06/14 12:29 p.m.•104 views

CVE-2018-8140

An Elevation of Privilege vulnerability exists when Cortana retrieves data from user input services without consideration for status, aka "Cortana Elevation of Privilege Vulnerability." This affects Windows 10 Servers, Windows 10.

6.8CVSS7.4AI score0.00929EPSS

CVE•added 2018/07/11 12:29 a.m.•104 views

CVE-2018-8307

A security feature bypass vulnerability exists when Microsoft WordPad improperly handles embedded OLE objects, aka "WordPad Security Feature Bypass Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2...

6.8CVSS6.5AI score0.01151EPSS

CVE•added 2019/05/16 7:29 p.m.•104 views

CVE-2019-0961

6.5CVSS6.2AI score0.25343EPSS

CVE•added 2019/09/11 10:15 p.m.•104 views

CVE-2019-1252

6.5CVSS6.7AI score0.3045EPSS

CVE•added 2019/12/10 10:15 p.m.•104 views

CVE-2019-1466

6.5CVSS6.7AI score0.26055EPSS

CVE•added 2019/05/16 7:29 p.m.•103 views

CVE-2019-0758

6.5CVSS6AI score0.25343EPSS

CVE•added 2019/06/12 2:29 p.m.•102 views

CVE-2019-0710

6.8CVSS7.1AI score0.00518EPSS

CVE•added 2019/06/12 2:29 p.m.•102 views

CVE-2019-1050

6.5CVSS5.6AI score0.07622EPSS

CVE•added 2021/04/13 8:15 p.m.•102 views

CVE-2021-28325

Windows SMB Information Disclosure Vulnerability

6.5CVSS7.1AI score0.18603EPSS

CVE•added 2019/06/12 2:29 p.m.•100 views

CVE-2019-0711

6.8CVSS7.1AI score0.00518EPSS

CVE•added 2019/09/11 10:15 p.m.•98 views

CVE-2019-0928

6.2CVSS6.6AI score0.0021EPSS

CVE•added 2020/07/14 11:15 p.m.•98 views

CVE-2020-1333

An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points, aka 'Group Policy Services Policy Processing Elevation of Privilege Vulnerability'.

6.7CVSS7.7AI score0.0042EPSS

CVE•added 2020/07/14 11:15 p.m.•98 views

CVE-2020-1398

An elevation of privilege vulnerability exists when Windows Lockscreen fails to properly handle Ease of Access dialog.An attacker who successfully exploited the vulnerability could execute commands with elevated permissions.The security update addresses the vulnerability by ensuring that the Ease o...

6.8CVSS8AI score0.00285EPSS

CVE•added 2018/09/13 12:29 a.m.•97 views

CVE-2018-8438

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka "Windows Hyper-V Denial of Service Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Se...

6.8CVSS6.2AI score0.00513EPSS

CVE•added 2020/09/11 5:15 p.m.•97 views

CVE-2020-1091

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system.There are multiple ways an attacker could ...

6.5CVSS6.9AI score0.22282EPSS

CVE•added 2021/04/13 8:15 p.m.•96 views

CVE-2021-28323

Windows DNS Information Disclosure Vulnerability

6.5CVSS7.1AI score0.12484EPSS

Total number of security vulnerabilities94