Windows 10 1809 Security Vulnerabilities and Issues — Page 4 of Windows 10 1809 CVE List

CVE-2025-21252

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21282

Windows Telephony Service Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.00478EPSS

CVE-2025-21294

Microsoft Digest Authentication Remote Code Execution Vulnerability

7.5CVSS7.8AI score0.00181EPSS

CVE-2025-21296

BranchCache Remote Code Execution Vulnerability

CVE•added 2025/03/11 5:16 p.m.•80 views

CVE-2025-24044

Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.

7.8CVSS8AI score0.00121EPSS

CVE•added 2025/03/11 5:16 p.m.•80 views

CVE-2025-24050

Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally.

7.8CVSS7.9AI score0.00106EPSS

CVE•added 2025/04/08 6:15 p.m.•80 views

CVE-2025-26666

Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.

7.8CVSS8AI score0.00065EPSS

CVE•added 2025/04/08 6:15 p.m.•80 views

CVE-2025-27477

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

8.8CVSS8AI score0.00166EPSS

CVE•added 2025/04/08 6:15 p.m.•79 views

CVE-2025-26674

Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.

7.8CVSS8AI score0.00065EPSS

CVE•added 2025/04/08 6:15 p.m.•79 views

CVE-2025-26679

Use after free in RPC Endpoint Mapper Service allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00057EPSS

8.8CVSS8AI score0.00059EPSS

CVE-2025-21205

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

CVE•added 2025/01/14 6:15 p.m.•78 views

CVE-2025-21265

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00149EPSS

CVE•added 2025/01/14 6:15 p.m.•78 views

CVE-2025-21291

Windows Direct Show Remote Code Execution Vulnerability

CVE•added 2025/03/11 5:16 p.m.•78 views

CVE-2025-24056

Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network.

8.8CVSS7.7AI score0.00306EPSS

7.8CVSS7.1AI score0.00086EPSS

CVE-2025-24073

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

8.8CVSS6.7AI score0.00059EPSS

CVE-2025-26669

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

7.5CVSS7AI score0.1152EPSS

CVE-2025-26673

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

7.5CVSS7AI score0.1074EPSS

CVE-2025-27469

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

CVE•added 2025/04/08 6:16 p.m.•78 views

CVE-2025-27737

Improper input validation in Windows Security Zone Mapping allows an unauthorized attacker to bypass a security feature locally.

8.6CVSS7.1AI score0.00092EPSS

CVE•added 2025/01/14 6:15 p.m.•77 views

CVE-2025-21281

Microsoft COM for Windows Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00191EPSS

CVE•added 2025/01/14 6:15 p.m.•77 views

CVE-2025-21320

Windows Kernel Memory Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00104EPSS

4.2CVSS4.3AI score0.0008EPSS

CVE-2025-21214

Windows BitLocker Information Disclosure Vulnerability

CVE-2025-21223

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21236

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21238

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.0076EPSS

CVE-2025-21243

Windows Telephony Service Remote Code Execution Vulnerability

CVE•added 2025/03/11 5:16 p.m.•76 views

CVE-2025-24072

Use after free in Microsoft Local Security Authority Server (lsasrv) allows an authorized attacker to elevate privileges locally.

7.8CVSS7.2AI score0.00106EPSS

CVE•added 2025/04/08 6:15 p.m.•76 views

CVE-2025-26687

Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.

7.5CVSS7.5AI score0.00043EPSS

CVE•added 2025/04/08 6:15 p.m.•76 views

CVE-2025-26688

Stack-based buffer overflow in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.00057EPSS

CVE•added 2025/06/10 5:24 p.m.•76 views

CVE-2025-47955

Improper privilege management in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.

7.8CVSS7.7AI score0.00061EPSS

6.5CVSS6.5AI score0.00194EPSS

CVE-2025-21217

Windows NTLM Spoofing Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE-2025-21227

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21239

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21240

Windows Telephony Service Remote Code Execution Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE-2025-21256

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21266

Windows Telephony Service Remote Code Execution Vulnerability

4.3CVSS4.6AI score0.00128EPSS

CVE-2025-21269

Windows HTML Platforms Security Feature Bypass Vulnerability

7.8CVSS7.7AI score0.00191EPSS

CVE-2025-21271

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS6.9AI score0.00272EPSS

CVE-2025-21299

Windows Kerberos Security Feature Bypass Vulnerability

CVE-2025-21305

Windows Telephony Service Remote Code Execution Vulnerability