Windows 10 1809 Security Vulnerabilities and Issues — Page 5 of Windows 10 1809 CVE List

An elevation of privilege vulnerability exists when Microsoft IIS Server fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability can allow an unprivileged function ran by the user to execute code in the context of NT AUTHORITY\sy...

9.9CVSS9.3AI score0.02534EPSS

CVE•added 2023/10/10 6:15 p.m.•357 views

CVE-2023-36724

Windows Power Management Service Information Disclosure Vulnerability

5.5CVSS7AI score0.00102EPSS

CVE•added 2022/04/15 7:15 p.m.•353 views

CVE-2022-24481

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.4425EPSS

CVE•added 2025/03/11 5:16 p.m.•352 views

CVE-2025-24071

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS7.3AI score0.51253EPSS

CVE•added 2025/02/11 6:15 p.m.•350 views

CVE-2025-21337

Windows NTFS Elevation of Privilege Vulnerability

3.3CVSS6AI score0.00083EPSS

CVE•added 2021/07/16 9:15 p.m.•349 views

CVE-2021-34481

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or de...

9.8CVSS8.6AI score0.30378EPSS

CVE•added 2022/03/09 5:15 p.m.•343 views

CVE-2022-23288

Windows DWM Core Library Elevation of Privilege Vulnerability

7CVSS7.6AI score0.00356EPSS

CVE•added 2022/01/11 9:15 p.m.•342 views

CVE-2022-21894

Secure Boot Security Feature Bypass Vulnerability

4.9CVSS6.2AI score0.41953EPSS

CVE•added 2024/06/11 5:16 p.m.•342 views

CVE-2024-35250

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.45294EPSS

CVE•added 2019/04/09 9:29 p.m.•341 views

CVE-2019-0836

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0841.

7.8CVSS6.7AI score0.85917EPSS

CVE•added 2024/03/12 5:15 p.m.•341 views

CVE-2024-26161

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01459EPSS

CVE•added 2024/10/08 6:15 p.m.•339 views

CVE-2024-43583

Winlogon Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.08214EPSS

CVE•added 2024/11/12 6:15 p.m.•336 views

CVE-2024-43451

NTLM Hash Disclosure Spoofing Vulnerability

6.5CVSS6.5AI score0.89638EPSS

CVE•added 2022/09/13 7:15 p.m.•335 views

CVE-2022-26928

Windows Photo Import API Elevation of Privilege Vulnerability

7CVSS8.1AI score0.001EPSS

CVE•added 2024/10/08 6:15 p.m.•335 views

CVE-2024-30092

Windows Hyper-V Remote Code Execution Vulnerability

8CVSS8.3AI score0.00441EPSS

CVE•added 2024/04/09 5:16 p.m.•333 views

CVE-2024-29988

SmartScreen Prompt Security Feature Bypass Vulnerability

8.8CVSS8.4AI score0.64766EPSS

CVE•added 2025/02/11 6:15 p.m.•329 views

CVE-2025-21420

Windows Disk Cleanup Tool Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.31526EPSS

CVE•added 2023/08/08 6:15 p.m.•328 views

CVE-2023-20588

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.

5.5CVSS6.9AI score0.03997EPSS

CVE•added 2024/07/09 5:15 p.m.•325 views

CVE-2024-38112

Windows MSHTML Platform Spoofing Vulnerability

7.5CVSS8.8AI score0.90957EPSS

CVE•added 2023/03/14 5:15 p.m.•319 views

CVE-2023-21708

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.04719EPSS

CVE•added 2024/12/12 2:4 a.m.•319 views

CVE-2024-49112

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.87124EPSS

CVE•added 2025/01/14 6:15 p.m.•318 views

CVE-2025-21189

MapUrlToZone Security Feature Bypass Vulnerability

4.3CVSS4.6AI score0.00174EPSS

CVE•added 2024/09/10 5:15 p.m.•316 views

CVE-2024-43461

Windows MSHTML Platform Spoofing Vulnerability

8.8CVSS9.3AI score0.05914EPSS

CVE•added 2021/06/08 11:15 p.m.•315 views

CVE-2021-26414

Windows DCOM Server Security Feature Bypass

6.5CVSS6.9AI score0.14238EPSS

CVE•added 2023/02/28 7:15 p.m.•315 views

CVE-2023-1017

An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can lead to denial of service (crashing the TPM chip/process o...

7.8CVSS7.7AI score0.00217EPSS

CVE•added 2022/10/11 7:15 p.m.•313 views

CVE-2022-38028

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.03526EPSS

CVE•added 2023/05/09 6:15 p.m.•313 views

CVE-2023-29325

Windows OLE Remote Code Execution Vulnerability

8.1CVSS8.8AI score0.2384EPSS

CVE•added 2021/01/12 8:15 p.m.•312 views

CVE-2021-1648

Microsoft splwow64 Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00979EPSS

CVE•added 2020/06/09 8:15 p.m.•311 views

CVE-2020-1269

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS

CVE•added 2022/08/09 8:15 p.m.•308 views

CVE-2022-30133

Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.09001EPSS

CVE•added 2023/11/14 6:15 p.m.•306 views

CVE-2023-36705

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00162EPSS

CVE•added 2022/09/13 7:15 p.m.•303 views

CVE-2022-34721

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability