Windows 10 1809 Security Vulnerabilities and Issues — Page 7 of Windows 10 1809 CVE List

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.

7.8CVSS6.7AI score0.85917EPSS

In wild

CVE•added 2024/08/13 6:15 p.m.•255 views

CVE-2024-38106

Windows Kernel Elevation of Privilege Vulnerability

7CVSS6.9AI score0.00367EPSS

In wild

CVE•added 2025/03/11 5:16 p.m.•255 views

CVE-2025-24985

Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.01044EPSS

In wild

CVE•added 2022/03/09 5:15 p.m.•254 views

CVE-2022-23284

Windows Print Spooler Elevation of Privilege Vulnerability

9CVSS7.7AI score0.09515EPSS

CVE•added 2023/04/11 9:15 p.m.•254 views

CVE-2023-28250

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.05623EPSS

CVE•added 2024/01/09 6:15 p.m.•254 views

CVE-2024-20652

Windows HTML Platforms Security Feature Bypass Vulnerability

8.1CVSS8AI score0.03082EPSS

CVE•added 2024/09/10 5:15 p.m.•254 views

CVE-2024-38217

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS7.3AI score0.13392EPSS

In wild

CVE•added 2019/04/09 9:29 p.m.•253 views

CVE-2019-0805

7.8CVSS6.7AI score0.85917EPSS

In wild

CVE•added 2021/12/15 3:15 p.m.•253 views

CVE-2021-43217

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

9.8CVSS9.1AI score0.25196EPSS

In wild

CVE•added 2024/08/13 6:15 p.m.•250 views

CVE-2024-38118

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

5.5CVSS5.2AI score0.00541EPSS

CVE•added 2019/10/10 2:15 p.m.•249 views

CVE-2019-1339

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1342.

7.8CVSS8.5AI score0.06219EPSS

In wild

CVE•added 2020/06/09 8:15 p.m.•249 views

CVE-2020-1274

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS

In wild

CVE•added 2019/08/14 9:15 p.m.•247 views

CVE-2019-1226

A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. A...

10CVSS9.7AI score0.13718EPSS

CVE•added 2020/06/09 8:15 p.m.•247 views

CVE-2020-1237

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273,...

7.8CVSS7.8AI score0.19295EPSS

In wild

CVE•added 2020/08/17 7:15 p.m.•247 views

CVE-2020-1337

An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; ...

7.8CVSS7.8AI score0.53476EPSS

In wild

CVE•added 2024/03/12 5:15 p.m.•247 views

CVE-2024-21437

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.03014EPSS

CVE•added 2025/06/10 5:23 p.m.•247 views

CVE-2025-33073

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

8.8CVSS8.7AI score0.0096EPSS

Web

CVE•added 2023/04/11 9:15 p.m.•246 views

CVE-2023-21729

Remote Procedure Call Runtime Information Disclosure Vulnerability

5.3CVSS4.9AI score0.01489EPSS

CVE•added 2020/06/09 8:15 p.m.•245 views

CVE-2020-1316

7.8CVSS7.7AI score0.19295EPSS

In wild

CVE•added 2020/10/16 11:15 p.m.•245 views

CVE-2020-16916

An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit this vulnerability, an attacker would first have to log on to the system. An atta...

7.8CVSS8.2AI score0.00744EPSS

In wild

CVE•added 2025/03/11 5:16 p.m.•245 views

CVE-2025-24993

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.02222EPSS

In wild

CVE•added 2020/06/09 8:15 p.m.•244 views

CVE-2020-1276

7.8CVSS7.7AI score0.19295EPSS

In wild

CVE•added 2022/03/09 5:15 p.m.•244 views

CVE-2022-23293

Windows Fast FAT File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00293EPSS

CVE•added 2023/01/10 10:15 p.m.•244 views

CVE-2023-21549

Windows SMB Witness Service Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.01858EPSS

CVE•added 2024/08/13 6:15 p.m.•244 views

CVE-2024-38107

Windows Power Dependency Coordinator Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.03662EPSS

In wild

CVE•added 2019/07/15 7:15 p.m.•243 views

CVE-2019-1073

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1071.

5.5CVSS5.8AI score0.00391EPSS

CVE•added 2019/09/11 10:15 p.m.•243 views

CVE-2019-1303

An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-...

7.8CVSS8.2AI score0.23634EPSS

In wild

CVE•added 2021/12/15 3:15 p.m.•243 views

CVE-2021-43883

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.08752EPSS

In wild

CVE•added 2022/05/18 11:15 p.m.•243 views

CVE-2022-30138

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00726EPSS

CVE•added 2024/03/12 5:15 p.m.•243 views

CVE-2024-21433

Windows Print Spooler Elevation of Privilege Vulnerability

7CVSS8AI score0.00833EPSS

CVE•added 2022/03/09 5:15 p.m.•242 views

CVE-2022-21967

Xbox Live Auth Manager for Windows Elevation of Privilege Vulnerability

7CVSS7.7AI score0.00458EPSS

CVE•added 2024/03/12 5:15 p.m.•242 views

CVE-2024-26162

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.0223EPSS

CVE•added 2024/03/12 5:15 p.m.•242 views

CVE-2024-26166

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01471EPSS

CVE•added 2020/06/09 8:15 p.m.•241 views

CVE-2020-1246

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS

In wild

CVE•added 2020/06/09 8:15 p.m.•241 views

CVE-2020-1262

7.8CVSS7.7AI score0.19295EPSS

In wild

CVE•added 2021/08/12 6:15 p.m.•241 views

CVE-2021-26432

Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability

9.8CVSS8.8AI score0.10206EPSS

CVE•added 2023/11/14 6:15 p.m.•241 views

CVE-2023-36424

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.17769EPSS

CVE•added 2024/02/13 6:15 p.m.•241 views

CVE-2024-21358

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.0192EPSS

CVE•added 2024/02/13 6:15 p.m.•241 views

CVE-2024-21372

Windows OLE Remote Code Execution Vulnerability

8.8CVSS9AI score0.0153EPSS

CVE•added 2024/10/08 6:15 p.m.•241 views

CVE-2024-37976

Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability

6.7CVSS7.3AI score0.0035EPSS

CVE•added 2019/09/11 10:15 p.m.•240 views

CVE-2019-1278

An elevation of privilege vulnerability exists in the way that the unistore.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1215, CVE-2019-1253, CVE-2019-1303.

7.8CVSS8.1AI score0.23634EPSS

In wild

CVE•added 2024/02/13 6:15 p.m.•240 views

CVE-2024-21350

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.0061EPSS

CVE•added 2024/02/13 6:15 p.m.•240 views

CVE-2024-21370

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.0192EPSS

CVE•added 2025/03/11 5:16 p.m.•240 views

CVE-2025-24984