Windows 10 1809@* Security Vulnerabilities and Issues — Page 57 of Windows 10 1809@* CVE List

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0963, CVE-2020-1141, CVE-2020-1145.

6.5CVSS6.5AI score0.2819EPSS

CVE•added 2024/10/08 6:15 p.m.•64 views

CVE-2024-43525

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.7AI score0.00421EPSS

CVE•added 2024/10/08 6:15 p.m.•64 views

CVE-2024-43581

Microsoft OpenSSH for Windows Remote Code Execution Vulnerability

7.1CVSS7.8AI score0.04553EPSS

CVE•added 2025/03/11 5:16 p.m.•64 views

CVE-2025-26634

Heap-based buffer overflow in Windows Core Messaging allows an authorized attacker to elevate privileges over a network.

7.5CVSS7.7AI score0.00185EPSS

CVE•added 2025/06/10 5:22 p.m.•64 views

CVE-2025-32722

Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose information locally.

5.5CVSS5.3AI score0.00045EPSS

CVE•added 2020/03/12 4:15 p.m.•63 views

CVE-2020-0854

An elevation of privilege vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions, aka 'Windows Mobile Device Management Diagnostics Elevation of Privilege Vulnerability'.

7.1CVSS8.1AI score0.00371EPSS

CVE•added 2020/05/21 11:15 p.m.•63 views

CVE-2020-1090

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1077, CVE-2020-1086, CVE-2020-1125, CVE-2020-1139, CVE-2020-1149, CVE-2020-1151, CVE-2020-115...

7.8CVSS7.7AI score0.12134EPSS

CVE•added 2020/05/21 11:15 p.m.•63 views

CVE-2020-1134

An elevation of privilege vulnerability exists when the Windows State Repository Service improperly handles objects in memory, aka 'Windows State Repository Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1124, CVE-2020-1131, CVE-2020-1144, CVE-2020-1184, CVE-2020...

7.8CVSS7.7AI score0.00278EPSS

CVE•added 2024/10/08 6:15 p.m.•63 views

CVE-2024-43526

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.7AI score0.00421EPSS

CVE•added 2025/01/14 6:15 p.m.•63 views

CVE-2025-21301

Windows Geolocation Service Information Disclosure Vulnerability

6.5CVSS6.3AI score0.00247EPSS

CVE•added 2025/05/13 5:16 p.m.•63 views

CVE-2025-32707

Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00079EPSS

CVE•added 2025/06/10 5:21 p.m.•63 views

CVE-2025-32715

Out-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.2AI score0.00064EPSS

CVE•added 2025/06/10 5:22 p.m.•63 views

CVE-2025-33055

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00048EPSS

CVE•added 2024/10/08 6:15 p.m.•62 views

CVE-2024-43543

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.7AI score0.00295EPSS

CVE•added 2024/09/10 5:15 p.m.•61 views

CVE-2024-38235

Windows Hyper-V Denial of Service Vulnerability

6.5CVSS7.8AI score0.00147EPSS

CVE•added 2025/01/14 6:15 p.m.•61 views

CVE-2025-21257

Windows WLAN AutoConfig Service Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00082EPSS

CVE•added 2025/01/14 6:15 p.m.•61 views

CVE-2025-21304

Microsoft DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.0017EPSS

CVE•added 2024/11/12 6:15 p.m.•60 views

CVE-2024-43646

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

7.8CVSS6.7AI score0.00187EPSS

CVE•added 2025/01/14 6:15 p.m.•60 views

CVE-2025-21300

Windows upnphost.dll Denial of Service Vulnerability

7.5CVSS7.5AI score0.01023EPSS

CVE•added 2025/05/13 5:15 p.m.•60 views

CVE-2025-29969

Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attacker to execute code over a network.

7.5CVSS7.6AI score0.00073EPSS

CVE•added 2025/06/10 5:24 p.m.•60 views

CVE-2025-47955

Improper privilege management in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.

7.8CVSS7.7AI score0.00052EPSS

CVE•added 2024/10/08 6:15 p.m.•59 views

CVE-2024-43540

Windows Mobile Broadband Driver Denial of Service Vulnerability

6.5CVSS7.3AI score0.00312EPSS

CVE•added 2025/05/13 5:15 p.m.•59 views

CVE-2025-29954

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

5.9CVSS5.7AI score0.0059EPSS

CVE•added 2024/10/08 6:15 p.m.•58 views

CVE-2024-43534

Windows Graphics Component Information Disclosure Vulnerability

6.5CVSS7.4AI score0.00276EPSS

CVE•added 2024/10/08 6:15 p.m.•58 views

CVE-2024-43538

Windows Mobile Broadband Driver Denial of Service Vulnerability

6.5CVSS7.3AI score0.00312EPSS

CVE•added 2024/10/08 6:15 p.m.•58 views

CVE-2024-43555

Windows Mobile Broadband Driver Denial of Service Vulnerability

6.5CVSS7.3AI score0.00227EPSS

CVE•added 2025/05/13 5:15 p.m.•58 views

CVE-2025-24063

Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

7.8CVSS7.8AI score0.00066EPSS

CVE•added 2025/05/13 5:15 p.m.•58 views

CVE-2025-29962

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00083EPSS

CVE•added 2025/06/10 5:22 p.m.•58 views

CVE-2025-33061

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00048EPSS

CVE•added 2024/12/12 2:4 a.m.•57 views

CVE-2024-49107

WmsRepair Service Elevation of Privilege Vulnerability

7.3CVSS7.2AI score0.00289EPSS

CVE•added 2025/02/11 6:15 p.m.•57 views

CVE-2025-21352

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00288EPSS

CVE•added 2025/05/13 5:15 p.m.•57 views

CVE-2025-29840

Stack-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS8AI score0.00083EPSS

CVE•added 2025/06/10 5:23 p.m.•57 views

CVE-2025-33075

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.00064EPSS

CVE•added 2025/05/13 5:15 p.m.•56 views

CVE-2025-29964

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00083EPSS

CVE•added 2020/05/21 11:15 p.m.•55 views

CVE-2020-1158

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1077, CVE-2020-1086, CVE-2020-1090, CVE-2020-1125, CVE-2020-1139, CVE-2020-1149, CVE-2020-115...

7.8CVSS7.7AI score0.12134EPSS

CVE•added 2025/06/10 5:22 p.m.•55 views

CVE-2025-33060

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00048EPSS

CVE•added 2025/01/14 6:15 p.m.•54 views

CVE-2025-21248

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00461EPSS

CVE•added 2025/01/14 6:16 p.m.•54 views

CVE-2025-21389

Windows upnphost.dll Denial of Service Vulnerability