Windows 10 1909 Security Vulnerabilities and Issues — Page 15 of Windows 10 1909 CVE List

An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code execution on a victim system. ...

7.8CVSS8.2AI score0.0064EPSS

CVE•added 2020/10/16 11:15 p.m.•101 views

CVE-2020-1080

An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could gain elevated privileges on a target operating system.This vulnerability by itself does not allow arbit...

8.8CVSS8.6AI score0.00744EPSS

CVE•added 2020/08/17 7:15 p.m.•101 views

CVE-2020-1485

An information disclosure vulnerability exists when the Windows Image Acquisition (WIA) Service improperly discloses contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.To exploit the vulnerability, an aut...

5.5CVSS6.7AI score0.00487EPSS

CVE•added 2020/08/17 7:15 p.m.•101 views

CVE-2020-1486

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new ...

7.8CVSS8.1AI score0.00505EPSS

CVE•added 2020/09/11 5:15 p.m.•101 views

CVE-2020-1508

A remote code execution vulnerability exists when Windows Media Audio Decoder improperly handles objects. An attacker who successfully exploited the vulnerability could take control of an affected system.There are multiple ways an attacker could exploit the vulnerability, such as by convincing a us...

9.3CVSS8.3AI score0.01447EPSS

CVE•added 2020/11/11 7:15 a.m.•101 views

CVE-2020-16997

Remote Desktop Protocol Server Information Disclosure Vulnerability

7.7CVSS7.7AI score0.04334EPSS

CVE•added 2020/11/11 7:15 a.m.•101 views

CVE-2020-17014

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00713EPSS

CVE•added 2020/12/10 12:15 a.m.•101 views

CVE-2020-17097

Windows Digital Media Receiver Elevation of Privilege Vulnerability

7.8CVSS5.7AI score0.00625EPSS

CVE•added 2021/03/11 4:15 p.m.•101 views

CVE-2021-1640

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.01336EPSS

CVE•added 2021/01/12 8:15 p.m.•101 views

CVE-2021-1665

GDI+ Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.07349EPSS

CVE•added 2021/01/12 8:15 p.m.•101 views

CVE-2021-1692

Windows Hyper-V Denial of Service Vulnerability

7.7CVSS8AI score0.00643EPSS

CVE•added 2021/02/25 11:15 p.m.•101 views

CVE-2021-24102

Windows Event Tracing Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.0033EPSS

CVE•added 2021/04/13 8:15 p.m.•101 views

CVE-2021-27092

Azure AD Web Sign-in Security Feature Bypass Vulnerability

9.8CVSS7.4AI score0.10589EPSS

CVE•added 2021/04/13 8:15 p.m.•101 views

CVE-2021-28322

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00686EPSS

CVE•added 2021/11/10 1:19 a.m.•101 views

CVE-2021-42276

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

7.8CVSS8.2AI score0.05308EPSS

CVE•added 2021/12/15 3:15 p.m.•101 views

CVE-2021-43224

Windows Common Log File System Driver Information Disclosure Vulnerability

5.5CVSS7AI score0.14955EPSS

CVE•added 2022/01/11 9:15 p.m.•101 views

CVE-2022-21962

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

7.2CVSS8.2AI score0.02038EPSS

CVE•added 2020/09/11 5:15 p.m.•100 views

CVE-2020-0997

A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user right...

9.3CVSS8.3AI score0.11894EPSS

CVE•added 2020/10/16 11:15 p.m.•100 views

CVE-2020-16877

An elevation of privilege vulnerability exists when Microsoft Windows improperly handles reparse points. An attacker who successfully exploited this vulnerability could overwrite or delete a targeted file that would normally require elevated permissions.To exploit this vulnerability, an attacker wo...

7.1CVSS6.8AI score0.00503EPSS

CVE•added 2020/11/11 7:15 a.m.•100 views

CVE-2020-17040

Windows Hyper-V Security Feature Bypass Vulnerability

9.8CVSS7.9AI score0.03471EPSS

CVE•added 2020/12/10 12:15 a.m.•100 views

CVE-2020-17139

Windows Overlay Filter Security Feature Bypass Vulnerability

7.8CVSS7.7AI score0.00451EPSS

CVE•added 2021/01/12 8:15 p.m.•100 views

CVE-2021-1654

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS

CVE•added 2021/04/13 8:15 p.m.•100 views

CVE-2021-27096

NTFS Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00279EPSS

CVE•added 2021/04/13 8:15 p.m.•100 views

CVE-2021-28315

Windows Media Video Decoder Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01126EPSS

CVE•added 2021/04/13 8:15 p.m.•100 views

CVE-2021-28318

Windows GDI+ Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00542EPSS

CVE•added 2022/01/11 9:15 p.m.•100 views

CVE-2022-21860

Windows AppContracts API Server Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00492EPSS

CVE•added 2022/05/10 9:15 p.m.•100 views

CVE-2022-29105

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.03165EPSS

CVE•added 2020/09/11 5:15 p.m.•99 views

CVE-2020-0648

An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The...

7.8CVSS8.2AI score0.00542EPSS

CVE•added 2020/12/10 12:15 a.m.•99 views

CVE-2020-16964

Windows Backup Engine Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01076EPSS

CVE•added 2020/10/16 11:15 p.m.•99 views

CVE-2020-16974

An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The ...

7.8CVSS8.2AI score0.00542EPSS

CVE•added 2020/11/11 7:15 a.m.•99 views

CVE-2020-17038

Win32k Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.0073EPSS

CVE•added 2020/11/11 7:15 a.m.•99 views

CVE-2020-17055

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.07947EPSS

CVE•added 2021/01/12 8:15 p.m.•99 views

CVE-2021-1650

Windows Runtime C++ Template Library Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00279EPSS

CVE•added 2021/01/12 8:15 p.m.•99 views

CVE-2021-1694

Windows Update Stack Elevation of Privilege Vulnerability

9.8CVSS8AI score0.00761EPSS

CVE•added 2021/01/12 8:15 p.m.•99 views

CVE-2021-1695

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00548EPSS

CVE•added 2021/01/12 8:15 p.m.•99 views

CVE-2021-1696

Windows Graphics Component Information Disclosure Vulnerability

5.5CVSS6.6AI score0.12528EPSS

CVE•added 2021/02/25 11:15 p.m.•99 views

CVE-2021-24079

Windows Backup Engine Information Disclosure Vulnerability

5.5CVSS7AI score0.00316EPSS

CVE•added 2021/04/13 8:15 p.m.•99 views

CVE-2021-28349

Windows GDI+ Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.00502EPSS

CVE•added 2022/03/09 5:15 p.m.•99 views

CVE-2022-23290

Windows Inking COM Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00227EPSS

CVE•added 2020/09/11 5:15 p.m.•98 views

CVE-2020-1091

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system.There are multiple ways an attacker could exploit th...

6.5CVSS6.9AI score0.22282EPSS

CVE•added 2020/08/17 7:15 p.m.•98 views

CVE-2020-1547

An elevation of privilege vulnerability exists when the Windows Backup Engine improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security u...

7.8CVSS8.1AI score0.00378EPSS

CVE•added 2020/10/16 11:15 p.m.•98 views

CVE-2020-16895

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash. An attacker who successfully exploited this vulnerability could delete a targeted file leading to an elevated status.To exploit this vulnerability, an attacker would first have to...

7.8CVSS8.1AI score0.00744EPSS

CVE•added 2021/01/12 8:15 p.m.•98 views

CVE-2021-1697

Windows InstallService Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS

CVE•added 2021/04/13 8:15 p.m.•98 views

CVE-2021-28437

Windows Installer Information Disclosure Vulnerability

5.5CVSS6.7AI score0.00448EPSS

CVE•added 2021/04/13 8:15 p.m.•98 views

CVE-2021-28445

Windows Network File System Remote Code Execution Vulnerability