Windows 10 20h2 Security Vulnerabilities and Issues — Page 2 of Windows 10 20h2 CVE List

An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can lead to denial of service (crashing the TPM chip/process o...

7.8CVSS7.7AI score0.00187EPSS

CVE•added 2022/10/11 7:15 p.m.•322 views

CVE-2022-38028

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.03323EPSS

In wild

CVE•added 2023/03/14 5:15 p.m.•321 views

CVE-2023-21708

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.04719EPSS

CVE•added 2023/05/09 6:15 p.m.•314 views

CVE-2023-29325

Windows OLE Remote Code Execution Vulnerability

8.1CVSS8.8AI score0.2384EPSS

CVE•added 2023/05/09 6:15 p.m.•297 views

CVE-2023-24943

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.01302EPSS

CVE•added 2023/05/09 6:15 p.m.•279 views

CVE-2023-29324

Windows MSHTML Platform Security Feature Bypass Vulnerability

6.5CVSS8AI score0.02256EPSS

CVE•added 2023/02/28 6:15 p.m.•265 views

CVE-2023-1018

An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can read or access sensitive data stored in the TPM.

5.5CVSS6.5AI score0.00151EPSS

CVE•added 2023/04/11 9:15 p.m.•262 views

CVE-2023-28293

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.07282EPSS

CVE•added 2023/04/11 9:15 p.m.•254 views

CVE-2023-28250

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.05623EPSS

CVE•added 2023/04/11 9:15 p.m.•246 views

CVE-2023-21729

Remote Procedure Call Runtime Information Disclosure Vulnerability

5.3CVSS4.9AI score0.01489EPSS

CVE•added 2023/01/10 10:15 p.m.•244 views

CVE-2023-21549

Windows SMB Witness Service Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.01858EPSS

CVE•added 2023/05/09 6:15 p.m.•225 views

CVE-2023-24903

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

8.1CVSS8.1AI score0.00645EPSS

CVE•added 2023/01/10 10:15 p.m.•213 views

CVE-2023-21563

BitLocker Security Feature Bypass Vulnerability

6.8CVSS7AI score0.00475EPSS

CVE•added 2023/05/09 6:15 p.m.•207 views

CVE-2023-24949

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.07901EPSS

CVE•added 2023/04/11 9:15 p.m.•205 views

CVE-2023-28219

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.07471EPSS

CVE•added 2023/01/10 10:15 p.m.•203 views

CVE-2023-21557

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

9.1CVSS7.5AI score0.00554EPSS

CVE•added 2023/01/10 10:15 p.m.•197 views

CVE-2023-21556

Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00581EPSS

CVE•added 2023/05/09 6:15 p.m.•195 views

CVE-2023-29335

Microsoft Word Security Feature Bypass Vulnerability

7.5CVSS7.4AI score0.00328EPSS

CVE•added 2023/05/09 6:15 p.m.•192 views

CVE-2023-24954

Microsoft SharePoint Server Information Disclosure Vulnerability

6.5CVSS6.4AI score0.02411EPSS

CVE•added 2023/02/14 8:15 p.m.•191 views

CVE-2023-21684

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02793EPSS

CVE•added 2023/04/11 9:15 p.m.•190 views

CVE-2023-21769

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS8.5AI score0.5326EPSS

CVE•added 2023/02/14 8:15 p.m.•189 views

CVE-2023-21692

Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.29233EPSS

CVE•added 2023/01/10 10:15 p.m.•188 views

CVE-2023-21726

Windows Credential Manager User Interface Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00091EPSS

CVE•added 2023/01/10 10:15 p.m.•187 views

CVE-2023-21524

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00355EPSS

CVE•added 2023/01/10 10:15 p.m.•186 views

CVE-2023-21541

Windows Task Scheduler Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00198EPSS

CVE•added 2023/04/11 9:15 p.m.•185 views

CVE-2023-28232

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

7.5CVSS7.8AI score0.001EPSS

CVE•added 2023/01/10 10:15 p.m.•181 views

CVE-2023-21535

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

8.1CVSS8.1AI score0.00117EPSS

CVE•added 2023/01/10 10:15 p.m.•181 views

CVE-2023-21552

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.01487EPSS

CVE•added 2023/03/14 5:15 p.m.•180 views

CVE-2023-23404

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00635EPSS

CVE•added 2023/03/14 5:15 p.m.•179 views

CVE-2023-23416

Windows Cryptographic Services Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.04603EPSS

CVE•added 2023/04/11 9:15 p.m.•179 views

CVE-2023-28218

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

7CVSS7AI score0.25616EPSS

CVE•added 2023/01/10 10:15 p.m.•177 views

CVE-2023-21676

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.03582EPSS

CVE•added 2023/04/11 9:15 p.m.•177 views

CVE-2023-21727

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02829EPSS

CVE•added 2023/03/14 5:15 p.m.•177 views

CVE-2023-23405

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.0116EPSS

CVE•added 2023/02/14 8:15 p.m.•174 views

CVE-2023-21690

Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.20019EPSS

CVE•added 2023/05/09 6:15 p.m.•174 views

CVE-2023-28283

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.1CVSS9AI score0.00681EPSS

CVE•added 2023/05/09 6:15 p.m.•173 views

CVE-2023-24905

Remote Desktop Client Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00412EPSS

CVE•added 2023/04/11 9:15 p.m.•173 views

CVE-2023-28220

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.05722EPSS

CVE•added 2023/04/27 7:15 p.m.•172 views

CVE-2023-21712

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00731EPSS

CVE•added 2023/03/14 5:15 p.m.•172 views

CVE-2023-23414

Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability

7.1CVSS7.2AI score0.00164EPSS

CVE•added 2023/03/14 5:15 p.m.•172 views

CVE-2023-24869

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.0116EPSS

CVE•added 2023/03/14 5:15 p.m.•172 views

CVE-2023-24876

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.03462EPSS

CVE•added 2023/01/10 10:15 p.m.•168 views

CVE-2023-21561

Microsoft Cryptographic Services Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.0023EPSS

CVE•added 2023/01/10 10:15 p.m.•168 views

CVE-2023-21732

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00887EPSS

CVE•added 2023/01/10 10:15 p.m.•166 views

CVE-2023-21539

Windows Authentication Remote Code Execution Vulnerability

7.5CVSS7.8AI score0.00635EPSS

CVE•added 2023/02/14 8:15 p.m.•166 views

CVE-2023-21817

Windows Kerberos Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00677EPSS

Total number of security vulnerabilities281