Windows 10 21h2 Security Vulnerabilities and Issues — Page 5 of Windows 10 21h2 CVE List

6.5CVSS6.5AI score0.00194EPSS

CVE-2025-21217

Windows NTLM Spoofing Vulnerability

CVE-2025-21227

Windows Digital Media Elevation of Privilege Vulnerability

8.8CVSS9AI score0.0052EPSS

CVE-2025-21239

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21240

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21256

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21266

Windows Telephony Service Remote Code Execution Vulnerability

4.3CVSS4.6AI score0.00128EPSS

CVE-2025-21269

Windows HTML Platforms Security Feature Bypass Vulnerability

7.8CVSS7.7AI score0.00191EPSS

CVE-2025-21271

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS6.9AI score0.00272EPSS

CVE-2025-21299

Windows Kerberos Security Feature Bypass Vulnerability

8.8CVSS9AI score0.0052EPSS

CVE-2025-21305

Windows Telephony Service Remote Code Execution Vulnerability

6.5CVSS6.5AI score0.00103EPSS

CVE-2025-21314

Windows SmartScreen Spoofing Vulnerability

cve•added 2025/02/11 6:15 p.m.•75 views

CVE-2025-21347

Windows Deployment Services Denial of Service Vulnerability

6CVSS7AI score0.00065EPSS

cve•added 2025/03/11 5:16 p.m.•75 views

CVE-2025-24059

Incorrect conversion between numeric types in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.00159EPSS

cve•added 2025/03/11 5:16 p.m.•75 views

CVE-2025-24987

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack.

6.8CVSS6.5AI score0.00139EPSS

cve•added 2025/01/14 6:15 p.m.•74 views

CVE-2025-21277

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.04371EPSS

cve•added 2025/01/14 6:15 p.m.•74 views

CVE-2025-21288

Windows COM Server Information Disclosure Vulnerability

6.5CVSS6.3AI score0.00101EPSS

cve•added 2025/01/14 6:15 p.m.•74 views

CVE-2025-21289

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.01098EPSS

cve•added 2025/01/14 6:16 p.m.•74 views

CVE-2025-21378

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00191EPSS

cve•added 2025/03/11 5:16 p.m.•74 views

CVE-2025-24048

Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally.

7.8CVSS7.9AI score0.00106EPSS

cve•added 2025/06/10 5:21 p.m.•74 views

CVE-2025-24069

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS

cve•added 2025/03/11 5:16 p.m.•74 views

CVE-2025-24995

Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.8AI score0.00121EPSS

cve•added 2025/04/08 6:15 p.m.•74 views

CVE-2025-26641

Uncontrolled resource consumption in Windows Cryptographic Services allows an unauthorized attacker to deny service over a network.

7.5CVSS7AI score0.1074EPSS

cve•added 2025/04/08 6:15 p.m.•74 views

CVE-2025-27467

Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00057EPSS

cve•added 2025/02/11 6:15 p.m.•73 views

CVE-2025-21201

Windows Telephony Server Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00322EPSS

cve•added 2025/01/14 6:15 p.m.•73 views

CVE-2025-21246

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.0052EPSS

cve•added 2025/01/14 6:15 p.m.•73 views

CVE-2025-21287

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.0018EPSS

cve•added 2025/01/14 6:16 p.m.•73 views

CVE-2025-21374

Windows CSC Service Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00092EPSS

cve•added 2025/04/08 6:15 p.m.•73 views

CVE-2025-26681

Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

6.7CVSS7.5AI score0.00051EPSS

cve•added 2025/05/13 5:15 p.m.•73 views

CVE-2025-29837

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to disclose information locally.

5.5CVSS6.7AI score0.00102EPSS

cve•added 2025/02/11 6:15 p.m.•72 views

CVE-2025-21184

Windows Core Messaging Elevation of Privileges Vulnerability

7CVSS7.6AI score0.00104EPSS

CVE-2025-21250

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21258

Windows Digital Media Elevation of Privilege Vulnerability

4.3CVSS4.6AI score0.00103EPSS

CVE-2025-21268

MapUrlToZone Security Feature Bypass Vulnerability

5.5CVSS5.5AI score0.00196EPSS

CVE-2025-21284

Windows Virtual Trusted Platform Module Denial of Service Vulnerability

CVE-2025-21306

Windows Telephony Service Remote Code Execution Vulnerability

5.5CVSS5.3AI score0.00104EPSS

CVE-2025-21323

Windows Kernel Memory Information Disclosure Vulnerability

8.8CVSS9AI score0.027EPSS

CVE-2025-21339

Windows Telephony Service Remote Code Execution Vulnerability

cve•added 2025/01/14 6:15 p.m.•71 views

CVE-2025-21278

Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

6.2CVSS6.4AI score0.00077EPSS

cve•added 2025/01/14 6:15 p.m.•71 views

CVE-2025-21336

Windows Cryptographic Information Disclosure Vulnerability

5.6CVSS5.3AI score0.00078EPSS

cve•added 2025/02/11 6:15 p.m.•71 views

CVE-2025-21350

Windows Kerberos Denial of Service Vulnerability

5.9CVSS6.9AI score0.00298EPSS

cve•added 2025/01/14 6:15 p.m.•70 views

CVE-2025-21321

Windows Kernel Memory Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00104EPSS

cve•added 2025/02/11 6:15 p.m.•70 views

CVE-2025-21367

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00117EPSS

cve•added 2025/02/11 6:15 p.m.•70 views

CVE-2025-21414

Windows Core Messaging Elevation of Privileges Vulnerability

7CVSS7.6AI score0.00104EPSS

cve•added 2025/06/10 5:22 p.m.•69 views

CVE-2025-33067

Improper privilege management in Windows Kernel allows an unauthorized attacker to elevate privileges locally.

8.4CVSS8.3AI score0.00064EPSS

cve•added 2025/01/14 6:15 p.m.•68 views

CVE-2025-21272

Windows COM Server Information Disclosure Vulnerability

6.5CVSS6.3AI score0.00101EPSS

cve•added 2025/04/08 6:15 p.m.•68 views

CVE-2025-27476

Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00057EPSS

cve•added 2025/01/14 6:15 p.m.•67 views

CVE-2025-21207

Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability

7.5CVSS7.5AI score0.01098EPSS

cve•added 2025/01/14 6:15 p.m.•67 views

CVE-2025-21220

Microsoft Message Queuing Information Disclosure Vulnerability

7.5CVSS7.3AI score0.00675EPSS

cve•added 2025/01/14 6:15 p.m.•67 views

CVE-2025-21249

Windows Digital Media Elevation of Privilege Vulnerability