Windows 10 21h2 Security Vulnerabilities and Issues — Windows 10 21h2 CVE List

An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can read or access sensitive data stored in the TPM.

5.5CVSS6.5AI score0.00151EPSS

CVE•added 2024/08/13 6:15 p.m.•249 views

CVE-2024-38118

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

5.5CVSS5.2AI score0.00458EPSS

CVE•added 2023/04/11 9:15 p.m.•245 views

CVE-2023-21729

Remote Procedure Call Runtime Information Disclosure Vulnerability

5.3CVSS4.9AI score0.01489EPSS

CVE•added 2024/03/12 5:15 p.m.•234 views

CVE-2024-26174

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00332EPSS

CVE•added 2024/02/13 6:15 p.m.•231 views

CVE-2024-21344

Windows Network Address Translation (NAT) Denial of Service Vulnerability

5.9CVSS6.2AI score0.00758EPSS

CVE•added 2024/08/13 6:15 p.m.•225 views

CVE-2024-38155

Security Center Broker Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00284EPSS

CVE•added 2022/03/09 5:15 p.m.•222 views

CVE-2022-23281

Windows Common Log File System Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00475EPSS

CVE•added 2024/09/10 5:15 p.m.•222 views

CVE-2024-38217

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS7.3AI score0.14086EPSS

CVE•added 2024/03/12 5:15 p.m.•218 views

CVE-2024-26177

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00752EPSS

CVE•added 2022/03/09 5:15 p.m.•217 views

CVE-2022-22010

Media Foundation Information Disclosure Vulnerability

5.5CVSS5.7AI score0.00991EPSS

CVE•added 2024/03/12 5:15 p.m.•217 views

CVE-2024-26181

Windows Kernel Denial of Service Vulnerability

5.5CVSS6.7AI score0.00415EPSS

CVE•added 2025/03/11 5:16 p.m.•209 views

CVE-2025-24991

Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.

5.5CVSS6.5AI score0.03535EPSS

CVE•added 2022/07/12 11:15 p.m.•208 views

CVE-2022-30223

Windows Hyper-V Information Disclosure Vulnerability

5.7CVSS6.6AI score0.03907EPSS

CVE•added 2024/02/13 6:15 p.m.•207 views

CVE-2024-21377

Windows DNS Information Disclosure Vulnerability

5.5CVSS5.9AI score0.00177EPSS

CVE•added 2022/05/10 9:15 p.m.•195 views

CVE-2022-22713

Windows Hyper-V Denial of Service Vulnerability

5.6CVSS7.3AI score0.00272EPSS

CVE•added 2022/03/09 5:15 p.m.•195 views

CVE-2022-23297

Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00325EPSS

CVE•added 2024/02/13 6:15 p.m.•195 views

CVE-2024-21362

Windows Kernel Security Feature Bypass Vulnerability

5.5CVSS6.1AI score0.00078EPSS

CVE•added 2024/01/09 6:15 p.m.•184 views

CVE-2024-21311

Windows Cryptographic Services Information Disclosure Vulnerability

5.5CVSS5.9AI score0.0016EPSS

CVE•added 2023/11/14 6:15 p.m.•181 views

CVE-2023-36428

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

5.5CVSS7AI score0.00127EPSS

CVE•added 2024/01/09 6:15 p.m.•179 views

CVE-2024-20694

Windows CoreMessaging Information Disclosure Vulnerability

5.5CVSS5.9AI score0.00521EPSS

CVE•added 2024/01/09 6:15 p.m.•178 views

CVE-2024-21306

Microsoft Bluetooth Driver Spoofing Vulnerability

5.7CVSS5.9AI score0.28084EPSS

CVE•added 2022/10/11 7:15 p.m.•172 views

CVE-2022-38043

Windows Security Support Provider Interface Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00447EPSS

CVE•added 2022/08/09 8:15 p.m.•171 views

CVE-2022-34710

Windows Defender Credential Guard Information Disclosure Vulnerability

5.5CVSS7AI score0.01346EPSS

CVE•added 2023/01/10 10:15 p.m.•169 views

CVE-2023-21776

Windows Kernel Information Disclosure Vulnerability

5.5CVSS5.5AI score0.00669EPSS

CVE•added 2024/01/09 6:15 p.m.•169 views

CVE-2024-20699

Windows Hyper-V Denial of Service Vulnerability

5.5CVSS5.5AI score0.00231EPSS

CVE•added 2022/05/10 9:15 p.m.•164 views

CVE-2022-26930

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS7.1AI score0.02048EPSS

CVE•added 2024/01/09 6:15 p.m.•164 views

CVE-2024-20692

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

5.7CVSS5.9AI score0.0107EPSS

CVE•added 2022/04/15 7:15 p.m.•161 views

CVE-2022-24493

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

5.5CVSS6.9AI score0.00435EPSS

CVE•added 2023/11/14 6:15 p.m.•159 views

CVE-2023-36404

Windows Kernel Information Disclosure Vulnerability

5.5CVSS7AI score0.00301EPSS

CVE•added 2024/04/09 5:15 p.m.•159 views

CVE-2024-26209

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

5.5CVSS8.2AI score0.09241EPSS

CVE•added 2024/04/09 5:15 p.m.•159 views

CVE-2024-26255

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS6.6AI score0.0024EPSS

CVE•added 2024/04/09 5:15 p.m.•155 views

CVE-2024-26217

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00207EPSS

CVE•added 2022/08/09 8:15 p.m.•154 views

CVE-2022-34708

Windows Kernel Information Disclosure Vulnerability

5.5CVSS7AI score0.01087EPSS

Total number of security vulnerabilities193