Lucene search
K
MicrosoftWindows 10 22h2

2029 matches found

CVE
CVE
added 2023/10/10 12:0 a.m.5300 views

CVE-2023-44487

CVE-2023-44487 – HTTP/2 Rapid Reset DoS Root cause: HTTP/2 stream resets can cause servers to continue processing, leading to unbounded resource consumption and potential DoS when clients rapidly cancel streams. What’s affected: Various HTTP/2 implementations and deployments, including servers, p...

7.5CVSS8AI score0.99999EPSS
In wild
CVE
CVE
added 2024/06/11 4:59 p.m.4294 views

CVE-2024-30078

Technical details about CVE-2024-30078 are not publicly available in the provided documents. No specifics on affected driver, root cause, or remediation are present; monitor for updates from vendor/security advisories.

8.8CVSS9.4AI score0.05158EPSS
CVE
CVE
added 2013/12/11 12:0 a.m.3241 views

CVE-2013-3900

CVE-2013-3900 describes a remote code execution in the WinVerifyTrust Authenticode verification for PE files. An attacker could modify a signed executable to execute code without invalidating the signature, potentially gaining full control of the system. Microsoft republished this CVE in the Secu...

8.8CVSS7.4AI score0.44647EPSS
In wild
CVE
CVE
added 2021/07/02 9:25 p.m.2635 views

CVE-2021-34527

CVE-2021-34527, known as PrintNightmare, is a Windows Print Spooler remote code execution vulnerability. The flaw allows an authenticated attacker to execute arbitrary code with SYSTEM privileges by abusing privileged file operations in the Print Spooler, enabling installation of programs, data a...

9CVSS9AI score0.99759EPSS
In wild
CVE
CVE
added 2023/07/11 6:14 p.m.1377 views

CVE-2023-36884

CVE-2023-36884 is a Windows/Office RCE via Windows Search (.search-ms) triggered by specially crafted OOXML documents; active exploitation was noted (Storm-0978 campaign) and Microsoft released a patch/Defense in Depth mitigations in August 2023 to break the exploitation chain. Public PoCs/exploi...

7.5CVSS9.1AI score0.99083EPSS
In wild
CVE
CVE
added 2023/04/11 7:13 p.m.1327 views

CVE-2023-28252

CVE-2023-28252 – Windows CLFS driver local privilege escalation : The vulnerability stems from CLFS.sys handling of file blocks in memory (m_rgBlocks) and associated metadata, enabling an out-of-bounds access that lets an unprivileged user hijack the SYSTEM token. Public PoCs and in-the-wild acti...

7.8CVSS8.1AI score0.48973EPSS
In wild
CVE
CVE
added 2023/04/11 7:13 p.m.1325 views

CVE-2023-21554

The CVE-2023-21554 vulnerability is an RCE in Microsoft Message Queuing (MSMQ) due to improper input validation (CWE-20) in the MSMQ service. When MSMQ is enabled, a crafted MSMQ packet over TCP port 1801 can trigger an out-of-bounds/overflow condition, potentially allowing remote code execution....

9.8CVSS9.6AI score0.95454EPSS
CVE
CVE
added 2023/10/18 3:52 a.m.1135 views

CVE-2023-38545

CVE-2023-38545 is a heap-based buffer overflow in curl/libcurl during SOCKS5 proxy hostname handling. When a long host name (over 255 bytes) is passed for proxy resolution, curl may copy the full hostname into the target buffer due to a race in a slow handshake, enabling arbitrary code execution....

9.8CVSS9.4AI score0.78483EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.1062 views

CVE-2023-36802

CVE-2023-36802 is an Elevation of Privilege vulnerability in the Microsoft Streaming Service Proxy (MSKSSRV.SYS). The connected documents identify the root cause as an object type confusion in the Windows kernel-mode driver, enabling local privilege escalation to SYSTEM on vulnerable Windows 10/1...

7.8CVSS8.2AI score0.261EPSS
In wild
CVE
CVE
added 2025/01/14 6:4 p.m.1036 views

CVE-2025-21333

CVE-2025-21333 is a local elevation-of-privilege vulnerability in Windows Hyper‑V NT Kernel Integration VSP. The issue is a heap-based buffer overflow in the VSP component, enabling a local attacker with Low privilege and no user interaction to gain SYSTEM rights on the host. Public materials in ...

7.8CVSS7.7AI score0.09798EPSS
In wild
CVE
CVE
added 2024/08/13 5:29 p.m.1020 views

CVE-2024-38063

CVE-2024-38063 is a Windows IPv6/tcpip.sys vulnerability involving improper handling of IPv6 extension headers and fragmentation. Technical material in connected docs shows an integer underflow in the IPv6 fragment reassembly path (Ipv6pReassemblyTimeout) and a risky code path where IppSendErrorL...

9.8CVSS9.8AI score0.70564EPSS
CVE
CVE
added 2025/01/14 6:3 p.m.966 views

CVE-2025-21298

CVE-2025-21298 is a Windows OLE use-after-free memory corruption vulnerability in ole32.dll (UtOlePresStmToContentsStm) that enables remote code execution via specially crafted RTF, including zero-click scenarios when previews are shown in Outlook. The issue arises from a double-free of the CONTE...

9.8CVSS9.8AI score0.80912EPSS
CVE
CVE
added 2023/01/10 12:0 a.m.931 views

CVE-2023-21674

CVE-2023-21674 affects Windows Advanced Local Procedure Call (ALPC). The documented root cause is an Elevation of Privilege in ALPC that could enable browser sandbox escape and gain SYSTEM privileges. Public exploits exist (Kaspersky notes exploitation in the wild; a GitHub PoC is referenced), in...

8.8CVSS8.6AI score0.41538EPSS
In wild
CVE
CVE
added 2022/11/09 12:0 a.m.891 views

CVE-2022-41128

CVE-2022-41128 is a Windows Scripting Languages Remote Code Execution vulnerability in the JScript9 scripting language. Reports consistently describe a network-exploitable RCE where visiting a malicious site can trigger memory corruption and arbitrary code execution on affected Windows systems. E...

8.8CVSS8.3AI score0.24623EPSS
In wild
CVE
CVE
added 2023/03/14 4:55 p.m.872 views

CVE-2023-24880

CVE-2023-24880 is a Windows SmartScreen Security Feature Bypass vulnerability. The Connected sources describe MOTW bypass via crafted files that can defeat SmartScreen/Protected View, enabling execution of malicious code without proper MOTW checks. Exploitation in the wild is mentioned in multipl...

4.4CVSS7AI score0.78152EPSS
In wild
CVE
CVE
added 2023/02/14 8:9 p.m.853 views

CVE-2023-21823

CVE-2023-21823 (Windows Graphics Component RCE) : A Windows Graphics Component remote code execution vulnerability that can give an attacker SYSTEM-level code execution when exploited. Public discussion across sources notes exploitation risk and active exploitation in the wild around Patch Tuesda...

7.8CVSS7.9AI score0.05563EPSS
In wild
CVE
CVE
added 2022/11/09 12:0 a.m.806 views

CVE-2022-41073

CVE-2022-41073 — Windows Print Spooler Elevation of Privilege affects Windows Print Spooler. Connected docs note exploitation in the wild and public patching via Microsoft updates (Nov 2022 Patch Tuesday). Remediation is to apply the Microsoft update for CVE-2022-41073 per MSRC/update guidance in...

7.8CVSS8.1AI score0.02389EPSS
In wild
CVE
CVE
added 2022/11/09 12:0 a.m.799 views

CVE-2022-41091

CVE-2022-41091 is a Windows security feature bypass in Mark of the Web (MOTW). The vulnerability allows bypassing MOTW protections, with a CVSS v3.1 base score of 5.4 (AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L). Public sources note exploitation in the wild and patches are delivered via Microsoft’s upda...

5.4CVSS7AI score0.01986EPSS
In wild
CVE
CVE
added 2022/11/09 12:0 a.m.798 views

CVE-2022-41049

CVE-2022-41049 refers to a Windows Mark of the Web (MotW) security feature bypass vulnerability. Affected: Windows MotW handling; Root cause: bypass of MotW checks that normally protect against untrusted content. Impact: limited loss of integrity and availability of security features; exploitatio...

5.4CVSS6.8AI score0.02482EPSS
In wild
CVE
CVE
added 2022/11/09 12:0 a.m.786 views

CVE-2022-41125

CVE-2022-41125 affects Windows CNG Key Isolation Service (Windows Cryptographic Next Generation). The underlying issue is an Elevation of Privilege in that service, enabling an authenticated attacker to gain SYSTEM privileges. Patch guidance is to install the Microsoft updates for this CVE (per M...

7.8CVSS8.1AI score0.03021EPSS
In wild
CVE
CVE
added 2023/10/10 5:8 p.m.778 views

CVE-2023-36563

CVE-2023-36563 refers to a Microsoft WordPad Information Disclosure vulnerability. The connected materials confirm that exploitation could disclose NTLM hashes when a user opens a specially crafted file or if an attacker has access to the host, with signs of exploitation in the wild cited by Patc...

6.5CVSS7.1AI score0.20719EPSS
In wild
CVE
CVE
added 2023/09/12 4:58 p.m.772 views

CVE-2023-38148

Mode C: CVE-2023-38148 is described in connected sources as a Windows Internet Connection Sharing (ICS) Remote Code Execution vulnerability. It is reported that an unauthenticated attacker could exploit ICS by sending a specially crafted data packet to a vulnerable system to install malware. The ...

8.8CVSS8.8AI score0.08176EPSS
CVE
CVE
added 2024/02/13 6:2 p.m.754 views

CVE-2024-21338

CVE-2024-21338 is a Windows kernel local privilege escalation caused by an exposed IOCTL with insufficient access control in the appid.sys component. The vulnerability enables local attackers with LOW privileges and no user interaction to escalate to kernel to access high-privilege operations (CV...

7.8CVSS8.1AI score0.51865EPSS
In wild
CVE
CVE
added 2025/04/08 5:23 p.m.750 views

CVE-2025-29824

CVE-2025-29824 is a Use-After-Free vulnerability in the Windows Common Log File System Driver (CLFS) kernel driver, caused by a race condition in W32PROCESS handling via WaitForInputIdle that enables local privilege escalation to SYSTEM. Microsoft patched this in April 2025 (KB5044284). Public ex...

7.8CVSS7.5AI score0.1806EPSS
In wild
CVE
CVE
added 2022/12/13 12:0 a.m.743 views

CVE-2022-44698

CVE-2022-44698 is a Windows SmartScreen security feature bypass that enables bypass of Mark-of-the-Web protections via specially crafted files. The public data confirms exploitation in the wild and active exploitation historically cited by multiple sources (CISA KEV, KrebsOnSecurity). The underly...

5.4CVSS6.8AI score0.76106EPSS
In wild
CVE
CVE
added 2023/09/12 4:58 p.m.731 views

CVE-2023-35355

CVE-2023-35355 is a Windows elevation-of-privilege vulnerability affecting the Windows Cloud Files Mini Filter Driver. The CVE is rated CVSSv3.1 base 7.8 (LOCAL exploit, LOW privileges required, no user interaction, HIGH impact to confidentiality, integrity, and availability) per Microsoft. Conne...

7.8CVSS8.1AI score0.00709EPSS
CVE
CVE
added 2023/05/09 5:3 p.m.727 views

CVE-2023-24932

CVE-2023-24932 is a Secure Boot bypass vulnerability. It involves a Microsoft-signed UEFI application using the IhisiParamBuffer NVRAM variable to bypass Security2 verification, potentially allowing execution of unsigned binaries during early boot. Affected components include DT Research’s DtBios...

6.7CVSS6.9AI score0.10561EPSS
In wild
CVE
CVE
added 2023/02/14 7:33 p.m.721 views

CVE-2023-23376

CVE-2023-23376 is a Windows Common Log File System Driver elevation-of-privilege vulnerability. The flaw in the CLFS driver could allow a local attacker to gain SYSTEM privileges, potentially enabling a chain with other bugs. Public exploitation and in-the-wild activity are discussed in Patch Tue...

7.8CVSS7.9AI score0.10853EPSS
In wild
CVE
CVE
added 2023/10/10 5:8 p.m.705 views

CVE-2023-36434

Technical details about CVE-2023-36434 are not provided in the connected documents. The materials mention the vulnerability in Windows IIS (Elevation of Privilege) but do not disclose affected products, root cause, exploit info, or fixes. Monitor for updates.

9.8CVSS9.4AI score0.02194EPSS
In wild
CVE
CVE
added 2023/09/12 4:58 p.m.698 views

CVE-2023-36803

CVE-2023-36803 is a Windows kernel vulnerability linked to the VRegDriver/registry callback path, enabling information disclosure via registry virtualization and differencing hive mechanisms. The connected material describes it as one of several registry callbacks issues in the VRegDriver stack, ...

5.5CVSS6.5AI score0.00999EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.695 views

CVE-2023-36805

Technical details for CVE-2023-36805 are not publicly provided in the supplied documents. Monitor for updates from official advisories.

7CVSS7.6AI score0.02252EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.691 views

CVE-2023-38147

Technical details about CVE-2023-38147 are not publicly provided in the supplied documents. Monitor for updates from the sources listed (NVD, CVE List, OpenVAS entries, and Microsoft KB).

8.8CVSS8.8AI score0.01009EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.680 views

CVE-2023-38142

CVE-2023-38142 is a Windows kernel elevation-of-privilege vulnerability that can be exploited locally by an attacker with low privileges and no user interaction, with a high impact on confidentiality, integrity and availability (CVSS 3.1 base score 7.8). The provided documents confirm the vulnera...

7.8CVSS8.1AI score0.06519EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.673 views

CVE-2023-38160

CVE-2023-38160 is described as a Windows TCP/IP Information Disclosure vulnerability. The provided initial entry includes CVSS v3.1 metrics (base score 5.5, Medium) with local attack vector, low attack complexity, and privileges required, and a confidentiality impact of High while integrity/avail...

5.5CVSS6.6AI score0.01093EPSS
CVE
CVE
added 2024/10/08 5:36 p.m.672 views

CVE-2024-43572

CVE-2024-43572 is a Microsoft Windows Management Console Remote Code Execution vulnerability. Connected sources confirm a patch was released in the October 2024 updates, and Microsoft/Elastic Security Labs notes mitigations such as blocking untrusted MSC files to prevent code execution via MMC. T...

7.8CVSS8.6AI score0.60954EPSS
In wild
CVE
CVE
added 2024/02/13 6:2 p.m.660 views

CVE-2024-21412

CVE-2024-21412 is a Windows SmartScreen security feature bypass that lets a downloaded file, marked by the Mark of the Web (MoTW), execute without SmartScreen prompts when dealing with Internet Shortcut files. Connected sources cite in-the-wild activity (Water Hydra) and exploitation via spearphi...

8.1CVSS8.3AI score0.95443EPSS
In wild
CVE
CVE
added 2023/07/11 5:3 p.m.658 views

CVE-2023-36874

CVE-2023-36874 is a Windows Error Reporting Service privilege-escalation vulnerability. The root cause described in the sources is a filesystem/relative-path handling flaw: WER may invoke wermgr.exe using a relative path and does not validate symbolic links, allowing a non-system executable to be...

7.8CVSS8.7AI score0.32309EPSS
In wild
CVE
CVE
added 2023/10/10 5:7 p.m.654 views

CVE-2023-36584

CVE-2023-36584 concerns a Windows Mark of the Web (MOTW) security feature bypass vulnerability. The MOTW bypass can cause a limited loss of integrity and availability of security features, as described by CISA KEV entries. The vulnerability is listed among known exploited vulnerabilities catalog ...

5.4CVSS7.3AI score0.03055EPSS
In wild
CVE
CVE
added 2023/03/14 4:55 p.m.601 views

CVE-2023-23415

CVE-2023-23415 is described via connected sources as an ICMP-based Remote Code Execution affecting Windows. The referenced material states that exploitation could involve sending a malicious fragmented ICMP packet to a vulnerable host bound to a raw socket, potentially enabling arbitrary code exe...

9.8CVSS9.7AI score0.03479EPSS
CVE
CVE
added 2024/08/08 1:59 a.m.599 views

CVE-2024-21302

Microsoft has fixed CVE-2024-21302 for Windows systems with Virtualization-Based Security (VBS). The elevation-of-privilege vulnerability allowed an administrator to replace current Windows system files with older versions, potentially reintroducing mitigated VBS vulnerabilities and exfiltrating ...

6.7CVSS5.8AI score0.01559EPSS
CVE
CVE
added 2025/09/09 5:1 p.m.580 views

CVE-2025-53799

CVE-2025-53799 affects the Windows Imaging Component. The vulnerability arises from use of an uninitialized resource in Imaging Component code, enabling local attackers to disclose information. The NCSC entry confirms the impact as Access to sensitive data with a CVSS-like rating around 5.5 (Medi...

5.5CVSS6.1AI score0.0073EPSS
CVE
CVE
added 2024/05/14 4:57 p.m.572 views

CVE-2024-30051

CVE-2024-30051 is an Elevation of Privilege in the Windows Desktop Window Manager (DWM) core library dwmcore.dll. The root cause is a heap-based buffer overflow in CCommandBuffer::Initialize caused by a size miscalculation (integer division) that can overflow the heap during a heap spray, allowin...

7.8CVSS6.4AI score0.05687EPSS
In wild
CVE
CVE
added 2025/09/09 5:1 p.m.567 views

CVE-2025-53803

CVE-2025-53803 affects the Windows Kernel. Reported as: error message generation could disclose sensitive information to an authorized local attacker. According to the available connected sources, the vulnerability is categorized under Windows Kernel with a documented impact of accessing sensitiv...

5.5CVSS5.9AI score0.00606EPSS
CVE
CVE
added 2023/07/11 5:2 p.m.554 views

CVE-2023-32049

CVE-2023-32049 is a Windows SmartScreen Security Feature Bypass vulnerability. The issue allows an attacker to bypass the Open File - Security Warning prompt by convincing a user to click a specially crafted URL, enabling potential code execution on the affected system. Public sources indicate ac...

8.8CVSS9.3AI score0.04401EPSS
In wild
CVE
CVE
added 2024/06/11 4:59 p.m.553 views

CVE-2024-30088

CVE-2024-30088 is a Windows Kernel TOCTOU race condition that can lead to local privilege escalation via AuthzBasepCopyoutInternalSecurityAttributes. Publicly discussed exploits and PoCs exist (Windows kernel LPE PoCs and Metasploit module), and CISA lists it as a known-exploited vulnerability; a...

7CVSS6.9AI score0.68202EPSS
In wild
CVE
CVE
added 2023/11/14 5:57 p.m.549 views

CVE-2023-36025

CVE-2023-36025 is a Windows SmartScreen Security Feature Bypass vulnerability. Affected product context is Microsoft Windows (SmartScreen). Root cause and impact are described as bypass of SmartScreen with high severity (CVSS v3.1: 8.8, HIGH) affecting confidentiality, integrity, and availability...

8.8CVSS9.5AI score0.88196EPSS
In wild
CVE
CVE
added 2024/11/12 5:54 p.m.548 views

CVE-2024-38203

Technical details for CVE-2024-38203 are not publicly available in the supplied documents. No specifics on affected products, root cause, or remediation are provided here; monitor the feeds for updates from Microsoft and vulnerability trackers.

6.2CVSS5.8AI score0.00677EPSS
CVE
CVE
added 2024/03/12 4:58 p.m.547 views

CVE-2024-26169

CVE-2024-26169 is a Windows Error Reporting Service Elevation of Privilege vulnerability (improper privilege management) that allows a local attacker with user permissions to gain SYSTEM privileges. Public exploits exist; the vulnerability has been added to CISA’s Known Exploited Vulnerabilities ...

7.8CVSS7.9AI score0.04014EPSS
In wild
CVE
CVE
added 2024/08/08 1:59 a.m.535 views

CVE-2024-38202

CVE-2024-38202 describes an elevation of privilege in Windows Update that could allow a user with basic privileges to reintroduce mitigated vulnerabilities or bypass some VBS protections. The vulnerability requires an attacker to coax an Administrator or delegated user into performing a system re...

7.3CVSS8.2AI score0.01678EPSS
CVE
CVE
added 2023/07/11 5:2 p.m.532 views

CVE-2023-32046

CVE-2023-32046 is a Windows MSHTML Platform Elevation of Privilege vulnerability. The MSHTML engine (used by Windows, Office, Outlook, etc.) contains a flaw that enables local privilege escalation when a user opens a specially crafted file delivered via email or web page. Exploitation requires us...

7.8CVSS8.7AI score0.09083EPSS
In wild
Total number of security vulnerabilities2029