Windows 10 22h2@* Security Vulnerabilities and Issues — Page 18 of Windows 10 22h2@* CVE List

Time-of-check time-of-use (toctou) race condition in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.

7CVSS7.1AI score0.00036EPSS

CVE•added 2025/01/14 6:15 p.m.•98 views

CVE-2025-21241

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00626EPSS

CVE•added 2025/01/14 6:15 p.m.•98 views

CVE-2025-21295

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.01027EPSS

CVE•added 2025/01/14 6:15 p.m.•98 views

CVE-2025-21307

Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.07545EPSS

CVE•added 2025/04/08 6:16 p.m.•98 views

CVE-2025-27731

Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.001EPSS

CVE•added 2025/06/10 5:22 p.m.•98 views

CVE-2025-33059

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00048EPSS

CVE•added 2023/02/14 8:15 p.m.•97 views

CVE-2023-21697

Windows Internet Storage Name Service (iSNS) Server Information Disclosure Vulnerability

6.2CVSS5.8AI score0.00364EPSS

CVE•added 2023/07/11 6:15 p.m.•97 views

CVE-2023-21756

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00124EPSS

CVE•added 2023/04/11 9:15 p.m.•97 views

CVE-2023-28276

Windows Group Policy Security Feature Bypass Vulnerability

4.4CVSS4.9AI score0.00196EPSS

CVE•added 2023/07/11 6:15 p.m.•97 views

CVE-2023-32041

Windows Update Orchestrator Service Information Disclosure Vulnerability

5.5CVSS7AI score0.00776EPSS

CVE•added 2023/07/11 6:15 p.m.•97 views

CVE-2023-35328

Windows Transaction Manager Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00115EPSS

CVE•added 2023/08/08 6:15 p.m.•97 views

CVE-2023-36905

Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

7.5CVSS7AI score0.03753EPSS

CVE•added 2023/08/08 6:15 p.m.•97 views

CVE-2023-36913

Microsoft Message Queuing Information Disclosure Vulnerability

7.5CVSS7.5AI score0.00443EPSS

CVE•added 2024/05/14 5:16 p.m.•97 views

CVE-2024-30003

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.5AI score0.00286EPSS

CVE•added 2024/05/14 5:16 p.m.•97 views

CVE-2024-30005

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.5AI score0.00286EPSS

CVE•added 2024/07/09 5:15 p.m.•97 views

CVE-2024-38049

Windows Distributed Transaction Coordinator Remote Code Execution Vulnerability

8.1CVSS8.1AI score0.00544EPSS

CVE•added 2024/07/09 5:15 p.m.•97 views

CVE-2024-38062

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.0162EPSS

CVE•added 2024/07/09 5:15 p.m.•97 views

CVE-2024-38064

Windows TCP/IP Information Disclosure Vulnerability

7.5CVSS8.3AI score0.07885EPSS

CVE•added 2024/11/12 6:15 p.m.•97 views

CVE-2024-43627

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01284EPSS

CVE•added 2024/12/12 2:4 a.m.•97 views

CVE-2024-49079

Input Method Editor (IME) Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00187EPSS

CVE•added 2025/02/11 6:15 p.m.•97 views

CVE-2025-21349

Windows Remote Desktop Configuration Service Tampering Vulnerability

6.8CVSS7.5AI score0.00091EPSS

CVE•added 2025/02/11 6:15 p.m.•97 views

CVE-2025-21419

Windows Setup Files Cleanup Elevation of Privilege Vulnerability

7.1CVSS7.6AI score0.00167EPSS

CVE•added 2022/12/13 7:15 p.m.•96 views

CVE-2022-44677

Windows Projected File System Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00208EPSS

CVE•added 2023/06/14 12:15 a.m.•96 views

CVE-2023-32012

Windows Container Manager Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00207EPSS

CVE•added 2023/07/11 6:15 p.m.•96 views

CVE-2023-32056

Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability

9.8CVSS8.6AI score0.00842EPSS

CVE•added 2023/07/11 6:15 p.m.•96 views

CVE-2023-35312

Microsoft VOLSNAP.SYS Elevation of Privilege Vulnerability

7.8CVSS8.5AI score0.00394EPSS

CVE•added 2023/07/11 6:15 p.m.•96 views

CVE-2023-35362

Windows Clip Service Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00076EPSS

CVE•added 2024/05/14 5:16 p.m.•96 views

CVE-2024-30012

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.5AI score0.00284EPSS

CVE•added 2024/05/14 5:17 p.m.•96 views

CVE-2024-30039

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS6.2AI score0.00385EPSS

CVE•added 2024/06/11 5:15 p.m.•96 views

CVE-2024-30089

Microsoft Streaming Service Elevation of Privilege Vulnerability

7.8CVSS8.5AI score0.02467EPSS

CVE•added 2024/07/09 5:15 p.m.•96 views

CVE-2024-38066

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00675EPSS

CVE•added 2024/11/12 6:15 p.m.•96 views

CVE-2024-43629

Windows DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.0051EPSS

CVE•added 2025/01/14 6:15 p.m.•96 views

CVE-2025-21270

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.01023EPSS

CVE•added 2025/01/14 6:15 p.m.•96 views

CVE-2025-21312

Windows Smart Card Reader Information Disclosure Vulnerability

2.4CVSS3.6AI score0.00127EPSS

CVE•added 2025/01/14 6:15 p.m.•96 views

CVE-2025-21324

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00133EPSS

CVE•added 2025/02/11 6:15 p.m.•96 views

CVE-2025-21368

Microsoft Digest Authentication Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00487EPSS

CVE•added 2025/04/08 6:15 p.m.•96 views

CVE-2025-26644

Automated recognition mechanism with inadequate detection or handling of adversarial input perturbations in Windows Hello allows an unauthorized attacker to perform spoofing locally.

5.1CVSS7AI score0.00056EPSS

CVE•added 2025/03/11 5:16 p.m.•96 views

CVE-2025-26645

Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

8.8CVSS8.8AI score0.00608EPSS

Total number of security vulnerabilities1465