Windows 10 Security Vulnerabilities and Issues — Page 10 of Windows 10 CVE List

Lucene search

MicrosoftWindows 10

3000 matches found

CVE•added 2020/10/16 11:15 p.m.•152 views

CVE-2020-0764

An elevation of privilege vulnerability exists when the Windows Storage Services improperly handle file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code execution on a victim system. ...

7.8CVSS8.2AI score0.00542EPSS

CVE•added 2021/10/13 1:15 a.m.•152 views

CVE-2021-40454

Rich Text Edit Control Information Disclosure Vulnerability

5.5CVSS6.7AI score0.00145EPSS

CVE•added 2022/03/09 5:15 p.m.•152 views

CVE-2022-24502

Windows HTML Platforms Security Feature Bypass Vulnerability

6.5CVSS6.1AI score0.02125EPSS

CVE•added 2022/08/09 8:15 p.m.•152 views

CVE-2022-34701

Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability

7.5CVSS8.4AI score0.13823EPSS

CVE•added 2018/02/15 2:29 a.m.•151 views

CVE-2018-0742

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are han...

7.8CVSS5.5AI score0.03404EPSS

CVE•added 2018/01/04 2:29 p.m.•151 views

CVE-2018-0747

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresse...

4.7CVSS4.6AI score0.06726EPSS

CVE•added 2019/08/14 9:15 p.m.•151 views

CVE-2019-1162

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC).An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view,...

7.8CVSS8.6AI score0.0047EPSS

CVE•added 2019/09/11 10:15 p.m.•151 views

CVE-2019-1289

An elevation of privilege vulnerability exists when the Windows Update Delivery Optimization does not properly enforce file share permissions, aka 'Windows Update Delivery Optimization Elevation of Privilege Vulnerability'.

5.5CVSS6.7AI score0.00212EPSS

CVE•added 2021/05/11 7:15 p.m.•151 views

CVE-2021-31187

Windows WalletService Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.01494EPSS

CVE•added 2021/07/14 6:15 p.m.•151 views

CVE-2021-33740

Windows Media Remote Code Execution Vulnerability

9.3CVSS8AI score0.01298EPSS

CVE•added 2021/07/14 6:15 p.m.•151 views

CVE-2021-33757

Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability

9.8CVSS6.7AI score0.00992EPSS

CVE•added 2022/01/11 9:15 p.m.•151 views

CVE-2022-21913

Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass

7.5CVSS7AI score0.00961EPSS

CVE•added 2022/05/10 9:15 p.m.•151 views

CVE-2022-22011

Windows Graphics Component Information Disclosure Vulnerability

5.5CVSS7AI score0.00618EPSS

CVE•added 2022/08/09 8:15 p.m.•151 views

CVE-2022-35768

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00614EPSS

CVE•added 2019/04/09 9:29 p.m.•150 views

CVE-2019-0847

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0846, CVE-2019-0851, CVE-2019-0877, CVE-2019-0879.

9.3CVSS8.4AI score0.2548EPSS

CVE•added 2020/01/14 11:15 p.m.•150 views

CVE-2020-0635

An elevation of privilege vulnerability exists in Microsoft Windows when Windows fails to properly handle certain symbolic links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0644.

7.8CVSS8.4AI score0.00404EPSS

CVE•added 2021/05/11 7:15 p.m.•150 views

CVE-2021-31194

OLE Automation Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.06956EPSS

CVE•added 2022/04/15 7:15 p.m.•150 views

CVE-2022-24542

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.01292EPSS

CVE•added 2020/04/15 3:15 p.m.•149 views

CVE-2020-0910

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Remote Code Execution Vulnerability'.

8.4CVSS8.7AI score0.14773EPSS

CVE•added 2020/10/16 11:15 p.m.•149 views

CVE-2020-16910

A security feature bypass vulnerability exists when Microsoft Windows fails to handle file creation permissions, which could allow an attacker to create files in a protected Unified Extensible Firmware Interface (UEFI) location.To exploit this vulnerability, an attacker could run a specially crafte...

6.2CVSS7AI score0.02409EPSS

CVE•added 2021/08/12 6:15 p.m.•149 views

CVE-2021-26425

Windows Event Tracing Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00184EPSS

CVE•added 2021/07/14 6:15 p.m.•149 views

CVE-2021-31961

Windows InstallService Elevation of Privilege Vulnerability

6.1CVSS6.4AI score0.00323EPSS

CVE•added 2021/07/16 9:15 p.m.•149 views

CVE-2021-34457

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS6.6AI score0.0052EPSS

CVE•added 2021/08/12 6:15 p.m.•149 views

CVE-2021-34534

Windows MSHTML Platform Remote Code Execution Vulnerability

7.5CVSS7.2AI score0.01445EPSS

CVE•added 2021/08/12 6:15 p.m.•149 views

CVE-2021-36938

Windows Cryptographic Primitives Library Information Disclosure Vulnerability

5.5CVSS6.1AI score0.00303EPSS

CVE•added 2022/04/15 7:15 p.m.•149 views

CVE-2022-24483

Windows Kernel Information Disclosure Vulnerability

5.5CVSS7AI score0.06681EPSS

CVE•added 2022/06/15 10:15 p.m.•149 views

CVE-2022-30153

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.09236EPSS

CVE•added 2022/08/09 8:15 p.m.•149 views

CVE-2022-30197

Windows Kernel Information Disclosure Vulnerability

5.5CVSS7AI score0.00948EPSS

CVE•added 2023/01/10 10:15 p.m.•149 views

CVE-2023-21765

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00597EPSS

CVE•added 2019/01/08 9:29 p.m.•148 views

CVE-2019-0570

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka "Windows Runtime Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, ...

7.8CVSS7.5AI score0.0089EPSS

CVE•added 2020/08/17 7:15 p.m.•148 views

CVE-2020-1509

An elevation of privilege vulnerability exists in the Local Security Authority Subsystem Service (LSASS) when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause an elevation of privilege on the targ...

8.8CVSS8.1AI score0.06869EPSS

CVE•added 2021/07/14 6:15 p.m.•148 views

CVE-2021-31183

Windows TCP/IP Driver Denial of Service Vulnerability

7.5CVSS7.9AI score0.14302EPSS

CVE•added 2021/07/14 6:15 p.m.•148 views

CVE-2021-33749

Windows DNS Snap-in Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.04431EPSS

CVE•added 2021/08/12 6:15 p.m.•148 views

CVE-2021-36937

Windows Media MPEG-4 Video Decoder Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00429EPSS

CVE•added 2021/12/15 3:15 p.m.•148 views

CVE-2021-43215

iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution

9.8CVSS9.6AI score0.01695EPSS

CVE•added 2022/05/10 9:15 p.m.•148 views

CVE-2022-29140

Windows Print Spooler Information Disclosure Vulnerability

5.5CVSS7.1AI score0.0133EPSS

CVE•added 2022/09/13 7:15 p.m.•148 views

CVE-2022-34722

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.07019EPSS

CVE•added 2019/01/08 9:29 p.m.•147 views

CVE-2019-0582

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka "Jet Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...

9.3CVSS8AI score0.35437EPSS

CVE•added 2019/03/06 12:0 a.m.•147 views

CVE-2019-0601

An information disclosure vulnerability exists when the Human Interface Devices (HID) component improperly handles objects in memory, aka 'HID Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0600.

4.7CVSS6.2AI score0.00549EPSS

CVE•added 2019/03/06 12:0 a.m.•147 views

CVE-2019-0621

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0661, CVE-2019-0663.

5.5CVSS6.5AI score0.01706EPSS

CVE•added 2021/06/08 11:15 p.m.•147 views

CVE-2021-31971

Windows HTML Platforms Security Feature Bypass Vulnerability

8.8CVSS7.7AI score0.0135EPSS

CVE•added 2021/07/16 9:15 p.m.•147 views

CVE-2021-34439

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

9.3CVSS7.8AI score0.01378EPSS

CVE•added 2021/07/16 9:15 p.m.•147 views

CVE-2021-34440

GDI+ Information Disclosure Vulnerability