Windows 10 Security Vulnerabilities and Issues — Page 39 of Windows 10 CVE List

Microsoft Server Message Block 1.0 (SMBv1) allows an information disclosure vulnerability in the way that Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 handles...

5.9CVSS6.1AI score0.27804EPSS

CVE•added 2017/11/15 3:29 a.m.•94 views

CVE-2017-11788

Windows Search in Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows server, version 1709 allows an unauthenticated attacker to remotely send specially crafted messages th...

7.5CVSS7.1AI score0.18853EPSS

CVE•added 2017/07/11 9:29 p.m.•94 views

CVE-2017-8589

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a remote code execution vulnerability due to the way that Windows Search handles objects in memory, aka "Windows...

10CVSS7.3AI score0.28386EPSS

CVE•added 2018/03/14 5:29 p.m.•94 views

CVE-2018-0894

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memo...

4.7CVSS4.7AI score0.11699EPSS

CVE•added 2018/05/09 7:29 p.m.•94 views

CVE-2018-8165

An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.

7.8CVSS8AI score0.00397EPSS

CVE•added 2018/05/09 7:29 p.m.•94 views

CVE-2018-8170

An elevation of privilege vulnerability exists in the way that the Windows kernel image handles objects in memory, aka "Windows Image Elevation of Privilege Vulnerability." This affects Windows 10, Windows 10 Servers.

7CVSS7.5AI score0.00626EPSS

CVE•added 2019/04/09 12:29 a.m.•94 views

CVE-2019-0726

A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, aka 'Windows DHCP Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0697, CVE-2019-0698.

9.8CVSS9.5AI score0.46058EPSS

CVE•added 2019/05/16 7:29 p.m.•94 views

CVE-2019-0942

An elevation of privilege vulnerability exists in the Unified Write Filter (UWF) feature for Windows 10 when it improperly restricts access to the registry, aka 'Unified Write Filter Elevation of Privilege Vulnerability'.

5.5CVSS6.2AI score0.00346EPSS

CVE•added 2019/08/14 9:15 p.m.•94 views

CVE-2019-1172

An information disclosure vulnerability exists in Azure Active Directory (AAD) Microsoft Account (MSA) during the login request session. An attacker who successfully exploited the vulnerability could take over a user's account.To exploit the vulnerability, an attacker would have to trick a user int...

4.3CVSS6AI score0.065EPSS

CVE•added 2019/08/14 9:15 p.m.•94 views

CVE-2019-1179

An elevation of privilege vulnerability exists in the way that the unistore.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially craft...

7CVSS7.3AI score0.00229EPSS

CVE•added 2019/09/11 10:15 p.m.•94 views

CVE-2019-1250

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1241, CVE-2019-1242, CVE-2019-1243, CVE-2019-1246, CVE-2019-1247,...

9.3CVSS8.5AI score0.35463EPSS

CVE•added 2019/10/10 2:15 p.m.•94 views

CVE-2019-1311

A remote code execution vulnerability exists when the Windows Imaging API improperly handles objects in memory, aka 'Windows Imaging API Remote Code Execution Vulnerability'.

9.3CVSS8.9AI score0.37242EPSS

CVE•added 2020/01/14 11:15 p.m.•94 views

CVE-2020-0628

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627...

7.8CVSS7.7AI score0.00511EPSS

CVE•added 2020/01/14 11:15 p.m.•94 views

CVE-2020-0633

7.8CVSS7.7AI score0.00511EPSS

CVE•added 2020/02/11 10:15 p.m.•94 views

CVE-2020-0737

An elevation of privilege vulnerability exists in the way that the tapisrv.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0739.

7.8CVSS8.1AI score0.00377EPSS

CVE•added 2020/09/11 5:15 p.m.•94 views

CVE-2020-0911

An elevation of privilege vulnerability exists when Windows Modules Installer improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context.An attacker could exploit this vulnerability by running a specially crafted a...

7.8CVSS8.1AI score0.00576EPSS

CVE•added 2020/04/15 3:15 p.m.•94 views

CVE-2020-1003

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1027.

7.8CVSS7.8AI score0.1501EPSS

CVE•added 2020/09/11 5:15 p.m.•94 views

CVE-2020-1115

An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context.To exploit the vulnerability, an attacker would first have ...

7.8CVSS8.1AI score0.00524EPSS

CVE•added 2020/06/09 8:15 p.m.•94 views

CVE-2020-1194

A denial of service vulnerability exists when Windows Registry improperly handles filesystem operations, aka 'Windows Registry Denial of Service Vulnerability'.

5.5CVSS6.4AI score0.00175EPSS

CVE•added 2020/06/09 8:15 p.m.•94 views

CVE-2020-1196

An elevation of privilege vulnerability exists in the way that the printconfig.dll handles objects in memory, aka 'Windows Print Configuration Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.0037EPSS

CVE•added 2020/06/09 8:15 p.m.•94 views

CVE-2020-1203

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector fail to properly handle objects in memory, aka 'Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1202.

7.8CVSS8AI score0.00549EPSS

CVE•added 2020/06/09 8:15 p.m.•94 views

CVE-2020-1255

An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) IIS module improperly handles uploaded content, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.

8.8CVSS8.2AI score0.11968EPSS

CVE•added 2020/07/14 11:15 p.m.•94 views

CVE-2020-1410

A remote code execution vulnerability exists when Windows Address Book (WAB) improperly processes vcard files.To exploit the vulnerability, an attacker could send a malicious vcard that a victim opens using Windows Address Book (WAB), aka 'Windows Address Book Remote Code Execution Vulnerability'.

9.3CVSS8.8AI score0.35463EPSS

CVE•added 2020/11/11 7:15 a.m.•94 views

CVE-2020-17010

Win32k Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00242EPSS

CVE•added 2020/11/11 7:15 a.m.•94 views

CVE-2020-17011

Windows Port Class Library Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.0073EPSS

CVE•added 2020/11/11 7:15 a.m.•94 views

CVE-2020-17047

Windows Network File System Denial of Service Vulnerability

7.8CVSS8.2AI score0.20405EPSS

CVE•added 2020/11/11 7:15 a.m.•94 views

CVE-2020-17069

Windows NDIS Information Disclosure Vulnerability

5.5CVSS7AI score0.00415EPSS

CVE•added 2021/01/12 8:15 p.m.•94 views

CVE-2021-1659

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00256EPSS

CVE•added 2021/01/12 8:15 p.m.•94 views

CVE-2021-1710

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

7.8CVSS8.2AI score0.01784EPSS

CVE•added 2021/04/13 8:15 p.m.•94 views

CVE-2021-27094

Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability

4.4CVSS6.3AI score0.00407EPSS

CVE•added 2021/04/13 8:15 p.m.•94 views

CVE-2021-28324

Windows SMB Information Disclosure Vulnerability

7.5CVSS6.7AI score0.18987EPSS

CVE•added 2021/04/13 8:15 p.m.•94 views

CVE-2021-28443

Windows Console Driver Denial of Service Vulnerability

5.5CVSS6.7AI score0.00267EPSS

CVE•added 2021/12/15 3:15 p.m.•94 views

CVE-2021-43222

Microsoft Message Queuing Information Disclosure Vulnerability

7.5CVSS8.2AI score0.08992EPSS

CVE•added 2022/02/09 5:15 p.m.•94 views

CVE-2022-21998

Windows Common Log File System Driver Information Disclosure Vulnerability

5.5CVSS6.1AI score0.0044EPSS

CVE•added 2022/02/09 5:15 p.m.•94 views

CVE-2022-22000

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00523EPSS

CVE•added 2022/02/09 5:15 p.m.•94 views

CVE-2022-22717

Windows Print Spooler Elevation of Privilege Vulnerability

7CVSS7.2AI score0.00455EPSS

CVE•added 2022/04/15 7:15 p.m.•94 views

CVE-2022-26916

Windows Fax Compose Form Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00978EPSS

CVE•added 2022/09/13 7:15 p.m.•94 views

CVE-2022-34734

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.02358EPSS

CVE•added 2022/08/09 8:15 p.m.•94 views

CVE-2022-35795

Windows Error Reporting Service Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.01488EPSS

CVE•added 2022/10/11 7:15 p.m.•94 views

CVE-2022-37977

Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.04503EPSS

CVE•added 2022/12/13 7:15 p.m.•94 views

CVE-2022-44679

Windows Graphics Component Information Disclosure Vulnerability

6.5CVSS6.9AI score0.00124EPSS

CVE•added 2017/10/13 1:29 p.m.•93 views

CVE-2017-11779

The Microsoft Windows Domain Name System (DNS) DNSAPI.dll on Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability when it fails to properly handle DNS responses, aka "Windows DNSAPI...

9.3CVSS9AI score0.38264EPSS

CVE•added 2017/09/13 1:29 a.m.•93 views

CVE-2017-8682

Windows graphics on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, Windows Server 2016, Microsoft Office Word Viewer, Microsoft Office 2007 Service Pack 3 , and Microsoft Office 2010 S...

9.3CVSS7.3AI score0.66013EPSS

CVE•added 2018/02/15 2:29 a.m.•93 views

CVE-2018-0831

The Windows kernel in Windows 10 versions 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how objects in memory are handled, aka "Windows Kernel Elevation of Privilege Vulnerability".

7.8CVSS6.7AI score0.00832EPSS

Total number of security vulnerabilities3000