Windows 10 Security Vulnerabilities and Issues — Page 4 of Windows 10 CVE List

Lucene search

MicrosoftWindows 10

3000 matches found

CVE•added 2022/01/11 9:15 p.m.•234 views

CVE-2022-21849

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.1622EPSS

CVE•added 2021/12/15 3:15 p.m.•233 views

CVE-2021-43226

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.10241EPSS

In wild

CVE•added 2020/06/09 8:15 p.m.•232 views

CVE-2020-1273

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS

In wild

CVE•added 2020/02/11 10:15 p.m.•229 views

CVE-2020-0686

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0683.

7.8CVSS8AI score0.30475EPSS

In wild

CVE•added 2020/06/09 8:15 p.m.•228 views

CVE-2020-1264

7.8CVSS7.7AI score0.19295EPSS

In wild

CVE•added 2022/03/09 5:15 p.m.•227 views

CVE-2022-24459

Windows Fax and Scan Service Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.00227EPSS

CVE•added 2022/03/09 5:15 p.m.•227 views

CVE-2022-24507

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00365EPSS

CVE•added 2017/07/11 9:29 p.m.•226 views

CVE-2017-8563

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to Kerberos falling back to NT LAN Manager (NTLM) Authentication Pro...

8.1CVSS7.1AI score0.17921EPSS

CVE•added 2019/10/10 2:15 p.m.•226 views

CVE-2019-1320

An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1322, CVE-2019-1340.

7.8CVSS7.8AI score0.42146EPSS

In wild

CVE•added 2022/02/09 5:15 p.m.•226 views

CVE-2022-21974

Roaming Security Rights Management Services Remote Code Execution Vulnerability

9.3CVSS8AI score0.08813EPSS

CVE•added 2022/07/12 11:15 p.m.•226 views

CVE-2022-22038

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.01911EPSS

CVE•added 2019/08/14 9:15 p.m.•225 views

CVE-2019-1222

A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. A...

10CVSS9.7AI score0.13718EPSS

CVE•added 2020/05/21 11:15 p.m.•225 views

CVE-2020-1143

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1054.

7.8CVSS7.8AI score0.76297EPSS

In wild

CVE•added 2020/06/09 8:15 p.m.•225 views

CVE-2020-1299

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'.

9.3CVSS8.4AI score0.32912EPSS

CVE•added 2020/06/09 8:15 p.m.•224 views

CVE-2020-1301

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 (SMBv1) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'.

8.8CVSS8.5AI score0.34234EPSS

CVE•added 2022/03/09 5:15 p.m.•224 views

CVE-2022-23281

Windows Common Log File System Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00475EPSS

CVE•added 2022/04/15 7:15 p.m.•224 views

CVE-2022-24533

Remote Desktop Protocol Remote Code Execution Vulnerability

8.5CVSS8.9AI score0.06599EPSS

CVE•added 2019/03/06 12:0 a.m.•223 views

CVE-2019-0633

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0630.

9CVSS9.3AI score0.33738EPSS

CVE•added 2021/12/15 3:15 p.m.•223 views

CVE-2021-43207

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00265EPSS

In wild

CVE•added 2022/08/09 8:15 p.m.•223 views

CVE-2022-35794

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

8.1CVSS9AI score0.07549EPSS

CVE•added 2020/06/09 8:15 p.m.•222 views

CVE-2020-1300

A remote code execution vulnerability exists when Microsoft Windows fails to properly handle cabinet files.To exploit the vulnerability, an attacker would have to convince a user to either open a specially crafted cabinet file or spoof a network printer and trick a user into installing a malicious ...

8.8CVSS8.3AI score0.40477EPSS

CVE•added 2021/08/12 6:15 p.m.•222 views

CVE-2021-36936

Windows Print Spooler Remote Code Execution Vulnerability

9.8CVSS9AI score0.03552EPSS

CVE•added 2022/03/09 5:15 p.m.•222 views

CVE-2022-24525

Windows Update Stack Elevation of Privilege Vulnerability

7CVSS7.7AI score0.00122EPSS

CVE•added 2022/03/09 5:15 p.m.•219 views

CVE-2022-24455

Windows CD-ROM Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00395EPSS

CVE•added 2022/03/09 5:15 p.m.•219 views

CVE-2022-24460

Tablet Windows User Interface Application Elevation of Privilege Vulnerability

7.6CVSS7.6AI score0.00888EPSS

CVE•added 2022/04/15 7:15 p.m.•219 views

CVE-2022-24534

Win32 Stream Enumeration Remote Code Execution Vulnerability

7.5CVSS8.7AI score0.03631EPSS

CVE•added 2022/05/10 9:15 p.m.•219 views

CVE-2022-29142

Windows Kernel Elevation of Privilege Vulnerability

7CVSS8.1AI score0.0121EPSS

CVE•added 2023/01/10 10:15 p.m.•219 views

CVE-2023-21746

Windows NTLM Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.43078EPSS

CVE•added 2016/08/09 9:59 p.m.•218 views

CVE-2016-3311

The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privi...

7.8CVSS7.5AI score0.51566EPSS

In wild

CVE•added 2021/05/11 7:15 p.m.•218 views

CVE-2021-28476

Windows Hyper-V Remote Code Execution Vulnerability

9.9CVSS9.7AI score0.63205EPSS

CVE•added 2022/01/11 9:15 p.m.•218 views

CVE-2022-21839

Windows Event Tracing Discretionary Access Control List Denial of Service Vulnerability

6.1CVSS7.3AI score0.00306EPSS

CVE•added 2022/03/09 5:15 p.m.•218 views

CVE-2022-22010

Media Foundation Information Disclosure Vulnerability

5.5CVSS5.7AI score0.01124EPSS

CVE•added 2022/02/09 5:15 p.m.•217 views

CVE-2022-21989

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.01829EPSS

CVE•added 2022/05/10 9:15 p.m.•217 views

CVE-2022-22019

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.02889EPSS

CVE•added 2019/07/15 7:15 p.m.•216 views

CVE-2019-0887

A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

8.5CVSS8AI score0.54304EPSS

CVE•added 2022/11/09 10:15 p.m.•216 views

CVE-2022-41099

BitLocker Security Feature Bypass Vulnerability

4.6CVSS6.3AI score0.01664EPSS

CVE•added 2015/09/09 12:59 a.m.•215 views

CVE-2015-2517

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.39088EPSS

In wild

CVE•added 2022/03/09 5:15 p.m.•215 views

CVE-2022-23287

Windows ALPC Elevation of Privilege Vulnerability

7CVSS7.6AI score0.00356EPSS

CVE•added 2022/04/15 7:15 p.m.•214 views

CVE-2022-24482

Windows ALPC Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00129EPSS

CVE•added 2022/07/12 11:15 p.m.•213 views

CVE-2022-22024

Windows Fax Service Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01341EPSS

CVE•added 2022/03/09 5:15 p.m.•213 views

CVE-2022-23294

Windows Event Tracing Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.05389EPSS

CVE•added 2020/10/16 11:15 p.m.•211 views

CVE-2020-16938

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker would have to log on to ...

5.5CVSS5.5AI score0.10627EPSS

CVE•added 2022/03/09 5:15 p.m.•211 views

CVE-2022-24454

Windows Security Support Provider Interface Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00227EPSS

CVE•added 2022/07/12 11:15 p.m.•211 views

CVE-2022-30221

Windows Graphics Component Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01583EPSS

CVE•added 2022/08/15 9:15 p.m.•211 views

CVE-2022-35822

Windows Defender Credential Guard Security Feature Bypass Vulnerability