Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows 10

3000 matches found

CVE
CVEadded 2021/03/11 4:15 p.m.90 views

CVE-2021-26881

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

8.8CVSS8.7AI score0.0607EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.90 views

CVE-2021-26901

Windows Event Tracing Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.0045EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.90 views

CVE-2021-27079

Windows Media Photo Codec Information Disclosure Vulnerability

6.3CVSS6.6AI score0.08228EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.90 views

CVE-2021-28309

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00403EPSS
CVE
CVEadded 2022/10/11 7:15 p.m.90 views

CVE-2022-37983

Microsoft DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00272EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.90 views

CVE-2022-44673

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

7CVSS7.4AI score0.04577EPSS
CVE
CVEadded 2015/08/15 12:59 a.m.89 views

CVE-2015-2435

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Windows 10, Office 2007 SP3 and 2010 SP2, Live Meeting 2007 Console, Lync 2010, Lync 2010 Attendee, Lync 2013 SP1, Lync Basic 2013 SP1, a...

9.3CVSS7.4AI score0.33527EPSS
CVE
CVEadded 2016/05/11 1:59 a.m.89 views

CVE-2016-0173

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vu...

7.8CVSS7.5AI score0.02289EPSS
CVE
CVEadded 2016/09/14 10:59 a.m.89 views

CVE-2016-3302

Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607, when the lock screen is enabled, do not properly restrict the loading of web content, which allows physically proximate attackers to execute arbitrary code via a (1) crafted Wi-Fi access point or (2)...

6.3CVSS6.9AI score0.00832EPSS
CVE
CVEadded 2016/11/10 6:59 a.m.89 views

CVE-2016-3335

The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to gain privileges via a crafted appl...

9.3CVSS7.5AI score0.1385EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.89 views

CVE-2017-0023

The PDF library in Microsoft Edge; Windows 8.1; Windows Server 2012 and R2; Windows RT 8.1; and Windows 10, 1511, and 1607 allows remote attackers to execute arbitrary code via a crafted PDF file, aka "Microsoft PDF Remote Code Execution Vulnerability."

7.6CVSS7.8AI score0.27879EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.89 views

CVE-2017-0074

Hyper-V in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and 2008 R2; Windows 7 SP1; Windows 8.1; Windows Server 2012 and R2; Windows 10, 1511, and 1607; and Windows Server 2016 allows guest OS users, running as virtual machines, to cause a denial of service via a crafted application, aka "H...

5.4CVSS5.2AI score0.00651EPSS
CVE
CVEadded 2017/06/29 1:29 p.m.89 views

CVE-2017-8575

The kernel in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application, aka "Microsoft Graphics Component Information Disclosure Vulnerability."

5.5CVSS4.8AI score0.02131EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.89 views

CVE-2018-0899

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memo...

4.7CVSS4.7AI score0.11699EPSS
CVE
CVEadded 2018/06/14 12:29 p.m.89 views

CVE-2018-8218

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka "Windows Hyper-V Denial of Service Vulnerability." This affects Windows 10, Windows 10 Servers.

7.7CVSS7.6AI score0.01415EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.89 views

CVE-2019-0931

An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations, aka 'Windows Storage Service Elevation of Privilege Vulnerability'.

7CVSS7AI score0.00268EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.89 views

CVE-2019-1394

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1393, CVE-2019-1395, CVE-2019-1396, CVE-2019-1408, CVE-2019-1434.

7.8CVSS7.6AI score0.00817EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.89 views

CVE-2019-1396

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1393, CVE-2019-1394, CVE-2019-1395, CVE-2019-1408, CVE-2019-1434.

7.8CVSS7.6AI score0.00817EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.89 views

CVE-2019-1408

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1393, CVE-2019-1394, CVE-2019-1395, CVE-2019-1396, CVE-2019-1434.

7.8CVSS7.6AI score0.00817EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.89 views

CVE-2019-1422

An elevation of privilege vulnerability exists in the way that the iphlpsvc.dll handles file creation allowing for a file overwrite, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1420, CVE-2019-1423.

7.8CVSS8.5AI score0.10472EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.89 views

CVE-2020-0754

An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0753.

7.8CVSS8.1AI score0.1948EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.89 views

CVE-2020-0762

An elevation of privilege vulnerability exists when Windows Defender Security Center handles certain objects in memory.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Windows Defender Security Center Elevation of Privilege Vulnerability'. This CVE ID is uniq...

7.8CVSS8.5AI score0.00502EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.89 views

CVE-2020-0772

An elevation of privilege vulnerability exists when Windows Error Reporting improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is unique from CV...

7.8CVSS8.7AI score0.0038EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.89 views

CVE-2020-0951

A security feature bypass vulnerability exists in Windows Defender Application Control (WDAC) which could allow an attacker to bypass WDAC enforcement. An attacker who successfully exploited this vulnerability could execute PowerShell commands that would be blocked by WDAC.To exploit the vulnerabil...

7.2CVSS7.7AI score0.02554EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.89 views

CVE-2020-0962

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0699.

5.5CVSS6AI score0.00873EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.89 views

CVE-2020-1017

An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0940, CVE-2020-1001, CVE-2020-1006.

7.8CVSS7.8AI score0.00397EPSS
CVE
CVEadded 2020/05/21 11:15 p.m.89 views

CVE-2020-1028

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1126, CVE-2020-1136, CVE-2020-1150.

9.3CVSS8.1AI score0.23624EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.89 views

CVE-2020-1038

A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.To exploit this vulnerability, an attacker would have to log on to an affected system...

5.5CVSS6.8AI score0.00702EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.89 views

CVE-2020-1074

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.3AI score0.36134EPSS
CVE
CVEadded 2020/05/21 11:15 p.m.89 views

CVE-2020-1136

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1028, CVE-2020-1126, CVE-2020-1150.

9.3CVSS8.1AI score0.23624EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.89 views

CVE-2020-1197

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.00397EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.89 views

CVE-2020-1199

An elevation of privilege vulnerability exists when the Windows Feedback Hub improperly handles objects in memory, aka 'Windows Feedback Hub Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.00397EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.89 views

CVE-2020-1209

An elevation of privilege vulnerability exists in the way that the Windows Network List Service handles objects in memory, aka 'Windows Network List Service Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.13831EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.89 views

CVE-2020-1245

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; o...

7.8CVSS7.8AI score0.0047EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.89 views

CVE-2020-1310

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1247, CVE-2020-1251, CVE-2020-1253.

7.2CVSS7AI score0.00589EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.89 views

CVE-2020-1370

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1249, CVE-2020-1353, CVE-2020-1399, CVE-2020-1404, CVE-2020-1413, CVE-2020-1414, CVE-2020-141...

7.8CVSS7.7AI score0.00513EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.89 views

CVE-2020-1371

An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Event Logging Service Elevation of Privilege Vulnerability'. This CVE ID i...

7.8CVSS8.6AI score0.00827EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.89 views

CVE-2020-1491

An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could...

7.8CVSS8.1AI score0.00529EPSS
CVE
CVEadded 2020/08/17 7:15 p.m.89 views

CVE-2020-1571

An elevation of privilege vulnerability exists in Windows Setup in the way it handles permissions.A locally authenticated attacker could run arbitrary code with elevated system privileges. After successfully exploiting the vulnerability, an attacker could then install programs; view, change, or del...

7.8CVSS7.5AI score0.00818EPSS
CVE
CVEadded 2020/10/16 11:15 p.m.89 views

CVE-2020-16915

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.There are multiple ways an attacke...

8.8CVSS8.1AI score0.11473EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.89 views

CVE-2020-17029

Windows Canonical Display Driver Information Disclosure Vulnerability

5.5CVSS7AI score0.00446EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.89 views

CVE-2020-17035

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.01827EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.89 views

CVE-2021-1642

Windows AppX Deployment Extensions Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.0034EPSS
CVE
CVEadded 2021/05/21 8:15 p.m.89 views

CVE-2021-21552

Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability. A local authenticated malicious user with low privileges may potentially exploit this vulnerability to bypass the restricted environment and perform unauthorized actions on the af...

8.8CVSS8.3AI score0.00139EPSS
CVE
CVEadded 2021/02/25 11:15 p.m.89 views

CVE-2021-24076

Microsoft Windows VMSwitch Information Disclosure Vulnerability

5.5CVSS6.9AI score0.00285EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.89 views

CVE-2021-26875

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00378EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.89 views

CVE-2021-27077

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.02391EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.89 views

CVE-2021-28314

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00513EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.89 views

CVE-2021-28347

Windows Speech Runtime Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00681EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.89 views

CVE-2021-28446

Windows Portmapping Information Disclosure Vulnerability

7.1CVSS6.6AI score0.0099EPSS
Total number of security vulnerabilities3000