Windows 10 Security Vulnerabilities and Issues — Page 6 of Windows 10 CVE List

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka "Jet Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...

9.3CVSS8AI score0.35437EPSS

CVE•added 2020/10/16 11:15 p.m.•186 views

CVE-2020-16898

A remote code execution vulnerability exists when the Windows TCP/IP stack improperly handles ICMPv6 Router Advertisement packets. An attacker who successfully exploited this vulnerability could gain the ability to execute code on the target server or client.To exploit this vulnerability, an attack...

8.8CVSS8.7AI score0.30684EPSS

In wild

CVE•added 2021/08/12 6:15 p.m.•186 views

CVE-2021-36947

Windows Print Spooler Remote Code Execution Vulnerability

8.8CVSS9AI score0.04539EPSS

CVE•added 2022/01/11 9:15 p.m.•186 views

CVE-2022-21857

Active Directory Domain Services Elevation of Privilege Vulnerability

9CVSS9.1AI score0.02533EPSS

CVE•added 2022/05/10 9:15 p.m.•186 views

CVE-2022-29104

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.019EPSS

CVE•added 2022/01/11 9:15 p.m.•185 views

CVE-2022-21896

Windows DWM Core Library Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00309EPSS

CVE•added 2022/05/10 9:15 p.m.•185 views

CVE-2022-22016

Windows PlayToManager Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00264EPSS

CVE•added 2022/05/10 9:15 p.m.•185 views

CVE-2022-29113

Windows Digital Media Receiver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00258EPSS

CVE•added 2022/07/12 11:15 p.m.•185 views

CVE-2022-30224

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability

7CVSS7.7AI score0.007EPSS

CVE•added 2019/07/29 2:13 p.m.•184 views

CVE-2019-1127

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121, CVE-2019-1122, CVE-2019-1123, CVE-2019-112...

9.3CVSS8.4AI score0.40075EPSS

CVE•added 2022/04/15 7:15 p.m.•184 views

CVE-2022-24492

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9.3CVSS9.4AI score0.02482EPSS

CVE•added 2020/01/14 11:15 p.m.•183 views

CVE-2020-0642

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0624.

7.8CVSS8.5AI score0.15527EPSS

CVE•added 2020/02/11 10:15 p.m.•183 views

CVE-2020-0662

A remote code execution vulnerability exists in the way that Windows handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'.

9CVSS8.4AI score0.34804EPSS

CVE•added 2021/05/11 7:15 p.m.•183 views

CVE-2021-28455

Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.09683EPSS

CVE•added 2021/11/10 1:18 a.m.•183 views

CVE-2021-38666

Remote Desktop Client Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.18948EPSS

CVE•added 2017/07/11 9:29 p.m.•182 views

CVE-2017-8582

HTTP.sys in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability when the component improperly handles objects in memor...

5.9CVSS5.7AI score0.1976EPSS

CVE•added 2021/06/08 11:15 p.m.•182 views

CVE-2021-31962

Kerberos AppContainer Security Feature Bypass Vulnerability

9.8CVSS9.2AI score0.08247EPSS

CVE•added 2022/04/15 7:15 p.m.•182 views

CVE-2022-21983

Win32 Stream Enumeration Remote Code Execution Vulnerability

7.5CVSS8.7AI score0.03631EPSS

CVE•added 2019/08/14 9:15 p.m.•181 views

CVE-2019-1151

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; ...

9.3CVSS9.1AI score0.33915EPSS

CVE•added 2020/08/17 7:15 p.m.•181 views

CVE-2020-1530

An elevation of privilege vulnerability exists when Windows Remote Access improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security updat...

7.8CVSS8.3AI score0.00594EPSS

CVE•added 2021/10/13 1:15 a.m.•181 views

CVE-2021-26441

Storage Spaces Controller Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00352EPSS

CVE•added 2022/01/11 9:15 p.m.•181 views

CVE-2022-21836

Windows Certificate Spoofing Vulnerability

7.8CVSS8.6AI score0.00692EPSS

CVE•added 2022/07/12 11:15 p.m.•181 views

CVE-2022-22042

Windows Hyper-V Information Disclosure Vulnerability

6.5CVSS7.1AI score0.18303EPSS

CVE•added 2022/05/10 9:15 p.m.•181 views

CVE-2022-29139

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.09236EPSS

CVE•added 2022/08/09 8:15 p.m.•181 views

CVE-2022-34705

Windows Defender Credential Guard Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00853EPSS

CVE•added 2019/07/15 7:15 p.m.•180 views

CVE-2019-1094

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1095, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116.

6.5CVSS6.1AI score0.12437EPSS

CVE•added 2020/02/11 10:15 p.m.•180 views

CVE-2020-0689

A security feature bypass vulnerability exists in secure boot, aka 'Microsoft Secure Boot Security Feature Bypass Vulnerability'.

6.7CVSS6.8AI score0.00158EPSS

CVE•added 2021/02/25 11:15 p.m.•180 views

CVE-2021-24084

Windows Mobile Device Management Information Disclosure Vulnerability

5.5CVSS5.5AI score0.06294EPSS

CVE•added 2022/01/11 9:15 p.m.•180 views

CVE-2022-21902

Windows DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00357EPSS

CVE•added 2022/08/09 8:15 p.m.•180 views

CVE-2022-33670

Windows Partition Management Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.0098EPSS

CVE•added 2019/01/08 9:29 p.m.•179 views

CVE-2019-0538

9.3CVSS8AI score0.35437EPSS

CVE•added 2019/07/15 7:15 p.m.•179 views

CVE-2019-1096

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'.

5.5CVSS5.6AI score0.23126EPSS

CVE•added 2022/01/11 9:15 p.m.•179 views

CVE-2022-21920

Windows Kerberos Elevation of Privilege Vulnerability

9CVSS8.9AI score0.08026EPSS

CVE•added 2022/04/15 7:15 p.m.•179 views

CVE-2022-26801

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00373EPSS

CVE•added 2022/06/15 10:15 p.m.•179 views

CVE-2022-30154

Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability

5.3CVSS6.9AI score0.00884EPSS

CVE•added 2022/07/12 11:15 p.m.•179 views

CVE-2022-33644

Xbox Live Save Service Elevation of Privilege Vulnerability

7CVSS7AI score0.00307EPSS

CVE•added 2022/10/11 7:15 p.m.•179 views

CVE-2022-41081

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.02826EPSS

CVE•added 2022/04/15 7:15 p.m.•178 views

CVE-2022-24530

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00271EPSS

CVE•added 2019/07/15 7:15 p.m.•177 views

CVE-2019-1086

An elevation of privilege exists in Windows Audio Service, aka 'Windows Audio Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1087, CVE-2019-1088.

7.8CVSS7.6AI score0.00278EPSS

CVE•added 2022/07/12 11:15 p.m.•177 views

CVE-2022-22025

Windows Internet Information Services Cachuri Module Denial of Service Vulnerability

7.5CVSS7.9AI score0.46506EPSS

CVE•added 2022/04/15 7:15 p.m.•177 views

CVE-2022-23257

Windows Hyper-V Remote Code Execution Vulnerability

8.8CVSS8.3AI score0.00179EPSS

CVE•added 2022/03/09 5:15 p.m.•177 views

CVE-2022-23291

Windows DWM Core Library Elevation of Privilege Vulnerability