Windows 10@- Security Vulnerabilities and Issues — Page 14 of Windows 10@- CVE List

Lucene search

MicrosoftWindows 10-

2201 matches found

CVE•added 2020/08/17 7:15 p.m.•124 views

CVE-2020-1587

An elevation of privilege vulnerability exists when the Windows Ancillary Function Driver for WinSock improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate p...

7.8CVSS8.7AI score0.00428EPSS

CVE•added 2021/04/13 8:15 p.m.•124 views

CVE-2021-28355

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS

CVE•added 2021/07/14 6:15 p.m.•124 views

CVE-2021-34500

Windows Kernel Memory Information Disclosure Vulnerability

7.7CVSS7AI score0.01142EPSS

CVE•added 2021/11/10 1:18 a.m.•124 views

CVE-2021-38665

Remote Desktop Protocol Client Information Disclosure Vulnerability

7.4CVSS7.8AI score0.02901EPSS

CVE•added 2022/01/11 9:15 p.m.•124 views

CVE-2022-21850

Remote Desktop Client Remote Code Execution Vulnerability

9.3CVSS9.3AI score0.07726EPSS

CVE•added 2022/02/09 5:15 p.m.•124 views

CVE-2022-21985

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS6.2AI score0.00321EPSS

CVE•added 2022/04/15 7:15 p.m.•124 views

CVE-2022-26802

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00373EPSS

CVE•added 2022/06/15 10:15 p.m.•124 views

CVE-2022-30142

Windows File History Remote Code Execution Vulnerability

7.6CVSS8.2AI score0.04781EPSS

CVE•added 2022/09/13 7:15 p.m.•124 views

CVE-2022-34720

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

7.5CVSS8.4AI score0.04314EPSS

CVE•added 2022/11/09 10:15 p.m.•124 views

CVE-2022-41052

Windows Graphics Component Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.00356EPSS

CVE•added 2016/01/13 5:59 a.m.•123 views

CVE-2016-0015

DirectShow in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 Gold and 1511 allows remote attackers to execute arbitrary code via a crafted file, aka "DirectShow Heap Corruption Remote Code Execu...

9.3CVSS8AI score0.68256EPSS

CVE•added 2017/03/17 12:59 a.m.•123 views

CVE-2017-0060

The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information from process memory via a ...

5.5CVSS4.3AI score0.03112EPSS

CVE•added 2017/07/11 9:29 p.m.•123 views

CVE-2017-8565

Windows PowerShell in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a remote code execution vulnerability when PSObject wraps a CIM Instance, aka "Windows PowerShell ...

9.3CVSS7.3AI score0.38264EPSS

CVE•added 2018/08/15 5:29 p.m.•123 views

CVE-2018-8348

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

4.7CVSS5.6AI score0.01452EPSS

CVE•added 2018/08/15 5:29 p.m.•123 views

CVE-2018-8404

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 20...

7.2CVSS6.7AI score0.00945EPSS

CVE•added 2018/11/14 1:29 a.m.•123 views

CVE-2018-8408

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows ...

5.5CVSS6.5AI score0.00704EPSS

CVE•added 2018/10/10 1:29 p.m.•123 views

CVE-2018-8494

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka "MS XML Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windo...

9.3CVSS7.8AI score0.25317EPSS

CVE•added 2018/11/14 1:29 a.m.•123 views

CVE-2018-8549

A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 ...

5.5CVSS7AI score0.00258EPSS

CVE•added 2019/03/06 12:0 a.m.•123 views

CVE-2019-0615

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0616, CVE-2019-0619, CVE-2019-0660, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/03/06 12:0 a.m.•123 views

CVE-2019-0656

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'.

7CVSS7.8AI score0.00527EPSS

CVE•added 2019/03/06 12:0 a.m.•123 views

CVE-2019-0663

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from C...

5.5CVSS6.3AI score0.01706EPSS

CVE•added 2019/04/09 3:29 a.m.•123 views

CVE-2019-0775

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0702, CVE-2019-0755, CVE-2019-0767, CVE-2019-0782.

4.7CVSS5.6AI score0.00908EPSS

CVE•added 2019/04/09 3:29 a.m.•123 views

CVE-2019-0784

A remote code execution vulnerability exists in the way that the ActiveX Data objects (ADO) handles objects in memory, aka 'Windows ActiveX Remote Code Execution Vulnerability'.

7.6CVSS8.3AI score0.03401EPSS

CVE•added 2019/05/16 7:29 p.m.•123 views

CVE-2019-0902

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895,...

9.3CVSS8.1AI score0.29592EPSS

CVE•added 2020/09/11 5:15 p.m.•123 views

CVE-2020-1039

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.3AI score0.10479EPSS

CVE•added 2020/05/21 11:15 p.m.•123 views

CVE-2020-1113

A security feature bypass vulnerability exists in Microsoft Windows when the Task Scheduler service fails to properly verify client connections over RPC, aka 'Windows Task Scheduler Security Feature Bypass Vulnerability'.

9.3CVSS8.2AI score0.01508EPSS

CVE•added 2020/10/16 11:15 p.m.•123 views

CVE-2020-16922

A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files.In an attack scenario, an attacker could bypass security features intended to prevent imprope...

5.5CVSS6.6AI score0.00564EPSS

CVE•added 2021/04/13 8:15 p.m.•123 views

CVE-2021-28332

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.11968EPSS

CVE•added 2021/04/13 8:15 p.m.•123 views

CVE-2021-28334

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.11968EPSS

CVE•added 2021/04/13 8:15 p.m.•123 views

CVE-2021-28342

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS

CVE•added 2021/05/11 7:15 p.m.•123 views

CVE-2021-28479

Windows CSC Service Information Disclosure Vulnerability

5.5CVSS7AI score0.00285EPSS

CVE•added 2021/07/14 6:15 p.m.•123 views

CVE-2021-33752

Windows DNS Snap-in Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01341EPSS

CVE•added 2021/12/15 3:15 p.m.•123 views

CVE-2021-41333

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.00545EPSS

CVE•added 2022/01/11 9:15 p.m.•123 views

CVE-2022-21880

Windows GDI+ Information Disclosure Vulnerability

7.8CVSS8.1AI score0.16624EPSS

CVE•added 2022/01/11 9:15 p.m.•123 views

CVE-2022-21881

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.06658EPSS

CVE•added 2017/12/12 9:29 p.m.•122 views

CVE-2017-11885

Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allow a remote code execution vulnerability due to the way the Routing and Remote Access service ha...

8.5CVSS8.3AI score0.61795EPSS

CVE•added 2018/02/15 2:29 a.m.•122 views

CVE-2018-0756

The Windows kernel in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Kernel Elevation of Privilege Vulnerability". This CVE is unique from CVE-...

7.8CVSS5.5AI score0.02947EPSS

CVE•added 2018/04/12 1:29 a.m.•122 views

CVE-2018-0976

A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka "Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windo...

5.3CVSS6.3AI score0.09956EPSS

CVE•added 2018/09/13 12:29 a.m.•122 views

CVE-2018-8392

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Win...

9.3CVSS8AI score0.14816EPSS

CVE•added 2018/10/10 1:29 p.m.•122 views

CVE-2018-8423

A remote code execution vulnerability exists in the Microsoft JET Database Engine, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Win...

9.3CVSS7.8AI score0.50908EPSS

CVE•added 2019/01/08 9:29 p.m.•122 views

CVE-2019-0572

An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly handles file operations, aka "Windows Data Sharing Service Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers. This CVE ID is uni...

7.8CVSS7.5AI score0.1476EPSS

CVE•added 2019/05/16 7:29 p.m.•122 views

CVE-2019-0889

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0890, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895, CVE-2019-0896,...

9.3CVSS8.1AI score0.29592EPSS

CVE•added 2019/08/14 9:15 p.m.•122 views

CVE-2019-1152

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; ...

9.3CVSS9.1AI score0.3187EPSS

CVE•added 2019/11/12 7:15 p.m.•122 views

CVE-2019-1419

A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts, aka 'OpenType Font Parsing Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1456.

8.8CVSS9.3AI score0.23721EPSS

CVE•added 2020/01/14 11:15 p.m.•122 views

CVE-2020-0626

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0627, CVE-2020-0628...

7.8CVSS7.7AI score0.00511EPSS

CVE•added 2020/01/14 11:15 p.m.•122 views

CVE-2020-0632

7.8CVSS7.7AI score0.00511EPSS

CVE•added 2020/08/17 7:15 p.m.•122 views

CVE-2020-1512

An information disclosure vulnerability exists when the Windows State Repository Service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.An attacker could exploit this vulnerability by r...

7.8CVSS7.5AI score0.16943EPSS

CVE•added 2020/08/17 7:15 p.m.•122 views

CVE-2020-1566

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new ...

7.8CVSS6.4AI score0.01794EPSS

CVE•added 2020/10/16 11:15 p.m.•122 views

CVE-2020-16936

An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The ...

7.8CVSS8.2AI score0.00542EPSS

CVE•added 2021/04/13 8:15 p.m.•122 views

CVE-2021-28338

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS

Total number of security vulnerabilities2201