Windows 10@- Security Vulnerabilities and Issues — Page 18 of Windows 10@- CVE List

Lucene search

MicrosoftWindows 10-

2201 matches found

CVE•added 2018/08/15 5:29 p.m.•114 views

CVE-2018-8339

An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior, aka "Windows Installer Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows ...

7CVSS6.6AI score0.00291EPSS

CVE•added 2018/08/15 5:29 p.m.•114 views

CVE-2018-8343

An elevation of privilege vulnerability exists in the Network Driver Interface Specification (NDIS) when ndis.sys fails to check the length of a buffer prior to copying memory to it, aka "Windows NDIS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT ...

7.8CVSS6.8AI score0.00244EPSS

CVE•added 2018/09/13 12:29 a.m.•114 views

CVE-2018-8410

An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory, aka "Windows Registry Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 201...

7.8CVSS7.5AI score0.26284EPSS

CVE•added 2018/10/10 1:29 p.m.•114 views

CVE-2018-8411

An elevation of privilege vulnerability exists when NTFS improperly checks access, aka "NTFS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Window...

7.8CVSS7.5AI score0.09413EPSS

CVE•added 2018/09/13 12:29 a.m.•114 views

CVE-2018-8455

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers.

7.8CVSS7.5AI score0.00311EPSS

CVE•added 2018/11/14 1:29 a.m.•114 views

CVE-2018-8553

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Win...

9.3CVSS7.7AI score0.16422EPSS

CVE•added 2019/08/14 9:15 p.m.•114 views

CVE-2019-0720

A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating system ...

8CVSS8.9AI score0.00858EPSS

CVE•added 2019/04/09 12:29 a.m.•114 views

CVE-2019-0754

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.

5.5CVSS6.4AI score0.00471EPSS

CVE•added 2019/06/12 2:29 p.m.•114 views

CVE-2019-0905

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.1AI score0.10107EPSS

CVE•added 2019/07/15 7:15 p.m.•114 views

CVE-2019-1067

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'.

7.8CVSS7.5AI score0.00274EPSS

CVE•added 2019/08/14 9:15 p.m.•114 views

CVE-2019-1147

9.3CVSS7.9AI score0.09677EPSS

CVE•added 2020/02/11 10:15 p.m.•114 views

CVE-2020-0655

A remote code execution vulnerability exists in Remote Desktop Services â€“ formerly known as Terminal Services â€“ when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop ServicesÂ Remote Code Execution Vulnerability'.

8.5CVSS8.4AI score0.45678EPSS

CVE•added 2020/09/11 5:15 p.m.•114 views

CVE-2020-1130

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles data operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.An attacker could exploit this vulnerability by running a specially cra...

7.8CVSS7.2AI score0.00694EPSS

CVE•added 2020/07/14 11:15 p.m.•114 views

CVE-2020-1346

An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations, aka 'Windows Modules Installer Elevation of Privilege Vulnerability'.

7.8CVSS7.6AI score0.003EPSS

CVE•added 2020/12/10 12:15 a.m.•114 views

CVE-2020-16958

Windows Backup Engine Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.0137EPSS

CVE•added 2021/07/14 6:15 p.m.•114 views

CVE-2021-33763

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00429EPSS

CVE•added 2021/07/14 6:15 p.m.•114 views

CVE-2021-33783

Windows SMB Information Disclosure Vulnerability

6.5CVSS7.1AI score0.13694EPSS

CVE•added 2021/07/14 6:15 p.m.•114 views

CVE-2021-34489

DirectWrite Remote Code Execution Vulnerability

7.8CVSS8AI score0.00481EPSS

CVE•added 2021/09/15 12:15 p.m.•114 views

CVE-2021-38629

Windows Ancillary Function Driver for WinSock Information Disclosure Vulnerability

6.5CVSS7.2AI score0.14182EPSS

CVE•added 2021/10/13 1:15 a.m.•114 views

CVE-2021-40488

Storage Spaces Controller Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00496EPSS

CVE•added 2021/11/10 1:19 a.m.•114 views

CVE-2021-42280

Windows Feedback Hub Elevation of Privilege Vulnerability

7.8CVSS6.8AI score0.00157EPSS

CVE•added 2021/11/10 1:19 a.m.•114 views

CVE-2021-42284

Windows Hyper-V Denial of Service Vulnerability

7.5CVSS7.4AI score0.0572EPSS

CVE•added 2022/01/11 9:15 p.m.•114 views

CVE-2022-21928

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

6.9CVSS7.7AI score0.01636EPSS

CVE•added 2022/06/15 10:15 p.m.•114 views

CVE-2022-30140

Windows iSCSI Discovery Service Remote Code Execution Vulnerability

7.5CVSS8.2AI score0.00575EPSS

CVE•added 2022/06/15 10:15 p.m.•114 views

CVE-2022-30166

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.05448EPSS

CVE•added 2022/11/09 10:15 p.m.•114 views

CVE-2022-38015

Windows Hyper-V Denial of Service Vulnerability

6.5CVSS7.3AI score0.00092EPSS

CVE•added 2022/11/09 10:15 p.m.•114 views

CVE-2022-41088

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00147EPSS

CVE•added 2017/05/12 2:29 p.m.•113 views

CVE-2017-0279

The Microsoft Server Message Block 1.0 (SMBv1) server on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to execute remote code by the way it ...

7CVSS7.7AI score0.05522EPSS

CVE•added 2018/02/15 2:29 a.m.•113 views

CVE-2018-0825

StructuredQuery in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows a remote code execution vulnerability due to how objects are handled in m...

7.6CVSS7.3AI score0.26183EPSS

CVE•added 2018/02/15 2:29 a.m.•113 views

CVE-2018-0830

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory a...

4.7CVSS4.9AI score0.11699EPSS

CVE•added 2018/06/14 12:29 p.m.•113 views

CVE-2018-8205

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka "Windows Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windo...

5.5CVSS6.4AI score0.00652EPSS

CVE•added 2018/07/11 12:29 a.m.•113 views

CVE-2018-8309

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka "Windows Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 ...

5.5CVSS6.4AI score0.00453EPSS

CVE•added 2018/12/12 12:29 a.m.•113 views

CVE-2018-8599

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly impersonates certain file operations, aka "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability." This affects Microsoft Visual Studio, Windows Server 2019, Windo...

7.8CVSS8.4AI score0.00442EPSS

CVE•added 2019/04/09 12:29 a.m.•113 views

CVE-2019-0695

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0690, CVE-2019-0701.

6.8CVSS6.9AI score0.00375EPSS

CVE•added 2019/08/14 9:15 p.m.•113 views

CVE-2019-0714

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the vulnerabi...

5.8CVSS6.9AI score0.01294EPSS

CVE•added 2019/08/14 9:15 p.m.•113 views

CVE-2019-0716

A denial of service vulnerability exists when Windows improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.To exploit this vulnerability, an attacker would have to log on to an affected system and run a special...

6.8CVSS7.1AI score0.00965EPSS

CVE•added 2019/05/16 7:29 p.m.•113 views

CVE-2019-0890

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895, CVE-2019-0896,...

9.3CVSS8.1AI score0.29592EPSS

CVE•added 2020/09/11 5:15 p.m.•113 views

CVE-2020-1319

A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or cre...

9.3CVSS8AI score0.1198EPSS

CVE•added 2020/08/17 7:15 p.m.•113 views

CVE-2020-1490

An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges on the victim system.To exploit the vulnerability, an attacker would first have to gain execution on t...

7.8CVSS8.1AI score0.0037EPSS

CVE•added 2020/08/17 7:15 p.m.•113 views

CVE-2020-1541

An elevation of privilege vulnerability exists when the Windows Backup Engine improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security u...

7.8CVSS8.1AI score0.00387EPSS

CVE•added 2020/08/17 7:15 p.m.•113 views

CVE-2020-1579

An elevation of privilege vulnerability exists when the Windows Function Discovery SSDP Provider improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privil...

7.8CVSS8.6AI score0.00397EPSS

CVE•added 2020/10/16 11:15 p.m.•113 views

CVE-2020-16972

An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The ...

7.8CVSS8.2AI score0.00542EPSS

CVE•added 2021/04/13 8:15 p.m.•113 views

CVE-2021-28333

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.09536EPSS

CVE•added 2021/04/13 8:15 p.m.•113 views

CVE-2021-28339

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS

CVE•added 2021/07/14 6:15 p.m.•113 views

CVE-2021-33765

Windows Installer Spoofing Vulnerability