Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows 10-

2201 matches found

CVE
CVEadded 2021/12/15 3:15 p.m.101 views

CVE-2021-43224

Windows Common Log File System Driver Information Disclosure Vulnerability

5.5CVSS7AI score0.14955EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.101 views

CVE-2022-21962

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

7.2CVSS8.2AI score0.02038EPSS
CVE
CVEadded 2022/10/11 7:15 p.m.101 views

CVE-2022-38000

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00263EPSS
CVE
CVEadded 2022/09/13 7:15 p.m.101 views

CVE-2022-38004

Windows Fax Service Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00545EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.101 views

CVE-2022-44697

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00219EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.100 views

CVE-2017-0050

The kernel API in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7; Windows 8; Windows 10 Gold, 1511, and 1607; Windows RT 8.1; Windows Server 2012 Gold and R2; and Windows Server 2016 does not properly enforce permissions, which allows local users to spoof processes, spoo...

7.8CVSS5.7AI score0.03663EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.100 views

CVE-2018-0814

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way obje...

5.5CVSS4.8AI score0.11699EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.100 views

CVE-2018-0883

Windows Shell in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, Windows Server 2016 and Windows Server, version 1709 allows a remote code execution vulnerability due to how file copy destinations ar...

7.6CVSS6.7AI score0.24638EPSS
CVE
CVEadded 2018/06/14 12:29 p.m.100 views

CVE-2018-8212

A security feature bypass vulnerability exists in Device Guard that could allow an attacker to inject malicious code into a Windows PowerShell session, aka "Device Guard Code Integrity Policy Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. T...

5.3CVSS5.2AI score0.01097EPSS
CVE
CVEadded 2019/08/14 9:15 p.m.100 views

CVE-2019-0715

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the vulnerabi...

5.8CVSS6.9AI score0.01283EPSS
CVE
CVEadded 2019/08/14 9:15 p.m.100 views

CVE-2019-1143

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise a user’s system.There are multiple ways an attacker could exploit th...

5.5CVSS6.7AI score0.00902EPSS
CVE
CVEadded 2019/10/10 2:15 p.m.100 views

CVE-2019-1326

A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability'.

7.8CVSS8.1AI score0.11204EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.100 views

CVE-2019-1397

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1389, CVE-2019-1398.

8.4CVSS9.2AI score0.01157EPSS
CVE
CVEadded 2020/01/14 11:15 p.m.100 views

CVE-2020-0614

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628...

7.8CVSS7.7AI score0.00511EPSS
CVE
CVEadded 2020/01/14 11:15 p.m.100 views

CVE-2020-0641

An elevation of privilege vulnerability exists in Windows Media Service that allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00549EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.100 views

CVE-2020-0708

A remote code execution vulnerability exists when the Windows Imaging Library improperly handles memory.To exploit this vulnerability, an attacker would first have to coerce a victim to open a specially crafted file.The security update addresses the vulnerability by correcting how the Windows Imagi...

7.8CVSS8.3AI score0.20038EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.100 views

CVE-2020-0985

An elevation of privilege vulnerability exists when the Windows Update Stack fails to properly handle objects in memory, aka 'Windows Update Stack Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0996.

7.8CVSS8AI score0.00397EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.100 views

CVE-2020-0994

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992,...

9.3CVSS8AI score0.33652EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.100 views

CVE-2020-0997

A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user right...

9.3CVSS8.3AI score0.11894EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.100 views

CVE-2020-1004

An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.00397EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.100 views

CVE-2020-1398

An elevation of privilege vulnerability exists when Windows Lockscreen fails to properly handle Ease of Access dialog.An attacker who successfully exploited the vulnerability could execute commands with elevated permissions.The security update addresses the vulnerability by ensuring that the Ease o...

6.8CVSS8AI score0.0021EPSS
CVE
CVEadded 2020/12/10 12:15 a.m.100 views

CVE-2020-16964

Windows Backup Engine Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01076EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.100 views

CVE-2020-17040

Windows Hyper-V Security Feature Bypass Vulnerability

9.8CVSS7.9AI score0.03471EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.100 views

CVE-2021-1654

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.100 views

CVE-2021-27096

NTFS Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00279EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.100 views

CVE-2021-28315

Windows Media Video Decoder Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01126EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.100 views

CVE-2021-28318

Windows GDI+ Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00542EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.100 views

CVE-2022-21860

Windows AppContracts API Server Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00492EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.100 views

CVE-2022-29105

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.03165EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.100 views

CVE-2022-44675

Windows Bluetooth Driver Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.0637EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.100 views

CVE-2022-44681

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00268EPSS
CVE
CVEadded 2016/05/11 1:59 a.m.99 views

CVE-2016-0169

GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attackers to obtain sensitive information via a crafted document, aka "Windows Graphics Component Informati...

6.5CVSS5.9AI score0.69648EPSS
CVE
CVEadded 2018/02/15 2:29 a.m.99 views

CVE-2018-0844

The Windows Common Log File System (CLFS) driver in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability ...

7.8CVSS6.8AI score0.00344EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.99 views

CVE-2018-0901

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memo...

4.7CVSS4.7AI score0.11699EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.99 views

CVE-2018-0904

The Windows kernel in Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows information disclosure vulnerability due to how memory addresses ar...

4.7CVSS5AI score0.03404EPSS
CVE
CVEadded 2018/09/13 12:29 a.m.99 views

CVE-2018-8335

A denial of service vulnerability exists in the Microsoft Server Block Message (SMB) when an attacker sends specially crafted requests to the server, aka "Windows SMB Denial of Service Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2016, Win...

7.8CVSS7.1AI score0.09653EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.99 views

CVE-2019-0788

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-1290, CVE-2019-1291.

9.3CVSS8.8AI score0.32912EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.99 views

CVE-2019-0928

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'.

6.2CVSS6.6AI score0.0021EPSS
CVE
CVEadded 2019/06/12 2:29 p.m.99 views

CVE-2019-1046

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

5.5CVSS5.6AI score0.07622EPSS
CVE
CVEadded 2019/08/14 9:15 p.m.99 views

CVE-2019-1180

An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted...

7CVSS7.3AI score0.00229EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.99 views

CVE-2019-1248

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1241, CVE-2019-1242, CVE-2019-1243, CVE-2019-1246, CVE-2019-1247,...

9.3CVSS8.5AI score0.35463EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.99 views

CVE-2019-1456

A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts, aka 'OpenType Font Parsing Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1419.

8.8CVSS9.3AI score0.23721EPSS
CVE
CVEadded 2020/01/14 11:15 p.m.99 views

CVE-2020-0613

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627, CVE-2020-0628...

7.8CVSS7.7AI score0.00511EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.99 views

CVE-2020-0684

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'.

8.8CVSS8.2AI score0.33494EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.99 views

CVE-2020-0840

An elevation of privilege vulnerability exists when Windows improperly handles hard links, aka 'Windows Hard Link Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0841, CVE-2020-0849, CVE-2020-0896.

7.8CVSS7.5AI score0.00397EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.99 views

CVE-2020-0965

A remoted code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code Execution Vulnerability'.

7.8CVSS8.2AI score0.01329EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.99 views

CVE-2020-0995

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992,...

9.3CVSS8AI score0.33652EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.99 views

CVE-2020-1208

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1236.

9.3CVSS8.4AI score0.33652EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.99 views

CVE-2020-1333

An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points, aka 'Group Policy Services Policy Processing Elevation of Privilege Vulnerability'.

6.7CVSS7.7AI score0.00422EPSS
CVE
CVEadded 2020/10/16 11:15 p.m.99 views

CVE-2020-16974

An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The ...

7.8CVSS8.2AI score0.00542EPSS
Total number of security vulnerabilities2201