Windows 10@21h1 Security Vulnerabilities and Issues — Windows 10@21h1 CVE List

Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most ...

7.8CVSS7.5AI score0.04549EPSS

CVE•added 2022/03/09 5:15 p.m.•460 views

CVE-2022-24508

Win32 File Enumeration Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.03238EPSS

CVE•added 2022/05/10 9:15 p.m.•407 views

CVE-2022-22012

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.07142EPSS

CVE•added 2022/03/09 5:15 p.m.•380 views

CVE-2022-21990

Remote Desktop Client Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.15329EPSS

CVE•added 2022/07/12 11:15 p.m.•371 views

CVE-2022-22048

BitLocker Security Feature Bypass Vulnerability

6.6CVSS7.2AI score0.00729EPSS

In wild

CVE•added 2022/04/15 7:15 p.m.•362 views

CVE-2022-24481

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.4425EPSS

In wild

CVE•added 2022/03/09 5:15 p.m.•359 views

CVE-2022-24503

Remote Desktop Protocol Client Information Disclosure Vulnerability

5.4CVSS6.6AI score0.00575EPSS

CVE•added 2021/07/16 9:15 p.m.•358 views

CVE-2021-34481

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or de...

9.8CVSS8.6AI score0.30378EPSS

In wild

CVE•added 2022/01/11 9:15 p.m.•353 views

CVE-2022-21894

Secure Boot Security Feature Bypass Vulnerability

4.9CVSS6.2AI score0.32954EPSS

In wild

CVE•added 2022/03/09 5:15 p.m.•343 views

CVE-2022-23288

Windows DWM Core Library Elevation of Privilege Vulnerability

7CVSS7.6AI score0.00356EPSS

CVE•added 2022/09/13 7:15 p.m.•343 views

CVE-2022-26928

Windows Photo Import API Elevation of Privilege Vulnerability

7CVSS8.1AI score0.001EPSS

In wild

CVE•added 2021/06/08 11:15 p.m.•318 views

CVE-2021-26414

Windows DCOM Server Security Feature Bypass

6.5CVSS6.9AI score0.14238EPSS

CVE•added 2022/09/13 7:15 p.m.•311 views

CVE-2022-34721

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.18666EPSS

In wild

CVE•added 2022/08/09 8:15 p.m.•308 views

CVE-2022-30133

Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.09812EPSS

CVE•added 2021/07/14 6:15 p.m.•305 views

CVE-2021-34514

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.00403EPSS

In wild

CVE•added 2022/07/12 11:15 p.m.•296 views

CVE-2022-22049

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.00235EPSS

In wild

CVE•added 2022/03/09 5:15 p.m.•285 views

CVE-2022-24505

Windows ALPC Elevation of Privilege Vulnerability

7CVSS7.6AI score0.00118EPSS

CVE•added 2021/09/15 12:15 p.m.•283 views

CVE-2021-38633

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00426EPSS

In wild

CVE•added 2022/09/13 7:15 p.m.•280 views

CVE-2022-30170

Windows Credential Roaming Service Elevation of Privilege Vulnerability

7.3CVSS8.3AI score0.00826EPSS

In wild

CVE•added 2021/09/15 12:15 p.m.•276 views

CVE-2021-36963

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00307EPSS

In wild

CVE•added 2022/04/15 7:15 p.m.•274 views

CVE-2022-24491

Windows Network File System Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.42379EPSS

CVE•added 2022/04/15 7:15 p.m.•273 views

CVE-2022-24500

Windows SMB Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.36017EPSS

CVE•added 2022/04/15 7:15 p.m.•270 views

CVE-2022-24528

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.01747EPSS

CVE•added 2022/03/09 5:15 p.m.•267 views

CVE-2022-21977

Media Foundation Information Disclosure Vulnerability

4.3CVSS5.7AI score0.01025EPSS

CVE•added 2022/05/10 9:15 p.m.•266 views

CVE-2022-21972

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

9.3CVSS9AI score0.56635EPSS

CVE•added 2022/04/15 7:15 p.m.•265 views

CVE-2022-24547

Windows Digital Media Receiver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00229EPSS

CVE•added 2022/04/15 7:15 p.m.•261 views

CVE-2022-24545

Windows Kerberos Remote Code Execution Vulnerability

8.1CVSS9AI score0.04077EPSS

CVE•added 2021/08/12 6:15 p.m.•257 views

CVE-2021-26424

Windows TCP/IP Remote Code Execution Vulnerability

9.9CVSS8.8AI score0.09829EPSS

CVE•added 2022/04/15 7:15 p.m.•257 views

CVE-2022-24497

Windows Network File System Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.39152EPSS

CVE•added 2022/05/10 9:15 p.m.•257 views

CVE-2022-26931

Windows Kerberos Elevation of Privilege Vulnerability

7.5CVSS8.5AI score0.00786EPSS

In wild

CVE•added 2021/08/12 6:15 p.m.•256 views

CVE-2021-34487

Windows Event Tracing Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00098EPSS

In wild

CVE•added 2021/12/15 3:15 p.m.•252 views

CVE-2021-43217

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

9.8CVSS9.1AI score0.25196EPSS

In wild

CVE•added 2022/03/09 5:15 p.m.•252 views

CVE-2022-23284

Windows Print Spooler Elevation of Privilege Vulnerability

9CVSS7.7AI score0.09081EPSS

CVE•added 2022/07/12 11:15 p.m.•248 views

CVE-2022-30216

Windows Server Service Tampering Vulnerability

8.8CVSS8.6AI score0.61084EPSS

In wildWeb

CVE•added 2022/03/09 5:15 p.m.•243 views

CVE-2022-23293

Windows Fast FAT File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00293EPSS

CVE•added 2021/12/15 3:15 p.m.•242 views

CVE-2021-43883

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.08752EPSS

In wild

CVE•added 2022/05/18 11:15 p.m.•242 views

CVE-2022-30138

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00726EPSS

CVE•added 2022/03/09 5:15 p.m.•241 views

CVE-2022-21967

Xbox Live Auth Manager for Windows Elevation of Privilege Vulnerability

7CVSS7.7AI score0.00458EPSS

CVE•added 2021/08/12 6:15 p.m.•240 views

CVE-2021-26432

Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability

9.8CVSS8.8AI score0.10206EPSS

CVE•added 2022/06/15 10:15 p.m.•236 views

CVE-2022-30160

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.03305EPSS

CVE•added 2022/08/09 8:15 p.m.•234 views

CVE-2022-34691

Active Directory Domain Services Elevation of Privilege Vulnerability

8.8CVSS9.1AI score0.0122EPSS

CVE•added 2022/01/11 9:15 p.m.•233 views

CVE-2022-21849

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.11661EPSS

CVE•added 2021/12/15 3:15 p.m.•229 views

CVE-2021-43226

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.20161EPSS

In wild

CVE•added 2022/03/09 5:15 p.m.•226 views

CVE-2022-24507

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00365EPSS

CVE•added 2022/07/12 11:15 p.m.•225 views

CVE-2022-22038

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.01911EPSS

CVE•added 2022/03/09 5:15 p.m.•225 views

CVE-2022-24459

Windows Fax and Scan Service Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.00227EPSS

Total number of security vulnerabilities718