Windows 10 Security Vulnerabilities and Issues — Windows 10 CVE List

Lucene search

MicrosoftWindows 10

381 matches found

CVE•added 2021/06/08 11:15 p.m.•1195 views

CVE-2021-31956

Windows NTFS Elevation of Privilege Vulnerability

9.3CVSS8.5AI score0.8788EPSS

In wild

CVE•added 2019/05/16 7:29 p.m.•1048 views

CVE-2019-0903

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.

9.3CVSS8AI score0.50648EPSS

In wild

CVE•added 2015/07/20 6:59 p.m.•897 views

CVE-2015-2426

Buffer underflow in atmfd.dll in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a cra...

9.3CVSS7.4AI score0.91612EPSS

In wild

CVE•added 2022/05/10 9:15 p.m.•585 views

CVE-2022-29130

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.13776EPSS

CVE•added 2022/05/10 9:15 p.m.•408 views

CVE-2022-22012

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.06215EPSS

CVE•added 2021/07/16 9:15 p.m.•359 views

CVE-2021-34481

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or de...

9.8CVSS8.6AI score0.26941EPSS

In wild

CVE•added 2019/10/10 2:15 p.m.•358 views

CVE-2019-1365

An elevation of privilege vulnerability exists when Microsoft IIS Server fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability can allow an unprivileged function ran by the user to execute code in the context of NT AUTHORITY\sy...

9.9CVSS9.3AI score0.02534EPSS

CVE•added 2022/09/13 7:15 p.m.•312 views

CVE-2022-34721

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.18666EPSS

In wild

CVE•added 2022/08/09 8:15 p.m.•309 views

CVE-2022-30133

Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.15582EPSS

CVE•added 2022/04/15 7:15 p.m.•275 views

CVE-2022-24491

Windows Network File System Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.42379EPSS

CVE•added 2020/06/09 8:15 p.m.•269 views

CVE-2020-1307

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020...

9.3CVSS7.7AI score0.19295EPSS

In wild

CVE•added 2022/05/10 9:15 p.m.•267 views

CVE-2022-21972

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

9.3CVSS9AI score0.5757EPSS

CVE•added 2021/08/12 6:15 p.m.•258 views

CVE-2021-26424

Windows TCP/IP Remote Code Execution Vulnerability

9.9CVSS8.8AI score0.09829EPSS

CVE•added 2022/04/15 7:15 p.m.•258 views

CVE-2022-24497

Windows Network File System Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.39152EPSS

CVE•added 2022/03/09 5:15 p.m.•254 views

CVE-2022-23284

Windows Print Spooler Elevation of Privilege Vulnerability

9CVSS7.7AI score0.09515EPSS

CVE•added 2021/12/15 3:15 p.m.•253 views

CVE-2021-43217

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

9.8CVSS9.1AI score0.25196EPSS

In wild

CVE•added 2021/08/12 6:15 p.m.•241 views

CVE-2021-26432

Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability

9.8CVSS8.8AI score0.10206EPSS

CVE•added 2020/09/11 5:15 p.m.•237 views

CVE-2020-1013

An elevation of privilege vulnerability exists when Microsoft Windows processes group policy updates. An attacker who successfully exploited this vulnerability could potentially escalate permissions or perform additional privileged actions on the target machine.To exploit this vulnerability, an att...

9.3CVSS8.1AI score0.1795EPSS

CVE•added 2022/01/11 9:15 p.m.•234 views

CVE-2022-21849

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.1622EPSS

CVE•added 2022/02/09 5:15 p.m.•226 views

CVE-2022-21974

Roaming Security Rights Management Services Remote Code Execution Vulnerability

9.3CVSS8AI score0.08813EPSS

CVE•added 2020/06/09 8:15 p.m.•225 views

CVE-2020-1299

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'.

9.3CVSS8.4AI score0.32912EPSS

CVE•added 2019/03/06 12:0 a.m.•223 views

CVE-2019-0633

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0630.

9CVSS9.3AI score0.33738EPSS

CVE•added 2021/08/12 6:15 p.m.•222 views

CVE-2021-36936

Windows Print Spooler Remote Code Execution Vulnerability

9.8CVSS9AI score0.03552EPSS

CVE•added 2021/05/11 7:15 p.m.•218 views

CVE-2021-28476

Windows Hyper-V Remote Code Execution Vulnerability

9.9CVSS9.7AI score0.63205EPSS

CVE•added 2022/04/15 7:15 p.m.•209 views

CVE-2022-26903

Windows Graphics Component Remote Code Execution Vulnerability

9.3CVSS8.8AI score0.01609EPSS

CVE•added 2019/07/29 2:11 p.m.•207 views

CVE-2019-1118

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121, CVE-2019-1122, CVE-2019-1123, CVE-2019-1124, CVE-2019-112...

9.3CVSS8.4AI score0.40075EPSS

CVE•added 2022/04/15 7:15 p.m.•206 views

CVE-2022-24541

Windows Server Service Remote Code Execution Vulnerability

9.3CVSS9.4AI score0.07634EPSS

CVE•added 2022/06/15 10:15 p.m.•205 views

CVE-2022-30141

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.3CVSS8.5AI score0.09953EPSS

CVE•added 2019/07/29 2:11 p.m.•203 views

CVE-2019-1120

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1121, CVE-2019-1122, CVE-2019-1123, CVE-2019-1124, CVE-2019-112...

9.3CVSS8.4AI score0.40075EPSS

CVE•added 2020/12/10 12:15 a.m.•199 views

CVE-2020-17096

Windows NTFS Remote Code Execution Vulnerability

9CVSS8AI score0.08689EPSS

CVE•added 2022/04/15 7:15 p.m.•193 views

CVE-2022-26919

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.3CVSS9AI score0.04017EPSS

CVE•added 2022/09/13 7:15 p.m.•193 views

CVE-2022-34718

Windows TCP/IP Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.84756EPSS

CVE•added 2019/03/06 12:0 a.m.•191 views

CVE-2019-0630

9CVSS9.3AI score0.33738EPSS

CVE•added 2022/05/10 9:15 p.m.•190 views

CVE-2022-29129

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9CVSS9.4AI score0.13405EPSS

CVE•added 2019/01/08 9:29 p.m.•186 views

CVE-2019-0584

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka "Jet Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...

9.3CVSS8AI score0.35437EPSS

CVE•added 2022/01/11 9:15 p.m.•186 views

CVE-2022-21857

Active Directory Domain Services Elevation of Privilege Vulnerability

9CVSS9.1AI score0.02533EPSS

CVE•added 2019/07/29 2:13 p.m.•184 views

CVE-2019-1127

A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1117, CVE-2019-1118, CVE-2019-1119, CVE-2019-1120, CVE-2019-1121, CVE-2019-1122, CVE-2019-1123, CVE-2019-112...

9.3CVSS8.4AI score0.40075EPSS

CVE•added 2022/04/15 7:15 p.m.•184 views

CVE-2022-24492

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9.3CVSS9.4AI score0.02482EPSS

CVE•added 2020/02/11 10:15 p.m.•183 views

CVE-2020-0662

A remote code execution vulnerability exists in the way that Windows handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'.

9CVSS8.4AI score0.34804EPSS

CVE•added 2021/06/08 11:15 p.m.•182 views

CVE-2021-31962

Kerberos AppContainer Security Feature Bypass Vulnerability

9.8CVSS9.2AI score0.08247EPSS

CVE•added 2019/08/14 9:15 p.m.•181 views

CVE-2019-1151

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; ...

9.3CVSS9.1AI score0.33915EPSS

CVE•added 2019/01/08 9:29 p.m.•179 views

CVE-2019-0538

9.3CVSS8AI score0.35437EPSS

CVE•added 2022/01/11 9:15 p.m.•179 views

CVE-2022-21920

Windows Kerberos Elevation of Privilege Vulnerability

9CVSS8.9AI score0.08026EPSS

CVE•added 2023/08/08 6:15 p.m.•177 views

CVE-2023-36903

Windows System Assessment Tool Elevation of Privilege Vulnerability

9.8CVSS8.6AI score0.00773EPSS

CVE•added 2018/11/14 1:29 a.m.•175 views

CVE-2018-8256

A remote code execution vulnerability exists when PowerShell improperly handles specially crafted files, aka "Microsoft PowerShell Remote Code Execution Vulnerability." This affects Windows RT 8.1, PowerShell Core 6.0, Microsoft.PowerShell.Archive 1.2.2.0, Windows Server 2016, Windows Server 2012, ...

9.3CVSS7.7AI score0.17485EPSS

CVE•added 2022/05/10 9:15 p.m.•175 views

CVE-2022-23270

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

9.3CVSS9AI score0.52352EPSS

CVE•added 2019/08/14 9:15 p.m.•170 views

CVE-2019-1155

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.8AI score0.09677EPSS

CVE•added 2017/05/12 2:29 p.m.•169 views

CVE-2017-0272

The Microsoft Server Message Block 1.0 (SMBv1) server on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to execute remote code by the way it ...

9.3CVSS7.7AI score0.05522EPSS

CVE•added 2018/10/10 1:29 p.m.•168 views

CVE-2018-8413

A remote code execution vulnerability exists when "Windows Theme API" does not properly decompress files, aka "Windows Theme API Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Serve...

9.3CVSS7.9AI score0.52488EPSS

CVE•added 2020/07/14 11:15 p.m.•168 views

CVE-2020-1421

9.3CVSS9.1AI score0.47986EPSS

Total number of security vulnerabilities381