Windows 10 1507 Security Vulnerabilities and Issues — Page 18 of Windows 10 1507 CVE List

8.8CVSS9AI score0.00706EPSS

CVE-2025-21252

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00706EPSS

CVE-2025-21282

Windows Telephony Service Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.00478EPSS

CVE-2025-21294

Microsoft Digest Authentication Remote Code Execution Vulnerability

7.5CVSS7.8AI score0.00181EPSS

CVE-2025-21296

BranchCache Remote Code Execution Vulnerability

CVE•added 2025/03/11 5:16 p.m.•80 views

CVE-2025-24044

Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.

7.8CVSS8AI score0.00121EPSS

CVE•added 2025/04/08 6:15 p.m.•80 views

CVE-2025-27477

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

8.8CVSS8AI score0.00191EPSS

CVE•added 2023/12/12 6:15 p.m.•79 views

CVE-2023-36011

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00102EPSS

8CVSS8.4AI score0.00951EPSS

CVE-2024-37971

Secure Boot Security Feature Bypass Vulnerability

8CVSS8.4AI score0.01739EPSS

CVE-2024-37972

Secure Boot Security Feature Bypass Vulnerability

CVE•added 2024/10/08 6:15 p.m.•79 views

CVE-2024-37983

Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability

6.7CVSS7.3AI score0.00322EPSS

CVE•added 2024/09/10 5:15 p.m.•79 views

CVE-2024-38046

PowerShell Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00747EPSS

7.8CVSS8.6AI score0.04116EPSS

CVE-2024-38052

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

7.5CVSS8.4AI score0.10756EPSS

CVE-2024-38091

Microsoft WS-Discovery Denial of Service Vulnerability

CVE•added 2024/09/10 5:15 p.m.•79 views

CVE-2024-43487

Windows Mark of the Web Security Feature Bypass Vulnerability

6.5CVSS7.8AI score0.06227EPSS

CVE•added 2024/10/08 6:15 p.m.•79 views

CVE-2024-43501

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00798EPSS

CVE•added 2024/10/08 6:15 p.m.•79 views

CVE-2024-43514

Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00588EPSS

CVE•added 2025/04/08 6:15 p.m.•79 views

CVE-2025-26679

Use after free in RPC Endpoint Mapper Service allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00065EPSS

CVE•added 2023/12/12 6:15 p.m.•78 views

CVE-2023-35633

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.02359EPSS

CVE•added 2024/07/09 5:15 p.m.•78 views

CVE-2024-38027

Windows Line Printer Daemon Service Denial of Service Vulnerability

6.5CVSS7.8AI score0.00232EPSS

CVE•added 2024/09/10 5:15 p.m.•78 views

CVE-2024-38245

Kernel Streaming Service Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00747EPSS

CVE•added 2024/09/10 5:15 p.m.•78 views

CVE-2024-38250

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00694EPSS

8.8CVSS8AI score0.00068EPSS

CVE-2025-21205

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

CVE•added 2025/01/14 6:15 p.m.•78 views

CVE-2025-21265

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00149EPSS

CVE•added 2025/03/11 5:16 p.m.•78 views

CVE-2025-24056

Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network.

8.8CVSS7.7AI score0.00306EPSS

7.8CVSS7.1AI score0.00102EPSS

CVE-2025-24073

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

8.8CVSS6.7AI score0.00068EPSS

CVE-2025-26669

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

7.5CVSS7AI score0.11695EPSS

CVE-2025-26673

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.