Windows 10 1607 Security Vulnerabilities and Issues — Windows 10 1607 CVE List

Lucene search

MicrosoftWindows 10 1607

1607 matches found

CVE•added 2023/10/10 2:15 p.m.•4480 views

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

7.5CVSS8AI score0.9445EPSS

CVE•added 2018/05/09 7:29 p.m.•2103 views

CVE-2018-8174

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windo...

7.6CVSS8.1AI score0.94283EPSS

CVE•added 2020/03/12 4:15 p.m.•1404 views

CVE-2020-0787

An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.5659EPSS

CVE•added 2021/10/13 1:15 a.m.•1392 views

CVE-2021-40449

Win32k Elevation of Privilege Vulnerability

7.8CVSS8AI score0.8338EPSS

CVE•added 2022/04/15 7:15 p.m.•1345 views

CVE-2022-24521

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.9AI score0.02661EPSS

CVE•added 2017/05/12 2:29 p.m.•1277 views

CVE-2017-0213

Windows COM Aggregate Marshaler in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation privilege vulnerability when an attacker runs a specially ...

7.3CVSS5.9AI score0.91805EPSS

CVE•added 2020/11/11 7:15 a.m.•1271 views

CVE-2020-17087

Windows Kernel Local Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.17301EPSS

CVE•added 2020/06/09 8:15 p.m.•1267 views

CVE-2020-0986

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS

CVE•added 2023/07/11 7:15 p.m.•1251 views

CVE-2023-36884

Windows Search Remote Code Execution Vulnerability

7.5CVSS9.1AI score0.93071EPSS

CVE•added 2017/03/17 12:59 a.m.•1210 views

CVE-2017-0147

The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory ...

7.5CVSS5.7AI score0.92418EPSS

CVE•added 2022/02/09 5:15 p.m.•1206 views

CVE-2022-22718

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.07194EPSS

CVE•added 2020/02/11 10:15 p.m.•1189 views

CVE-2020-0683

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0686.

7.8CVSS8AI score0.27418EPSS

CVE•added 2021/11/10 1:19 a.m.•1184 views

CVE-2021-41379

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS7AI score0.04121EPSS

CVE•added 2022/02/09 5:15 p.m.•1184 views

CVE-2022-21999

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.72784EPSS

CVE•added 2020/05/21 11:15 p.m.•1168 views

CVE-2020-1054

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1143.

7.8CVSS7.8AI score0.76997EPSS

CVE•added 2019/07/15 7:15 p.m.•1167 views

CVE-2019-0880

A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Elevation of Privilege Vulnerability'.

7.8CVSS7.5AI score0.0137EPSS

CVE•added 2017/05/12 2:29 p.m.•1164 views

CVE-2017-0263

The kernel-mode drivers in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of P...

7.8CVSS7.6AI score0.17937EPSS

CVE•added 2021/08/12 6:15 p.m.•1163 views

CVE-2021-34484

Windows User Profile Service Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.07136EPSS

CVE•added 2019/04/09 9:29 p.m.•1159 views

CVE-2019-0859

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0685, CVE-2019-0803.

7.8CVSS8.2AI score0.84886EPSS

CVE•added 2019/11/12 7:15 p.m.•1157 views

CVE-2019-1405

An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'.

7.8CVSS8.4AI score0.58623EPSS

CVE•added 2021/06/08 11:15 p.m.•1153 views

CVE-2021-31199

Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability

7.8CVSS7.2AI score0.00446EPSS

CVE•added 2021/07/14 6:15 p.m.•1150 views

CVE-2021-31979

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.00957EPSS

CVE•added 2021/06/08 11:15 p.m.•1147 views

CVE-2021-31201

Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability

7.8CVSS7.2AI score0.00187EPSS

CVE•added 2019/04/09 9:29 p.m.•1142 views

CVE-2019-0803

7.8CVSS8.2AI score0.84886EPSS

CVE•added 2018/10/10 1:29 p.m.•1138 views

CVE-2018-8453

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server...

7.8CVSS7.6AI score0.8325EPSS

CVE•added 2019/06/12 2:29 p.m.•1128 views

CVE-2019-1064

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could then install programs; view, change or delete data.To ...

7.8CVSS7.7AI score0.13514EPSS

CVE•added 2019/12/10 10:15 p.m.•1127 views

CVE-2019-1458

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'.

7.8CVSS8.2AI score0.92947EPSS

CVE•added 2021/07/14 6:15 p.m.•1125 views

CVE-2021-33771

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.01572EPSS

CVE•added 2020/08/17 7:15 p.m.•1118 views

CVE-2020-1464

A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files.In an attack scenario, an attacker could bypass security features intended to prevent imprope...

7.8CVSS7.3AI score0.05831EPSS

CVE•added 2022/01/11 9:15 p.m.•1118 views

CVE-2022-21919

Windows User Profile Service Elevation of Privilege Vulnerability

7CVSS8.2AI score0.00495EPSS

CVE•added 2016/08/09 9:59 p.m.•1115 views

CVE-2016-3309

The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privi...

7.8CVSS7.5AI score0.51566EPSS

CVE•added 2019/07/29 2:13 p.m.•1112 views

CVE-2019-1130

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1129.

7.8CVSS7.7AI score0.08695EPSS

CVE•added 2021/09/15 12:15 p.m.•1100 views

CVE-2021-36955

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8AI score0.18971EPSS

CVE•added 2019/06/12 2:29 p.m.•1096 views

CVE-2019-1069

An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates certain file operations. An attacker who successfully exploited the vulnerability could gain elevated privileges on a victim system.To exploit the vulnerability, an attacker would require unprivileged cod...

7.8CVSS7.9AI score0.31928EPSS

CVE•added 2016/11/10 7:0 a.m.•1089 views

CVE-2016-7255

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win3...

7.8CVSS7.6AI score0.89359EPSS

CVE•added 2019/10/10 2:15 p.m.•1089 views

CVE-2019-1315

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1339, CVE-2019-1342.

7.8CVSS8.5AI score0.06219EPSS

CVE•added 2022/04/15 7:15 p.m.•1088 views

CVE-2022-26904

Windows User Profile Service Elevation of Privilege Vulnerability

7CVSS8.2AI score0.30445EPSS

CVE•added 2019/05/16 7:29 p.m.•1086 views

CVE-2019-0863

An elevation of privilege vulnerability exists in the way Windows Error Reporting (WER) handles files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.

7.8CVSS7.7AI score0.13544EPSS

CVE•added 2017/03/17 12:59 a.m.•1085 views

CVE-2017-0001

The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka "Windows GDI ...

7.8CVSS6.2AI score0.13251EPSS

CVE•added 2019/09/11 10:15 p.m.•1083 views

CVE-2019-1215

An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303.

7.8CVSS8.1AI score0.22851EPSS

CVE•added 2019/09/11 10:15 p.m.•1081 views

CVE-2019-1214

An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.11567EPSS

CVE•added 2018/09/13 12:29 a.m.•1071 views

CVE-2018-8440

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8....

7.8CVSS7.5AI score0.77715EPSS

CVE•added 2022/07/12 11:15 p.m.•1069 views

CVE-2022-22047

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.00707EPSS

CVE•added 2020/04/15 3:15 p.m.•1068 views

CVE-2020-0938

A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could e...

7.8CVSS8.2AI score0.8787EPSS

CVE•added 2019/01/08 9:29 p.m.•1065 views

CVE-2019-0543

An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka "Microsoft Windows Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Window...

7.8CVSS7.7AI score0.03524EPSS

CVE•added 2020/04/15 3:15 p.m.•1062 views

CVE-2020-1027

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003.

7.8CVSS8AI score0.13396EPSS

CVE•added 2018/08/15 5:29 p.m.•1057 views

CVE-2018-8405

An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 1...

7.8CVSS7.7AI score0.14446EPSS

CVE•added 2023/04/11 9:15 p.m.•1057 views

CVE-2023-28252

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.53017EPSS

CVE•added 2017/03/17 12:59 a.m.•1052 views

CVE-2017-0005

7.8CVSS6.2AI score0.13251EPSS

CVE•added 2019/04/09 3:29 a.m.•1048 views

CVE-2019-0797

7.8CVSS8.2AI score0.52291EPSS

Total number of security vulnerabilities1607