Windows 10 1607
by Microsoft
CVEs (3,413)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-17004 | Med | 0.36 | 5.5 | 0.01 | Nov 11, 2020 | Windows Graphics Component Information Disclosure Vulnerability | ||
| CVE-2020-17000 | Med | 0.36 | 5.5 | 0.01 | Nov 11, 2020 | Remote Desktop Protocol Client Information Disclosure Vulnerability | ||
| CVE-2020-16999 | Med | 0.36 | 5.5 | 0.01 | Nov 11, 2020 | Windows WalletService Information Disclosure Vulnerability | ||
| CVE-2020-16919 | Med | 0.36 | 5.5 | 0.01 | Oct 16, 2020 | An information disclosure vulnerability exists when the Windows Enterprise App Management Service improperly handles certain file operations. An attacker who successfully exploited this vulnerability could read arbitrary files. An attacker with unprivileged access to a… | ||
| CVE-2020-16914 | Med | 0.36 | 5.5 | 0.01 | Oct 16, 2020 | An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface Plus (GDI+) handles objects in memory, allowing an attacker to retrieve information from a targeted system. By itself, the information disclosure does not allow arbitrary code… | ||
| CVE-2020-16897 | Med | 0.36 | 5.5 | 0.01 | Oct 16, 2020 | An information disclosure vulnerability exists when NetBIOS over TCP (NBT) Extensions (NetBT) improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit… | ||
| CVE-2020-16889 | Med | 0.36 | 5.5 | 0.01 | Oct 16, 2020 | An information disclosure vulnerability exists when the Windows KernelStream improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this… | ||
| CVE-2020-1256 | Med | 0.36 | 5.5 | 0.05 | Sep 11, 2020 | An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are… | ||
| CVE-2020-1250 | Med | 0.36 | 5.5 | 0.01 | Sep 11, 2020 | An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability,… | ||
| CVE-2020-1133 | Med | 0.36 | 5.5 | 0.01 | Sep 11, 2020 | An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could exploit this… | ||
| CVE-2020-1083 | Med | 0.36 | 5.5 | 0.01 | Sep 11, 2020 | An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit… | ||
| CVE-2020-1038 | Med | 0.36 | 5.5 | 0.01 | Sep 11, 2020 | A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding. To exploit this vulnerability, an attacker would have… | ||
| CVE-2020-16854 | Med | 0.36 | 5.5 | 0.01 | Sep 11, 2020 | An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an… | ||
| CVE-2020-0941 | Med | 0.36 | 5.5 | 0.01 | Sep 11, 2020 | An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability,… | ||
| CVE-2020-0921 | Med | 0.36 | 5.5 | 0.01 | Sep 11, 2020 | Microsoft Graphics Component Denial of Service Vulnerability | ||
| CVE-2020-0914 | Med | 0.36 | 5.5 | 0.01 | Sep 11, 2020 | An information disclosure vulnerability exists when the Windows State Repository Service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. An attacker… | ||
| CVE-2020-0875 | Med | 0.36 | 5.5 | 0.04 | Sep 11, 2020 | An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity). This… | ||
| CVE-2020-1510 | Med | 0.36 | 5.5 | 0.05 | Aug 17, 2020 | An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an… | ||
| CVE-2020-1485 | Med | 0.36 | 5.5 | 0.01 | Aug 17, 2020 | An information disclosure vulnerability exists when the Windows Image Acquisition (WIA) Service improperly discloses contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit… | ||
| CVE-2020-1383 | Med | 0.36 | 5.5 | 0.01 | Aug 17, 2020 | An information disclosure vulnerability exists in RPC if the server has Routing and Remote Access enabled. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system To exploit this vulnerability, an attacker… |
- risk 0.36cvss 5.5epss 0.01
Windows Graphics Component Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
Remote Desktop Protocol Client Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
Windows WalletService Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists when the Windows Enterprise App Management Service improperly handles certain file operations. An attacker who successfully exploited this vulnerability could read arbitrary files. An attacker with unprivileged access to a…
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface Plus (GDI+) handles objects in memory, allowing an attacker to retrieve information from a targeted system. By itself, the information disclosure does not allow arbitrary code…
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists when NetBIOS over TCP (NBT) Extensions (NetBT) improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit…
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists when the Windows KernelStream improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this…
- risk 0.36cvss 5.5epss 0.05
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are…
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability,…
- risk 0.36cvss 5.5epss 0.01
An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could exploit this…
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit…
- risk 0.36cvss 5.5epss 0.01
A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding. To exploit this vulnerability, an attacker would have…
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an…
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability,…
- risk 0.36cvss 5.5epss 0.01
Microsoft Graphics Component Denial of Service Vulnerability
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists when the Windows State Repository Service improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. An attacker…
- risk 0.36cvss 5.5epss 0.04
An information disclosure vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system (low-integrity to medium-integrity). This…
- risk 0.36cvss 5.5epss 0.05
An information disclosure vulnerability exists when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an…
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists when the Windows Image Acquisition (WIA) Service improperly discloses contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. To exploit…
- risk 0.36cvss 5.5epss 0.01
An information disclosure vulnerability exists in RPC if the server has Routing and Remote Access enabled. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system To exploit this vulnerability, an attacker…
Page 103 of 171