Windows 10 1607
by Microsoft
CVEs (3,413)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-20928 | Med | 0.30 | 4.6 | 0.00 | Apr 14, 2026 | Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack. | ||
| CVE-2022-41099 | Med | 0.30 | 4.6 | 0.04 | Nov 9, 2022 | BitLocker Security Feature Bypass Vulnerability | ||
| CVE-2022-21905 | Med | 0.30 | 4.6 | 0.01 | Jan 11, 2022 | Windows Hyper-V Security Feature Bypass Vulnerability | ||
| CVE-2022-21900 | Med | 0.30 | 4.6 | 0.01 | Jan 11, 2022 | Windows Hyper-V Security Feature Bypass Vulnerability | ||
| CVE-2026-32209 | Med | 0.29 | 4.4 | 0.00 | May 12, 2026 | Improper access control in Windows Filtering Platform (WFP) allows an authorized attacker to bypass a security feature locally. | ||
| CVE-2026-27906 | Med | 0.29 | 4.4 | 0.00 | Apr 14, 2026 | Improper input validation in Windows Hello allows an authorized attacker to bypass a security feature locally. | ||
| CVE-2024-21305 | Med | 0.29 | 4.4 | 0.01 | Jan 9, 2024 | Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability | ||
| CVE-2023-36722 | Med | 0.29 | 4.4 | 0.01 | Oct 10, 2023 | Active Directory Domain Services Information Disclosure Vulnerability | ||
| CVE-2023-36698 | Med | 0.29 | 4.4 | 0.00 | Oct 10, 2023 | Windows Kernel Security Feature Bypass Vulnerability | ||
| CVE-2023-28276 | Med | 0.29 | 4.4 | 0.00 | Apr 11, 2023 | Windows Group Policy Security Feature Bypass Vulnerability | ||
| CVE-2022-22010 | Med | 0.29 | 4.4 | 0.02 | Mar 9, 2022 | Media Foundation Information Disclosure Vulnerability | ||
| CVE-2022-21921 | Med | 0.29 | 4.4 | 0.01 | Jan 11, 2022 | Windows Defender Credential Guard Security Feature Bypass Vulnerability | ||
| CVE-2022-21894 | Med | 0.29 | 4.4 | 0.07 | Jan 11, 2022 | Secure Boot Security Feature Bypass Vulnerability | ||
| CVE-2021-41371 | Med | 0.29 | 4.4 | 0.01 | Nov 10, 2021 | Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability | ||
| CVE-2021-38631 | Med | 0.29 | 4.4 | 0.02 | Nov 10, 2021 | Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability | ||
| CVE-2021-28447 | Med | 0.29 | 4.4 | 0.02 | Apr 13, 2021 | Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability | ||
| CVE-2021-27094 | Med | 0.29 | 4.4 | 0.01 | Apr 13, 2021 | Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability | ||
| CVE-2020-1589 | Med | 0.29 | 4.4 | 0.01 | Sep 11, 2020 | An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an… | ||
| CVE-2019-0941 | Med | 0.29 | 4.4 | 0.03 | Jun 12, 2019 | A denial of service exists in Microsoft IIS Server when the optional request filtering feature improperly handles requests. An attacker who successfully exploited this vulnerability could perform a temporary denial of service against pages configured to use request filtering. To… | ||
| CVE-2023-21729 | Med | 0.28 | 4.3 | 0.01 | Apr 11, 2023 | Remote Procedure Call Runtime Information Disclosure Vulnerability |
- risk 0.30cvss 4.6epss 0.00
Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack.
- risk 0.30cvss 4.6epss 0.04
BitLocker Security Feature Bypass Vulnerability
- risk 0.30cvss 4.6epss 0.01
Windows Hyper-V Security Feature Bypass Vulnerability
- risk 0.30cvss 4.6epss 0.01
Windows Hyper-V Security Feature Bypass Vulnerability
- risk 0.29cvss 4.4epss 0.00
Improper access control in Windows Filtering Platform (WFP) allows an authorized attacker to bypass a security feature locally.
- risk 0.29cvss 4.4epss 0.00
Improper input validation in Windows Hello allows an authorized attacker to bypass a security feature locally.
- risk 0.29cvss 4.4epss 0.01
Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability
- risk 0.29cvss 4.4epss 0.01
Active Directory Domain Services Information Disclosure Vulnerability
- risk 0.29cvss 4.4epss 0.00
Windows Kernel Security Feature Bypass Vulnerability
- risk 0.29cvss 4.4epss 0.00
Windows Group Policy Security Feature Bypass Vulnerability
- risk 0.29cvss 4.4epss 0.02
Media Foundation Information Disclosure Vulnerability
- risk 0.29cvss 4.4epss 0.01
Windows Defender Credential Guard Security Feature Bypass Vulnerability
- risk 0.29cvss 4.4epss 0.07
Secure Boot Security Feature Bypass Vulnerability
- risk 0.29cvss 4.4epss 0.01
Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
- risk 0.29cvss 4.4epss 0.02
Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
- risk 0.29cvss 4.4epss 0.02
Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability
- risk 0.29cvss 4.4epss 0.01
Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability
- risk 0.29cvss 4.4epss 0.01
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an…
- risk 0.29cvss 4.4epss 0.03
A denial of service exists in Microsoft IIS Server when the optional request filtering feature improperly handles requests. An attacker who successfully exploited this vulnerability could perform a temporary denial of service against pages configured to use request filtering. To…
- risk 0.28cvss 4.3epss 0.01
Remote Procedure Call Runtime Information Disclosure Vulnerability
Page 107 of 171