Windows 10 1607
by Microsoft
CVEs (3,413)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-17010 | 0.00 | — | 0.02 | Nov 11, 2020 | Win32k Elevation of Privilege Vulnerability | |||
| CVE-2020-17007 | 0.00 | — | 0.01 | Nov 11, 2020 | Windows Error Reporting Elevation of Privilege Vulnerability | |||
| CVE-2020-17001 | 0.00 | — | 0.01 | Nov 11, 2020 | Windows Print Spooler Elevation of Privilege Vulnerability | |||
| CVE-2020-17004 | 0.00 | — | 0.01 | Nov 11, 2020 | Windows Graphics Component Information Disclosure Vulnerability | |||
| CVE-2020-17000 | 0.00 | — | 0.01 | Nov 11, 2020 | Remote Desktop Protocol Client Information Disclosure Vulnerability | |||
| CVE-2020-16999 | 0.00 | — | 0.01 | Nov 11, 2020 | Windows WalletService Information Disclosure Vulnerability | |||
| CVE-2020-16998 | 0.00 | — | 0.01 | Nov 11, 2020 | DirectX Elevation of Privilege Vulnerability | |||
| CVE-2020-16997 | 0.00 | — | 0.04 | Nov 11, 2020 | Remote Desktop Protocol Server Information Disclosure Vulnerability | |||
| CVE-2020-1243 | 0.00 | — | 0.01 | Oct 16, 2020 | A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest… | |||
| CVE-2020-16975 | 0.00 | — | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted… | |||
| CVE-2020-16976 | 0.00 | — | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted… | |||
| CVE-2020-16974 | 0.00 | — | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted… | |||
| CVE-2020-16973 | 0.00 | — | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted… | |||
| CVE-2020-16972 | 0.00 | — | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted… | |||
| CVE-2020-16940 | 0.00 | — | 0.02 | Oct 16, 2020 | An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points. An attacker who successfully exploited this vulnerability could delete files and folders in an elevated context. To exploit this… | |||
| CVE-2020-16935 | 0.00 | — | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges. To exploit this vulnerability, an attacker would first have… | |||
| CVE-2020-16936 | 0.00 | — | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted… | |||
| CVE-2020-16922 | 0.00 | — | 0.01 | Oct 16, 2020 | A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack scenario, an attacker could bypass security… | |||
| CVE-2020-16919 | 0.00 | — | 0.01 | Oct 16, 2020 | An information disclosure vulnerability exists when the Windows Enterprise App Management Service improperly handles certain file operations. An attacker who successfully exploited this vulnerability could read arbitrary files. An attacker with unprivileged access to a… | |||
| CVE-2020-16916 | 0.00 | — | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges. To exploit this vulnerability, an attacker would first have… |
- CVE-2020-17010Nov 11, 2020risk 0.00cvss —epss 0.02
Win32k Elevation of Privilege Vulnerability
- CVE-2020-17007Nov 11, 2020risk 0.00cvss —epss 0.01
Windows Error Reporting Elevation of Privilege Vulnerability
- CVE-2020-17001Nov 11, 2020risk 0.00cvss —epss 0.01
Windows Print Spooler Elevation of Privilege Vulnerability
- CVE-2020-17004Nov 11, 2020risk 0.00cvss —epss 0.01
Windows Graphics Component Information Disclosure Vulnerability
- CVE-2020-17000Nov 11, 2020risk 0.00cvss —epss 0.01
Remote Desktop Protocol Client Information Disclosure Vulnerability
- CVE-2020-16999Nov 11, 2020risk 0.00cvss —epss 0.01
Windows WalletService Information Disclosure Vulnerability
- CVE-2020-16998Nov 11, 2020risk 0.00cvss —epss 0.01
DirectX Elevation of Privilege Vulnerability
- CVE-2020-16997Nov 11, 2020risk 0.00cvss —epss 0.04
Remote Desktop Protocol Server Information Disclosure Vulnerability
- CVE-2020-1243Oct 16, 2020risk 0.00cvss —epss 0.01
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest…
- CVE-2020-16975Oct 16, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted…
- CVE-2020-16976Oct 16, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted…
- CVE-2020-16974Oct 16, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted…
- CVE-2020-16973Oct 16, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted…
- CVE-2020-16972Oct 16, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted…
- CVE-2020-16940Oct 16, 2020risk 0.00cvss —epss 0.02
An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points. An attacker who successfully exploited this vulnerability could delete files and folders in an elevated context. To exploit this…
- CVE-2020-16935Oct 16, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges. To exploit this vulnerability, an attacker would first have…
- CVE-2020-16936Oct 16, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted…
- CVE-2020-16922Oct 16, 2020risk 0.00cvss —epss 0.01
A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack scenario, an attacker could bypass security…
- CVE-2020-16919Oct 16, 2020risk 0.00cvss —epss 0.01
An information disclosure vulnerability exists when the Windows Enterprise App Management Service improperly handles certain file operations. An attacker who successfully exploited this vulnerability could read arbitrary files. An attacker with unprivileged access to a…
- CVE-2020-16916Oct 16, 2020risk 0.00cvss —epss 0.01
An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges. To exploit this vulnerability, an attacker would first have…
Page 163 of 171