VYPR

Windows 10 1809

by Microsoft

CVEs (3,332)

  • CVE-2026-34335HigJun 9, 2026
    risk 0.45cvss 7.0epss 0.00

    Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

  • CVE-2026-50507MedJun 9, 2026
    risk 0.44cvss 6.8epss 0.05

    Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.

  • CVE-2026-45608MedJun 9, 2026
    risk 0.44cvss 6.8epss 0.00

    Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally.

  • CVE-2026-41097MedMay 12, 2026
    risk 0.44cvss 6.7epss 0.01

    Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

  • CVE-2026-32170MedMay 12, 2026
    risk 0.44cvss 6.7epss 0.00

    Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.

  • CVE-2026-0390MedApr 14, 2026
    risk 0.44cvss 6.7epss 0.00

    Reliance on untrusted inputs in a security decision in Windows Boot Loader allows an authorized attacker to bypass a security feature locally.

  • CVE-2022-26934MedMay 10, 2022
    risk 0.44cvss 6.5epss 0.03

    Windows Graphics Component Information Disclosure Vulnerability

  • CVE-2026-42907MedJun 9, 2026
    risk 0.42cvss 6.5epss 0.01

    Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information locally.

  • CVE-2026-42903MedJun 9, 2026
    risk 0.42cvss 6.5epss 0.01

    Null pointer dereference in Windows Kerberos allows an authorized attacker to deny service over a network.

  • CVE-2026-35422MedMay 12, 2026
    risk 0.42cvss 6.5epss 0.01

    Authentication bypass using an alternate path or channel in Windows TCP/IP allows an authorized attacker to bypass a security feature over a network.

  • CVE-2026-32151MedApr 14, 2026
    risk 0.42cvss 6.5epss 0.01

    Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network.

  • CVE-2026-27925MedApr 14, 2026
    risk 0.42cvss 6.5epss 0.00

    Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to disclose information over an adjacent network.

  • CVE-2026-26155MedApr 14, 2026
    risk 0.42cvss 6.5epss 0.01

    Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

  • CVE-2026-40380MedMay 12, 2026
    risk 0.40cvss 6.2epss 0.00

    Heap-based buffer overflow in Volume Manager Extension Driver allows an authorized attacker to execute code with a physical attack.

  • CVE-2026-32088MedApr 14, 2026
    risk 0.40cvss 6.1epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Biometric Service allows an unauthorized attacker to bypass a security feature with a physical attack.

  • CVE-2026-32072MedApr 14, 2026
    risk 0.40cvss 6.2epss 0.00

    Improper authentication in Windows Active Directory allows an unauthorized attacker to perform spoofing locally.

  • CVE-2026-26169MedApr 14, 2026
    risk 0.40cvss 6.1epss 0.02

    Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information locally.

  • CVE-2017-0186MedApr 12, 2017
    risk 0.38cvss 5.8epss 0.05

    A denial of service vulnerability exists when Microsoft Hyper-V Network Switch running on a Windows 10, Windows 8.1, Windows Server 2012, Windows Server 2012 R2, or Windows Server 2016 host server fails to properly validate input from a privileged user on a guest operating…

  • CVE-2017-0185MedApr 12, 2017
    risk 0.38cvss 5.8epss 0.06

    A denial of service vulnerability exists when Microsoft Hyper-V Network Switch running on a Windows 10, Windows 8.1, Windows Server 2012, Windows Server 2012 R2, or Windows Server 2016 host server fails to properly validate input from a privileged user on a guest operating…

  • CVE-2017-0183MedApr 12, 2017
    risk 0.38cvss 5.8epss 0.04

    A denial of service vulnerability exists when Microsoft Hyper-V Network Switch running on a Windows 10, Windows Server 2008 R2, Windows 8.1, Windows Server 2012 R2, or Windows Server 2016 host server fails to properly validate input from a privileged user on a guest operating…

Page 11 of 167