Windows 10 1809
by Microsoft
CVEs (3,332)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-36884 | 0.25 | — | 0.99 | KEV | Jul 11, 2023 | Windows Search Remote Code Execution Vulnerability | ||
| CVE-2023-24880 | 0.24 | — | 0.78 | KEV | Mar 14, 2023 | Windows SmartScreen Security Feature Bypass Vulnerability | ||
| CVE-2024-49039 | 0.23 | — | 0.14 | KEV | Nov 12, 2024 | Windows Task Scheduler Elevation of Privilege Vulnerability | ||
| CVE-2022-44698 | 0.23 | — | 0.76 | KEV | Dec 13, 2022 | Windows SmartScreen Security Feature Bypass Vulnerability | ||
| CVE-2024-49138 | 0.22 | — | 0.25 | KEV | Dec 10, 2024 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | ||
| CVE-2024-30051 | 0.22 | — | 0.06 | KEV | May 14, 2024 | Windows DWM Core Library Elevation of Privilege Vulnerability | ||
| CVE-2022-26923 | 0.22 | — | 0.83 | KEV | May 10, 2022 | Active Directory Domain Services Elevation of Privilege Vulnerability | ||
| CVE-2022-21882 | 0.22 | — | 0.56 | KEV | Jan 11, 2022 | Win32k Elevation of Privilege Vulnerability | ||
| CVE-2021-36934 | 0.22 | — | 0.67 | KEV | Jul 22, 2021 | An elevation of privilege vulnerability exists because of overly permissive Access Control Lists (ACLs) on multiple system files, including the Security Accounts Manager (SAM) database. An attacker who successfully exploited this vulnerability could run arbitrary code with… | ||
| CVE-2021-31166 | 0.22 | — | 1.00 | KEV | May 11, 2021 | HTTP Protocol Stack Remote Code Execution Vulnerability | ||
| CVE-2016-7220 | Low | 0.22 | 3.3 | 0.03 | Nov 10, 2016 | Virtual Secure Mode in Microsoft Windows 10 allows local users to obtain sensitive information via a crafted application, aka "Virtual Secure Mode Information Disclosure Vulnerability." | ||
| CVE-2024-38193 | 0.21 | — | 0.28 | KEV | Aug 13, 2024 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | ||
| CVE-2024-26169 | 0.21 | — | 0.04 | KEV | Mar 12, 2024 | Windows Error Reporting Service Elevation of Privilege Vulnerability | ||
| CVE-2023-36874 | 0.21 | — | 0.32 | KEV | Jul 11, 2023 | Windows Error Reporting Service Elevation of Privilege Vulnerability | ||
| CVE-2019-1069 | 0.21 | — | 0.06 | KEV | Jun 12, 2019 | An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates certain file operations. An attacker who successfully exploited the vulnerability could gain elevated privileges on a victim system. To exploit the vulnerability, an attacker would… | ||
| CVE-2021-36955 | 0.20 | — | 0.03 | KEV | Sep 15, 2021 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | ||
| CVE-2025-33073 | 0.19 | — | 0.65 | KEV | Jun 10, 2025 | Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network. | ||
| CVE-2025-33053 | 0.19 | — | 0.82 | KEV | Jun 10, 2025 | External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network. | ||
| CVE-2024-43451 | 0.19 | — | 0.82 | KEV | Nov 12, 2024 | NTLM Hash Disclosure Spoofing Vulnerability | ||
| CVE-2024-38112 | 0.19 | — | 0.84 | KEV | Jul 9, 2024 | Windows MSHTML Platform Spoofing Vulnerability |
- risk 0.25cvss —epss 0.99
Windows Search Remote Code Execution Vulnerability
- risk 0.24cvss —epss 0.78
Windows SmartScreen Security Feature Bypass Vulnerability
- risk 0.23cvss —epss 0.14
Windows Task Scheduler Elevation of Privilege Vulnerability
- risk 0.23cvss —epss 0.76
Windows SmartScreen Security Feature Bypass Vulnerability
- risk 0.22cvss —epss 0.25
Windows Common Log File System Driver Elevation of Privilege Vulnerability
- risk 0.22cvss —epss 0.06
Windows DWM Core Library Elevation of Privilege Vulnerability
- risk 0.22cvss —epss 0.83
Active Directory Domain Services Elevation of Privilege Vulnerability
- risk 0.22cvss —epss 0.56
Win32k Elevation of Privilege Vulnerability
- risk 0.22cvss —epss 0.67
An elevation of privilege vulnerability exists because of overly permissive Access Control Lists (ACLs) on multiple system files, including the Security Accounts Manager (SAM) database. An attacker who successfully exploited this vulnerability could run arbitrary code with…
- risk 0.22cvss —epss 1.00
HTTP Protocol Stack Remote Code Execution Vulnerability
- risk 0.22cvss 3.3epss 0.03
Virtual Secure Mode in Microsoft Windows 10 allows local users to obtain sensitive information via a crafted application, aka "Virtual Secure Mode Information Disclosure Vulnerability."
- risk 0.21cvss —epss 0.28
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
- risk 0.21cvss —epss 0.04
Windows Error Reporting Service Elevation of Privilege Vulnerability
- risk 0.21cvss —epss 0.32
Windows Error Reporting Service Elevation of Privilege Vulnerability
- risk 0.21cvss —epss 0.06
An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates certain file operations. An attacker who successfully exploited the vulnerability could gain elevated privileges on a victim system. To exploit the vulnerability, an attacker would…
- risk 0.20cvss —epss 0.03
Windows Common Log File System Driver Elevation of Privilege Vulnerability
- risk 0.19cvss —epss 0.65
Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.
- risk 0.19cvss —epss 0.82
External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network.
- risk 0.19cvss —epss 0.82
NTLM Hash Disclosure Spoofing Vulnerability
- risk 0.19cvss —epss 0.84
Windows MSHTML Platform Spoofing Vulnerability
Page 15 of 167