Windows 10 1809
by Microsoft
CVEs (3,332)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-32156 | Hig | 0.48 | 7.4 | 0.00 | Apr 14, 2026 | Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-49690 | Hig | 0.48 | 7.4 | 0.00 | Jul 8, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an unauthorized attacker to elevate privileges locally. | ||
| CVE-2025-24991 | Med | 0.48 | 5.5 | 0.02 | KEV | Mar 11, 2025 | Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally. | |
| CVE-2025-21331 | Hig | 0.48 | 7.3 | 0.01 | Jan 14, 2025 | Windows Installer Elevation of Privilege Vulnerability | ||
| CVE-2024-49107 | Hig | 0.48 | 7.3 | 0.02 | Dec 12, 2024 | WmsRepair Service Elevation of Privilege Vulnerability | ||
| CVE-2024-43553 | Hig | 0.48 | 7.4 | 0.01 | Oct 8, 2024 | NT OS Kernel Elevation of Privilege Vulnerability | ||
| CVE-2024-43550 | Hig | 0.48 | 7.4 | 0.01 | Oct 8, 2024 | Windows Secure Channel Spoofing Vulnerability | ||
| CVE-2024-38217 | Med | 0.48 | 5.4 | 0.10 | KEV | Sep 10, 2024 | Windows Mark of the Web Security Feature Bypass Vulnerability | |
| CVE-2024-38202 | Hig | 0.48 | 7.3 | 0.02 | Aug 8, 2024 | Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security… | ||
| CVE-2024-38033 | Hig | 0.48 | 7.3 | 0.01 | Jul 9, 2024 | PowerShell Elevation of Privilege Vulnerability | ||
| CVE-2024-30081 | Hig | 0.48 | 7.1 | 0.24 | Jul 9, 2024 | Windows NTLM Spoofing Vulnerability | ||
| CVE-2024-30093 | Hig | 0.48 | 7.3 | 0.01 | Jun 11, 2024 | Windows Storage Elevation of Privilege Vulnerability | ||
| CVE-2024-26232 | Hig | 0.48 | 7.3 | 0.01 | Apr 9, 2024 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2024-26194 | Hig | 0.48 | 7.4 | 0.00 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability | ||
| CVE-2024-21443 | Hig | 0.48 | 7.3 | 0.01 | Mar 12, 2024 | Windows Kernel Elevation of Privilege Vulnerability | ||
| CVE-2024-20696 | Hig | 0.48 | 7.3 | 0.03 | Jan 9, 2024 | Windows libarchive Remote Code Execution Vulnerability | ||
| CVE-2023-36605 | Hig | 0.48 | 7.4 | 0.01 | Oct 10, 2023 | Windows Named Pipe Filesystem Elevation of Privilege Vulnerability | ||
| CVE-2023-36592 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36591 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-36590 | Hig | 0.48 | 7.3 | 0.01 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability |
- risk 0.48cvss 7.4epss 0.00
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to execute code locally.
- risk 0.48cvss 7.4epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an unauthorized attacker to elevate privileges locally.
- risk 0.48cvss 5.5epss 0.02
Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.
- risk 0.48cvss 7.3epss 0.01
Windows Installer Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.02
WmsRepair Service Elevation of Privilege Vulnerability
- risk 0.48cvss 7.4epss 0.01
NT OS Kernel Elevation of Privilege Vulnerability
- risk 0.48cvss 7.4epss 0.01
Windows Secure Channel Spoofing Vulnerability
- risk 0.48cvss 5.4epss 0.10
Windows Mark of the Web Security Feature Bypass Vulnerability
- risk 0.48cvss 7.3epss 0.02
Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security…
- risk 0.48cvss 7.3epss 0.01
PowerShell Elevation of Privilege Vulnerability
- risk 0.48cvss 7.1epss 0.24
Windows NTLM Spoofing Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows Storage Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.4epss 0.00
Secure Boot Security Feature Bypass Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows Kernel Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.03
Windows libarchive Remote Code Execution Vulnerability
- risk 0.48cvss 7.4epss 0.01
Windows Named Pipe Filesystem Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
Page 95 of 167