Windows 10 1909
by Microsoft
CVEs (3,251)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-1700 | Hig | 0.57 | 8.8 | 0.04 | Jan 12, 2021 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | ||
| CVE-2021-1674 | Hig | 0.57 | 8.8 | 0.03 | Jan 12, 2021 | Windows Remote Desktop Protocol Core Security Feature Bypass Vulnerability | ||
| CVE-2021-1673 | Hig | 0.57 | 8.8 | 0.03 | Jan 12, 2021 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | ||
| CVE-2021-1671 | Hig | 0.57 | 8.8 | 0.03 | Jan 12, 2021 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | ||
| CVE-2021-1669 | Hig | 0.57 | 8.8 | 0.03 | Jan 12, 2021 | Windows Remote Desktop Security Feature Bypass Vulnerability | ||
| CVE-2021-1667 | Hig | 0.57 | 8.8 | 0.04 | Jan 12, 2021 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | ||
| CVE-2021-1666 | Hig | 0.57 | 8.8 | 0.03 | Jan 12, 2021 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | ||
| CVE-2021-1664 | Hig | 0.57 | 8.8 | 0.03 | Jan 12, 2021 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | ||
| CVE-2021-1660 | Hig | 0.57 | 8.8 | 0.03 | Jan 12, 2021 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | ||
| CVE-2021-1658 | Hig | 0.57 | 8.8 | 0.03 | Jan 12, 2021 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | ||
| CVE-2020-1080 | Hig | 0.57 | 8.8 | 0.01 | Oct 16, 2020 | An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could gain elevated privileges on a target operating system. This vulnerability… | ||
| CVE-2020-16891 | Hig | 0.57 | 8.8 | 0.01 | Oct 16, 2020 | A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating… | ||
| CVE-2018-8413 | Hig | 0.57 | 7.8 | 0.46 | Oct 10, 2018 | A remote code execution vulnerability exists when "Windows Theme API" does not properly decompress files, aka "Windows Theme API Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2019, Windows Server 2012,… | ||
| CVE-2018-8219 | Hig | 0.57 | 8.8 | 0.01 | Jun 14, 2018 | An elevation of privilege vulnerability exists when Windows Hyper-V instruction emulation fails to properly enforce privilege levels, aka "Hypervisor Code Integrity Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. | ||
| CVE-2017-8620 | Hig | 0.57 | 8.1 | 0.55 | Aug 8, 2017 | Windows Search in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability when it improperly handles objects in… | ||
| CVE-2017-8590 | Hig | 0.57 | 8.8 | 0.01 | Jul 11, 2017 | Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to the way that the Windows Common Log File… | ||
| CVE-2016-3301 | Hig | 0.57 | 7.8 | 0.44 | Aug 9, 2016 | The Windows font library in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; Office 2007 SP3; Office 2010 SP2; Word Viewer; Skype for Business 2016; Lync… | ||
| CVE-2016-3225 | Hig | 0.57 | 7.8 | 0.43 | Jun 16, 2016 | The SMB server component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application that forwards an… | ||
| CVE-2016-3223 | Hig | 0.57 | 8.1 | 0.21 | Jun 16, 2016 | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandle LDAP authentication, which allows man-in-the-middle attackers to gain privileges by modifying… | ||
| CVE-2016-0117 | Hig | 0.57 | 7.8 | 0.73 | Mar 9, 2016 | The PDF library in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attackers to execute arbitrary code via a crafted PDF document, aka "Windows Remote Code Execution Vulnerability." |
- risk 0.57cvss 8.8epss 0.04
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- risk 0.57cvss 8.8epss 0.03
Windows Remote Desktop Protocol Core Security Feature Bypass Vulnerability
- risk 0.57cvss 8.8epss 0.03
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- risk 0.57cvss 8.8epss 0.03
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- risk 0.57cvss 8.8epss 0.03
Windows Remote Desktop Security Feature Bypass Vulnerability
- risk 0.57cvss 8.8epss 0.04
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- risk 0.57cvss 8.8epss 0.03
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- risk 0.57cvss 8.8epss 0.03
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- risk 0.57cvss 8.8epss 0.03
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- risk 0.57cvss 8.8epss 0.03
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- risk 0.57cvss 8.8epss 0.01
An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could gain elevated privileges on a target operating system. This vulnerability…
- risk 0.57cvss 8.8epss 0.01
A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating…
- risk 0.57cvss 7.8epss 0.46
A remote code execution vulnerability exists when "Windows Theme API" does not properly decompress files, aka "Windows Theme API Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2019, Windows Server 2012,…
- risk 0.57cvss 8.8epss 0.01
An elevation of privilege vulnerability exists when Windows Hyper-V instruction emulation fails to properly enforce privilege levels, aka "Hypervisor Code Integrity Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.
- risk 0.57cvss 8.1epss 0.55
Windows Search in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability when it improperly handles objects in…
- risk 0.57cvss 8.8epss 0.01
Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to the way that the Windows Common Log File…
- risk 0.57cvss 7.8epss 0.44
The Windows font library in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; Office 2007 SP3; Office 2010 SP2; Word Viewer; Skype for Business 2016; Lync…
- risk 0.57cvss 7.8epss 0.43
The SMB server component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application that forwards an…
- risk 0.57cvss 8.1epss 0.21
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandle LDAP authentication, which allows man-in-the-middle attackers to gain privileges by modifying…
- risk 0.57cvss 7.8epss 0.73
The PDF library in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attackers to execute arbitrary code via a crafted PDF document, aka "Windows Remote Code Execution Vulnerability."
Page 19 of 163