Windows 10 1909
by Microsoft
CVEs (3,248)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-0036 | Hig | 0.54 | 8.1 | 0.11 | Feb 10, 2016 | The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows remote authenticated users to execute arbitrary code via crafted data, aka "Remote Desktop Protocol (RDP) Elevation of Privilege… | ||
| CVE-2016-0019 | Hig | 0.54 | 8.1 | 0.13 | Jan 13, 2016 | The Remote Desktop Protocol (RDP) service implementation in Microsoft Windows 10 Gold and 1511 allows remote attackers to bypass intended access restrictions and establish sessions for blank-password accounts via a modified RDP client, aka "Windows Remote Desktop Protocol… | ||
| CVE-2016-0007 | Hig | 0.54 | 7.8 | 0.05 | Jan 13, 2016 | The sandbox implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511 mishandles reparse points, which allows local users to… | ||
| CVE-2025-33070 | Hig | 0.53 | 8.1 | 0.06 | Jun 10, 2025 | Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network. | ||
| CVE-2025-26670 | Hig | 0.53 | 8.1 | 0.08 | Apr 8, 2025 | Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network. | ||
| CVE-2025-26663 | Hig | 0.53 | 8.1 | 0.02 | Apr 8, 2025 | Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network. | ||
| CVE-2025-24035 | Hig | 0.53 | 8.1 | 0.02 | Mar 11, 2025 | Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network. | ||
| CVE-2025-21376 | Hig | 0.53 | 8.1 | 0.09 | Feb 11, 2025 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | ||
| CVE-2025-21295 | Hig | 0.53 | 8.1 | 0.02 | Jan 14, 2025 | SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability | ||
| CVE-2025-21294 | Hig | 0.53 | 8.1 | 0.01 | Jan 14, 2025 | Microsoft Digest Authentication Remote Code Execution Vulnerability | ||
| CVE-2025-21285 | Hig | 0.53 | 7.5 | 0.55 | Jan 14, 2025 | Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability | ||
| CVE-2024-49127 | Hig | 0.53 | 8.1 | 0.01 | Dec 12, 2024 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | ||
| CVE-2024-49126 | Hig | 0.53 | 8.1 | 0.01 | Dec 12, 2024 | Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability | ||
| CVE-2024-49124 | Hig | 0.53 | 8.1 | 0.01 | Dec 12, 2024 | Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability | ||
| CVE-2024-49118 | Hig | 0.53 | 8.1 | 0.01 | Dec 12, 2024 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2024-38240 | Hig | 0.53 | 8.1 | 0.01 | Sep 10, 2024 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | ||
| CVE-2024-29995 | Hig | 0.53 | 8.1 | 0.01 | Aug 13, 2024 | Windows Kerberos Elevation of Privilege Vulnerability | ||
| CVE-2024-30020 | Hig | 0.53 | 8.1 | 0.01 | May 14, 2024 | Windows Cryptographic Services Remote Code Execution Vulnerability | ||
| CVE-2024-26230 | Hig | 0.53 | 7.8 | 0.24 | Apr 9, 2024 | Windows Telephony Server Elevation of Privilege Vulnerability | ||
| CVE-2024-20652 | Hig | 0.53 | 8.1 | 0.02 | Jan 9, 2024 | Windows HTML Platforms Security Feature Bypass Vulnerability |
- risk 0.54cvss 8.1epss 0.11
The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows remote authenticated users to execute arbitrary code via crafted data, aka "Remote Desktop Protocol (RDP) Elevation of Privilege…
- risk 0.54cvss 8.1epss 0.13
The Remote Desktop Protocol (RDP) service implementation in Microsoft Windows 10 Gold and 1511 allows remote attackers to bypass intended access restrictions and establish sessions for blank-password accounts via a modified RDP client, aka "Windows Remote Desktop Protocol…
- risk 0.54cvss 7.8epss 0.05
The sandbox implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511 mishandles reparse points, which allows local users to…
- risk 0.53cvss 8.1epss 0.06
Use of uninitialized resource in Windows Netlogon allows an unauthorized attacker to elevate privileges over a network.
- risk 0.53cvss 8.1epss 0.08
Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network.
- risk 0.53cvss 8.1epss 0.02
Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network.
- risk 0.53cvss 8.1epss 0.02
Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.
- risk 0.53cvss 8.1epss 0.09
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
- risk 0.53cvss 8.1epss 0.02
SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability
- risk 0.53cvss 8.1epss 0.01
Microsoft Digest Authentication Remote Code Execution Vulnerability
- risk 0.53cvss 7.5epss 0.55
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
- risk 0.53cvss 8.1epss 0.01
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
- risk 0.53cvss 8.1epss 0.01
Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability
- risk 0.53cvss 8.1epss 0.01
Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability
- risk 0.53cvss 8.1epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.53cvss 8.1epss 0.01
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
- risk 0.53cvss 8.1epss 0.01
Windows Kerberos Elevation of Privilege Vulnerability
- risk 0.53cvss 8.1epss 0.01
Windows Cryptographic Services Remote Code Execution Vulnerability
- risk 0.53cvss 7.8epss 0.24
Windows Telephony Server Elevation of Privilege Vulnerability
- risk 0.53cvss 8.1epss 0.02
Windows HTML Platforms Security Feature Bypass Vulnerability
Page 32 of 163