Windows 10 1909
by Microsoft
CVEs (3,248)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-48806 | Hig | 0.51 | 7.8 | 0.00 | Jul 8, 2025 | Use after free in Microsoft MPEG-2 Video Extension allows an authorized attacker to execute code locally. | ||
| CVE-2025-48805 | Hig | 0.51 | 7.8 | 0.00 | Jul 8, 2025 | Heap-based buffer overflow in Microsoft MPEG-2 Video Extension allows an authorized attacker to execute code locally. | ||
| CVE-2025-47996 | Hig | 0.51 | 7.8 | 0.00 | Jul 8, 2025 | Integer underflow (wrap or wraparound) in Windows MBT Transport driver allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-47985 | Hig | 0.51 | 7.8 | 0.00 | Jul 8, 2025 | Untrusted pointer dereference in Windows Event Tracing allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-47976 | Hig | 0.51 | 7.8 | 0.00 | Jul 8, 2025 | Use after free in Windows SSDP Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-47973 | Hig | 0.51 | 7.8 | 0.00 | Jul 8, 2025 | Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally. | ||
| CVE-2025-47971 | Hig | 0.51 | 7.8 | 0.00 | Jul 8, 2025 | Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally. | ||
| CVE-2025-47159 | Hig | 0.51 | 7.8 | 0.00 | Jul 8, 2025 | Protection mechanism failure in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-47955 | Hig | 0.51 | 7.8 | 0.01 | Jun 10, 2025 | Improper privilege management in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-33075 | Hig | 0.51 | 7.8 | 0.01 | Jun 10, 2025 | Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-32718 | Hig | 0.51 | 7.8 | 0.00 | Jun 10, 2025 | Integer overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-32716 | Hig | 0.51 | 7.8 | 0.00 | Jun 10, 2025 | Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-32714 | Hig | 0.51 | 7.8 | 0.01 | Jun 10, 2025 | Improper access control in Windows Installer allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-32713 | Hig | 0.51 | 7.8 | 0.01 | Jun 10, 2025 | Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-32712 | Hig | 0.51 | 7.8 | 0.00 | Jun 10, 2025 | Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-32707 | Hig | 0.51 | 7.8 | 0.00 | May 13, 2025 | Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally. | ||
| CVE-2025-30388 | Hig | 0.51 | 7.8 | 0.03 | May 13, 2025 | Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-30385 | Hig | 0.51 | 7.8 | 0.00 | May 13, 2025 | Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-24063 | Hig | 0.51 | 7.8 | 0.01 | May 13, 2025 | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-27741 | Hig | 0.51 | 7.8 | 0.01 | Apr 8, 2025 | Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally. |
- risk 0.51cvss 7.8epss 0.00
Use after free in Microsoft MPEG-2 Video Extension allows an authorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Heap-based buffer overflow in Microsoft MPEG-2 Video Extension allows an authorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Integer underflow (wrap or wraparound) in Windows MBT Transport driver allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Untrusted pointer dereference in Windows Event Tracing allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Windows SSDP Service allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Protection mechanism failure in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Improper privilege management in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Integer overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Improper access control in Windows Installer allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.00
Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.03
Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.
- risk 0.51cvss 7.8epss 0.00
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
- risk 0.51cvss 7.8epss 0.01
Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
Page 44 of 163