Windows Subsystem for Linux
by Microsoft
CVEs (21)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-8329 | Hig | 0.51 | 7.8 | 0.01 | Oct 10, 2018 | An Elevation of Privilege vulnerability exists in Windows Subsystem for Linux when it fails to properly handle objects in memory, aka "Linux On Windows Elevation Of Privilege Vulnerability." This affects Windows 10, Windows 10 Servers. | ||
| CVE-2018-8441 | Hig | 0.51 | 7.8 | 0.01 | Sep 13, 2018 | An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka "Windows Subsystem for Linux Elevation of Privilege Vulnerability." This affects Windows 10, Windows 10 Servers. | ||
| CVE-2018-0743 | Hig | 0.49 | 7.0 | 0.03 | Jan 4, 2018 | Windows Subsystem for Linux in Windows 10 version 1703, Windows 10 version 1709, and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Subsystem for Linux Elevation of Privilege Vulnerability". | ||
| CVE-2018-8337 | Med | 0.35 | 5.3 | 0.01 | Sep 13, 2018 | A security feature bypass vulnerability exists when Windows Subsystem for Linux improperly handles case sensitivity, aka "Windows Subsystem for Linux Security Feature Bypass Vulnerability." This affects Windows 10, Windows 10 Servers. | ||
| CVE-2025-62220 | 0.00 | — | 0.01 | Nov 11, 2025 | Heap-based buffer overflow in Windows Subsystem for Linux GUI allows an unauthorized attacker to execute code over a network. | |||
| CVE-2025-53788 | 0.00 | — | 0.00 | Aug 12, 2025 | Time-of-check time-of-use (toctou) race condition in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally. | |||
| CVE-2024-20681 | 0.00 | — | 0.01 | Jan 9, 2024 | Windows Subsystem for Linux Elevation of Privilege Vulnerability | |||
| CVE-2022-44689 | 0.00 | — | 0.00 | Dec 13, 2022 | Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability | |||
| CVE-2022-38014 | 0.00 | — | 0.00 | Nov 9, 2022 | Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability | |||
| CVE-2021-36966 | Hig | 0.00 | 7.8 | 0.00 | Sep 15, 2021 | Windows Subsystem for Linux Elevation of Privilege Vulnerability | ||
| CVE-2020-1423 | Hig | 0.00 | 7.8 | 0.01 | Jul 14, 2020 | An elevation of privilege vulnerability exists in the way that the Windows Subsystem for Linux handles files, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. | ||
| CVE-2020-1075 | Med | 0.00 | 5.5 | 0.01 | May 21, 2020 | An information disclosure vulnerability exists when Windows Subsystem for Linux improperly handles objects in memory, aka 'Windows Subsystem for Linux Information Disclosure Vulnerability'. | ||
| CVE-2020-0636 | Hig | 0.00 | 7.8 | 0.01 | Jan 14, 2020 | An elevation of privilege vulnerability exists in the way that the Windows Subsystem for Linux handles files, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. | ||
| CVE-2019-1416 | Hig | 0.00 | 7.0 | 0.00 | Nov 12, 2019 | An elevation of privilege vulnerability exists due to a race condition in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. | ||
| CVE-2019-1185 | Hig | 0.00 | 7.3 | 0.01 | Aug 14, 2019 | An elevation of privilege vulnerability exists due to a stack corruption in Windows Subsystem for Linux. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could… | ||
| CVE-2019-0694 | Hig | 0.00 | 7.8 | 0.01 | Apr 9, 2019 | An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, CVE-2019-0692, CVE-2019-0693. | ||
| CVE-2019-0693 | Hig | 0.00 | 7.8 | 0.01 | Apr 9, 2019 | An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, CVE-2019-0692, CVE-2019-0694. | ||
| CVE-2019-0692 | Hig | 0.00 | 7.8 | 0.01 | Apr 9, 2019 | An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, CVE-2019-0693, CVE-2019-0694. | ||
| CVE-2019-0689 | Hig | 0.00 | 7.8 | 0.01 | Apr 9, 2019 | An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0692, CVE-2019-0693, CVE-2019-0694. | ||
| CVE-2019-0682 | Hig | 0.00 | 7.8 | 0.01 | Apr 9, 2019 | An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0689, CVE-2019-0692, CVE-2019-0693, CVE-2019-0694. |
- risk 0.51cvss 7.8epss 0.01
An Elevation of Privilege vulnerability exists in Windows Subsystem for Linux when it fails to properly handle objects in memory, aka "Linux On Windows Elevation Of Privilege Vulnerability." This affects Windows 10, Windows 10 Servers.
- risk 0.51cvss 7.8epss 0.01
An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka "Windows Subsystem for Linux Elevation of Privilege Vulnerability." This affects Windows 10, Windows 10 Servers.
- risk 0.49cvss 7.0epss 0.03
Windows Subsystem for Linux in Windows 10 version 1703, Windows 10 version 1709, and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Subsystem for Linux Elevation of Privilege Vulnerability".
- risk 0.35cvss 5.3epss 0.01
A security feature bypass vulnerability exists when Windows Subsystem for Linux improperly handles case sensitivity, aka "Windows Subsystem for Linux Security Feature Bypass Vulnerability." This affects Windows 10, Windows 10 Servers.
- CVE-2025-62220Nov 11, 2025risk 0.00cvss —epss 0.01
Heap-based buffer overflow in Windows Subsystem for Linux GUI allows an unauthorized attacker to execute code over a network.
- CVE-2025-53788Aug 12, 2025risk 0.00cvss —epss 0.00
Time-of-check time-of-use (toctou) race condition in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.
- CVE-2024-20681Jan 9, 2024risk 0.00cvss —epss 0.01
Windows Subsystem for Linux Elevation of Privilege Vulnerability
- CVE-2022-44689Dec 13, 2022risk 0.00cvss —epss 0.00
Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability
- CVE-2022-38014Nov 9, 2022risk 0.00cvss —epss 0.00
Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability
- risk 0.00cvss 7.8epss 0.00
Windows Subsystem for Linux Elevation of Privilege Vulnerability
- risk 0.00cvss 7.8epss 0.01
An elevation of privilege vulnerability exists in the way that the Windows Subsystem for Linux handles files, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'.
- risk 0.00cvss 5.5epss 0.01
An information disclosure vulnerability exists when Windows Subsystem for Linux improperly handles objects in memory, aka 'Windows Subsystem for Linux Information Disclosure Vulnerability'.
- risk 0.00cvss 7.8epss 0.01
An elevation of privilege vulnerability exists in the way that the Windows Subsystem for Linux handles files, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'.
- risk 0.00cvss 7.0epss 0.00
An elevation of privilege vulnerability exists due to a race condition in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'.
- risk 0.00cvss 7.3epss 0.01
An elevation of privilege vulnerability exists due to a stack corruption in Windows Subsystem for Linux. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could…
- risk 0.00cvss 7.8epss 0.01
An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, CVE-2019-0692, CVE-2019-0693.
- risk 0.00cvss 7.8epss 0.01
An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, CVE-2019-0692, CVE-2019-0694.
- risk 0.00cvss 7.8epss 0.01
An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, CVE-2019-0693, CVE-2019-0694.
- risk 0.00cvss 7.8epss 0.01
An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0692, CVE-2019-0693, CVE-2019-0694.
- risk 0.00cvss 7.8epss 0.01
An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0689, CVE-2019-0692, CVE-2019-0693, CVE-2019-0694.
Page 1 of 2