Microsoft Windows 10 vulnerabilities

2,807 known vulnerabilities affecting microsoft/windows_10.

Total CVEs

2,807

CISA KEV

actively exploited

Public exploits

206

Exploited in wild

Severity breakdown

CRITICAL68HIGH1910MEDIUM802LOW27

Vulnerabilities

Page 11 of 141

CVE-2022-34728MEDIUMCVSS 5.5v20h2v21h1+3 more2022-09-13

CVE-2022-34728 [MEDIUM] CVE-2022-34728: Windows Graphics Component Information Disclosure Vulnerability Windows Graphics Component Information Disclosure Vulnerability

nvd

CVE-2022-35837MEDIUMCVSS 6.5v20h2v21h1+3 more2022-09-13

CVE-2022-35837 [MEDIUM] CVE-2022-35837: Windows Graphics Component Information Disclosure Vulnerability Windows Graphics Component Information Disclosure Vulnerability

nvd

CVE-2022-34301MEDIUMCVSS 6.7v20h2v21h1+3 more2022-08-26

CVE-2022-34301 [MEDIUM] CVE-2022-34301: A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bo A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Pa

nvd

CVE-2022-34303MEDIUMCVSS 6.7v20h2v21h1+3 more2022-08-26

CVE-2022-34303 [MEDIUM] CVE-2022-34303: A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to b A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is re

nvd

CVE-2022-34302MEDIUMCVSS 6.7v20h2v21h1+3 more2022-08-26

CVE-2022-34302 [MEDIUM] CVE-2022-34302: A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this boot A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Part

nvd

CVE-2022-34711HIGHCVSS 7.8v20h2v21h1+3 more2022-08-15

CVE-2022-34711 [HIGH] CVE-2022-34711: Windows Defender Credential Guard Elevation of Privilege Vulnerability Windows Defender Credential Guard Elevation of Privilege Vulnerability

nvd

CVE-2022-35822HIGHCVSS 7.1v20h2v21h1+3 more2022-08-15

CVE-2022-35822 [HIGH] CVE-2022-35822: Windows Defender Credential Guard Security Feature Bypass Vulnerability Windows Defender Credential Guard Security Feature Bypass Vulnerability

nvd

CVE-2022-30133CRITICALCVSS 9.8v20h2v21h1+2 more2022-08-09

CVE-2022-30133 [CRITICAL] CVE-2022-30133: Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability

nvd

CVE-2022-30144HIGHCVSS 7.5v20h2v21h1+2 more2022-08-09

CVE-2022-30144 [HIGH] CVE-2022-30144: Windows Bluetooth Service Remote Code Execution Vulnerability Windows Bluetooth Service Remote Code Execution Vulnerability

nvd

CVE-2022-35820HIGHCVSS 7.8v20h2v21h1+3 more2022-08-09

CVE-2022-35820 [HIGH] CVE-2022-35820: Windows Bluetooth Driver Elevation of Privilege Vulnerability Windows Bluetooth Driver Elevation of Privilege Vulnerability

nvd

CVE-2022-34691HIGHCVSS 8.8v20h2v21h1+2 more2022-08-09

CVE-2022-34691 [HIGH] CWE-269 CVE-2022-34691: Active Directory Domain Services Elevation of Privilege Vulnerability Active Directory Domain Services Elevation of Privilege Vulnerability

nvd

CVE-2022-30194HIGHCVSS 7.5v20h2v21h1+2 more2022-08-09

CVE-2022-30194 [HIGH] CWE-94 CVE-2022-30194: Windows WebBrowser Control Remote Code Execution Vulnerability Windows WebBrowser Control Remote Code Execution Vulnerability

nvd

CVE-2022-35793HIGHCVSS 7.3v20h2v21h1+3 more2022-08-09

CVE-2022-35793 [HIGH] CVE-2022-35793: Windows Print Spooler Elevation of Privilege Vulnerability Windows Print Spooler Elevation of Privilege Vulnerability

nvd

CVE-2022-35794HIGHCVSS 8.1v20h2v21h1+2 more2022-08-09

CVE-2022-35794 [HIGH] CVE-2022-35794: Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

nvd

CVE-2022-34699HIGHCVSS 7.8v20h2v21h1+3 more2022-08-09

CVE-2022-34699 [HIGH] CWE-269 CVE-2022-34699: Windows Win32k Elevation of Privilege Vulnerability Windows Win32k Elevation of Privilege Vulnerability

nvd

CVE-2022-35762HIGHCVSS 7.8v20h2v21h1+3 more2022-08-09

CVE-2022-35762 [HIGH] CWE-269 CVE-2022-35762: Storage Spaces Direct Elevation of Privilege Vulnerability Storage Spaces Direct Elevation of Privilege Vulnerability

nvd

CVE-2022-35765HIGHCVSS 7.8v20h2v21h1+3 more2022-08-09

CVE-2022-35765 [HIGH] CWE-269 CVE-2022-35765: Storage Spaces Direct Elevation of Privilege Vulnerability Storage Spaces Direct Elevation of Privilege Vulnerability

nvd

CVE-2022-34705HIGHCVSS 7.8v20h2v21h1+2 more2022-08-09

CVE-2022-34705 [HIGH] CWE-416 CVE-2022-34705: Windows Defender Credential Guard Elevation of Privilege Vulnerability Windows Defender Credential Guard Elevation of Privilege Vulnerability

nvd

CVE-2022-35792HIGHCVSS 7.8v20h2v21h1+3 more2022-08-09

CVE-2022-35792 [HIGH] CVE-2022-35792: Storage Spaces Direct Elevation of Privilege Vulnerability Storage Spaces Direct Elevation of Privilege Vulnerability

nvd

CVE-2022-35795HIGHCVSS 7.8v20h2v21h1+3 more2022-08-09

CVE-2022-35795 [HIGH] CVE-2022-35795: Windows Error Reporting Service Elevation of Privilege Vulnerability Windows Error Reporting Service Elevation of Privilege Vulnerability

nvd

← Previous11 / 141Next →