Microsoft Windows 10 vulnerabilities
2,804 known vulnerabilities affecting microsoft/windows_10.
Total CVEs
2,804
CISA KEV
7
actively exploited
Public exploits
216
Exploited in wild
26
Severity breakdown
CRITICAL68HIGH1907MEDIUM802LOW27
Vulnerabilities
Page 65 of 141
CVE-2020-1468MEDIUMCVSS 6.5v1607v1709+5 more2020-07-14
CVE-2020-1468 [MEDIUM] CVE-2020-1468: An information disclosure vulnerability exists when the Windows GDI component improperly discloses t
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.
nvd
CVE-2020-1212HIGHCVSS 7.8v1607v1709+5 more2020-06-09
CVE-2020-1212 [HIGH] CVE-2020-1212: An elevation of privilege vulnerability exists when an OLE Automation component improperly handles m
An elevation of privilege vulnerability exists when an OLE Automation component improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'OLE Automation Elevation of Privilege Vulnerability'.
nvd
CVE-2020-1255HIGHCVSS 8.8v1607v1709+5 more2020-06-09
CVE-2020-1255 [HIGH] CVE-2020-1255: An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Serv
An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) IIS module improperly handles uploaded content, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.
nvd
CVE-2020-1307HIGHCVSS 7.8v1903v1909+1 more2020-06-09
CVE-2020-1307 [HIGH] CVE-2020-1307: An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle obje
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-127
nvd
CVE-2020-1282HIGHCVSS 7.8v1607v1709+5 more2020-06-09
CVE-2020-1282 [HIGH] CVE-2020-1282: An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects i
An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1235, CVE-2020-1265, CVE-2020-1304, CVE-2020-1306, CVE-2020-1334.
nvd
CVE-2020-1271HIGHCVSS 7.8v1607v1709+4 more2020-06-09
CVE-2020-1271 [HIGH] CVE-2020-1271: An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles fi
An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Backup Service Elevation of Privilege Vulnerability'.
nvd
CVE-2020-1292HIGHCVSS 7.8v1803v1809+3 more2020-06-09
CVE-2020-1292 [HIGH] CVE-2020-1292: An elevation of privilege vulnerability exists in OpenSSH for Windows when it does not properly rest
An elevation of privilege vulnerability exists in OpenSSH for Windows when it does not properly restrict access to configuration settings, aka 'OpenSSH for Windows Elevation of Privilege Vulnerability'.
nvd
CVE-2020-1204HIGHCVSS 7.1v1809v1903+2 more2020-06-09
CVE-2020-1204 [HIGH] CVE-2020-1204: An elevation of privilege vulnerability exists when Windows Mobile Device Management (MDM) Diagnosti
An elevation of privilege vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions, aka 'Windows Mobile Device Management Diagnostics Elevation of Privilege Vulnerability'.
nvd
CVE-2020-1237HIGHCVSS 7.8v1709v1803+4 more2020-06-09
CVE-2020-1237 [HIGH] CVE-2020-1237: An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-1307, CVE
nvd
CVE-2020-1273HIGHCVSS 7.8v1903v1909+1 more2020-06-09
CVE-2020-1273 [HIGH] CVE-2020-1273: An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle obje
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-130
nvd
CVE-2020-1265HIGHCVSS 7.8v1903v19092020-06-09
CVE-2020-1265 [HIGH] CVE-2020-1265: An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects i
An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1235, CVE-2020-1282, CVE-2020-1304, CVE-2020-1306, CVE-2020-1334.
nvd
CVE-2020-1246HIGHCVSS 7.8v1607v1709+5 more2020-06-09
CVE-2020-1246 [HIGH] CVE-2020-1246: An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle obje
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-130
nvd
CVE-2020-1316HIGHCVSS 7.8v1607v1709+5 more2020-06-09
CVE-2020-1316 [HIGH] CVE-2020-1316: An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle obje
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-127
nvd
CVE-2020-0916HIGHCVSS 7.8v1607v1709+5 more2020-06-09
CVE-2020-0916 [HIGH] CVE-2020-0916: An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface
An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, aka 'Windows GDI Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0915.
nvd
CVE-2020-1269HIGHCVSS 7.8v1607v1709+4 more2020-06-09
CVE-2020-1269 [HIGH] CVE-2020-1269: An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle obje
An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-130
nvd
CVE-2020-1299HIGHCVSS 8.8v1607v1709+5 more2020-06-09
CVE-2020-1299 [HIGH] CVE-2020-1299: A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execu
A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'.
nvd
CVE-2020-1317HIGHCVSS 8.8v1607v1709+5 more2020-06-09
CVE-2020-1317 [HIGH] CVE-2020-1317: An elevation of privilege vulnerability exists when Group Policy improperly checks access, aka 'Grou
An elevation of privilege vulnerability exists when Group Policy improperly checks access, aka 'Group Policy Elevation of Privilege Vulnerability'.
nvd
CVE-2020-1197HIGHCVSS 7.8v1607v1709+5 more2020-06-09
CVE-2020-1197 [HIGH] CVE-2020-1197: An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handl
An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'.
nvd
CVE-2020-1304HIGHCVSS 7.8v1607v1709+5 more2020-06-09
CVE-2020-1304 [HIGH] CVE-2020-1304: An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects i
An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1231, CVE-2020-1233, CVE-2020-1235, CVE-2020-1265, CVE-2020-1282, CVE-2020-1306, CVE-2020-1334.
nvd
CVE-2020-1244HIGHCVSS 7.1v1809v1903+2 more2020-06-09
CVE-2020-1244 [HIGH] CVE-2020-1244: A denial of service vulnerability exists when Connected User Experiences and Telemetry Service impro
A denial of service vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Denial of Service Vulnerability'. This CVE ID is unique from CVE-2020-1120.
nvd