Microsoft Windows 10 1507 vulnerabilities
1,047 known vulnerabilities affecting microsoft/windows_10_1507.
Total CVEs
1,047
CISA KEV
74
actively exploited
Public exploits
28
Exploited in wild
56
Severity breakdown
CRITICAL32HIGH730MEDIUM280LOW5
Vulnerabilities
Page 51 of 53
CVE-2023-1017HIGHCVSS 7.8fixed in 10.0.10240.198052023-02-28
CVE-2023-1017 [HIGH] CWE-787 CVE-2023-1017: An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte
An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can lead to denial of service (crashing the TPM chip/process or rendering it unusable) and/or arbitrary code execution
nvd
CVE-2023-1018MEDIUMCVSS 5.5fixed in 10.0.10240.198052023-02-28
CVE-2023-1018 [MEDIUM] CWE-125 CVE-2023-1018: An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past th
An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can read or access sensitive data stored in the TPM.
nvd
CVE-2023-21689CRITICALCVSS 9.8fixed in 10.0.10240.197472023-02-14
CVE-2023-21689 [CRITICAL] CWE-122 CVE-2023-21689: Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
nvd
CVE-2023-21690CRITICALCVSS 9.8fixed in 10.0.10240.197472023-02-14
CVE-2023-21690 [CRITICAL] CWE-122 CVE-2023-21690: Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
nvd
CVE-2023-21692CRITICALCVSS 9.8fixed in 10.0.10240.197472023-02-14
CVE-2023-21692 [CRITICAL] CWE-122 CVE-2023-21692: Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
nvd
CVE-2023-21823HIGHCVSS 7.8KEVfixed in 10.0.10240.197472023-02-14
CVE-2023-21823 [HIGH] CWE-190 CVE-2023-21823: Windows Graphics Component Remote Code Execution Vulnerability
Windows Graphics Component Remote Code Execution Vulnerability
nvd
CVE-2023-21691HIGHCVSS 7.5fixed in 10.0.10240.197472023-02-14
CVE-2023-21691 [HIGH] CWE-125 CVE-2023-21691: Microsoft Protected Extensible Authentication Protocol (PEAP) Information Disclosure Vulnerability
Microsoft Protected Extensible Authentication Protocol (PEAP) Information Disclosure Vulnerability
nvd
CVE-2023-21797HIGHCVSS 8.8fixed in 10.0.10240.197472023-02-14
CVE-2023-21797 [HIGH] CWE-190 CVE-2023-21797: Microsoft ODBC Driver Remote Code Execution Vulnerability
Microsoft ODBC Driver Remote Code Execution Vulnerability
nvd
CVE-2023-21685HIGHCVSS 8.8fixed in 10.0.10240.197472023-02-14
CVE-2023-21685 [HIGH] CWE-20 CVE-2023-21685: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
nvd
CVE-2023-21684HIGHCVSS 8.8fixed in 10.0.10240.197472023-02-14
CVE-2023-21684 [HIGH] CWE-191 CVE-2023-21684: Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
nvd
CVE-2023-21799HIGHCVSS 8.8fixed in 10.0.10240.197472023-02-14
CVE-2023-21799 [HIGH] CWE-122 CVE-2023-21799: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
nvd
CVE-2023-21686HIGHCVSS 8.8fixed in 10.0.10240.197472023-02-14
CVE-2023-21686 [HIGH] CWE-190 CVE-2023-21686: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
nvd
CVE-2023-21798HIGHCVSS 8.8fixed in 10.0.10240.197472023-02-14
CVE-2023-21798 [HIGH] CWE-125 CVE-2023-21798: Microsoft ODBC Driver Remote Code Execution Vulnerability
Microsoft ODBC Driver Remote Code Execution Vulnerability
nvd
CVE-2023-23376HIGHCVSS 7.8KEVfixed in 10.0.10240.197472023-02-14
CVE-2023-23376 [HIGH] CWE-122 CVE-2023-23376: Windows Common Log File System Driver Elevation of Privilege Vulnerability
Windows Common Log File System Driver Elevation of Privilege Vulnerability
nvd
CVE-2023-21674HIGHCVSS 8.8KEVfixed in 10.0.10240.196852023-01-10
CVE-2023-21674 [HIGH] CWE-416 CVE-2023-21674: Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
nvd
CVE-2023-21739HIGHCVSS 7.0fixed in 10.0.10240.196852023-01-10
CVE-2023-21739 [HIGH] CWE-591 CVE-2023-21739: Windows Bluetooth Driver Elevation of Privilege Vulnerability
Windows Bluetooth Driver Elevation of Privilege Vulnerability
nvd
CVE-2022-41128HIGHCVSS 8.8KEVfixed in 10.0.10240.195672022-11-09
CVE-2022-41128 [HIGH] CWE-787 CVE-2022-41128: Windows Scripting Languages Remote Code Execution Vulnerability
Windows Scripting Languages Remote Code Execution Vulnerability
nvd
CVE-2022-41073HIGHCVSS 7.8KEVfixed in 10.0.10240.195672022-11-09
CVE-2022-41073 [HIGH] CWE-787 CVE-2022-41073: Windows Print Spooler Elevation of Privilege Vulnerability
Windows Print Spooler Elevation of Privilege Vulnerability
nvd
CVE-2022-41125HIGHCVSS 7.8KEVfixed in 10.0.10240.195672022-11-09
CVE-2022-41125 [HIGH] CWE-787 CVE-2022-41125: Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
nvd
CVE-2022-41049MEDIUMCVSS 5.4KEVfixed in 10.0.10240.195672022-11-09
CVE-2022-41049 [MEDIUM] CVE-2022-41049: Windows Mark of the Web Security Feature Bypass Vulnerability
Windows Mark of the Web Security Feature Bypass Vulnerability
nvd