Microsoft Windows 10 21H1 vulnerabilities

71 known vulnerabilities affecting microsoft/windows_10_21h1.

Total CVEs
71
CISA KEV
36
actively exploited
Public exploits
4
Exploited in wild
36
Severity breakdown
CRITICAL2HIGH55MEDIUM14

Vulnerabilities

Page 4 of 4
CVE-2021-34486HIGHCVSS 7.8KEVfixed in 10.0.19043.11652021-08-12
CVE-2021-34486 [HIGH] CWE-416 CVE-2021-34486: Windows Event Tracing Elevation of Privilege Vulnerability Windows Event Tracing Elevation of Privilege Vulnerability
nvd
CVE-2021-36948HIGHCVSS 7.8KEVfixed in 10.0.19043.11652021-08-12
CVE-2021-36948 [HIGH] CVE-2021-36948: Windows Update Medic Service Elevation of Privilege Vulnerability Windows Update Medic Service Elevation of Privilege Vulnerability
nvd
CVE-2021-36934HIGHCVSS 7.8KEVfixed in 10.0.19043.11652021-07-22
CVE-2021-36934 [HIGH] CVE-2021-36934: <p>An elevation of privilege vulnerability exists because of overly permissive Access Control Lists An elevation of privilege vulnerability exists because of overly permissive Access Control Lists (ACLs) on multiple system files, including the Security Accounts Manager (SAM) database. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data
nvd
CVE-2021-33771HIGHCVSS 7.8KEVfixed in 10.0.19043.11102021-07-14
CVE-2021-33771 [HIGH] CVE-2021-33771: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability
nvd
CVE-2021-31979HIGHCVSS 7.8KEVfixed in 10.0.19043.11102021-07-14
CVE-2021-31979 [HIGH] CWE-119 CVE-2021-31979: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability
nvd
CVE-2021-1675HIGHCVSS 7.8KEVfixed in 10.0.19043.10522021-06-08
CVE-2021-1675 [HIGH] CVE-2021-1675: Windows Print Spooler Remote Code Execution Vulnerability Windows Print Spooler Remote Code Execution Vulnerability
nvd
CVE-2021-33739HIGHCVSS 7.8KEVfixed in 10.0.19043.10522021-06-08
CVE-2021-33739 [HIGH] CVE-2021-33739: Microsoft DWM Core Library Elevation of Privilege Vulnerability Microsoft DWM Core Library Elevation of Privilege Vulnerability
nvd
CVE-2021-31199HIGHCVSS 7.8KEVfixed in 10.0.19043.10522021-06-08
CVE-2021-31199 [HIGH] CVE-2021-31199: Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability
nvd
CVE-2021-33742HIGHCVSS 8.8KEVfixed in 10.0.19043.10522021-06-08
CVE-2021-33742 [HIGH] CWE-787 CVE-2021-33742: Windows MSHTML Platform Remote Code Execution Vulnerability Windows MSHTML Platform Remote Code Execution Vulnerability
nvd
CVE-2021-31201HIGHCVSS 7.8KEVfixed in 10.0.19043.10522021-06-08
CVE-2021-31201 [HIGH] CVE-2021-31201: Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability
nvd
CVE-2021-31955MEDIUMCVSS 5.5KEVfixed in 10.0.19043.10522021-06-08
CVE-2021-31955 [MEDIUM] CWE-497 CVE-2021-31955: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability
nvd
← Previous4 / 4