~/products/microsoft/windows_10_21h2

pipeline liveDigest Docs

Microsoft Windows 10 21H2 vulnerabilities

1,827 known vulnerabilities affecting microsoft/windows_10_21h2.

Total CVEs

1,827

CISA KEV

87

actively exploited

Public exploits

54

Exploited in wild

97

Severity breakdown

CRITICAL44HIGH1303MEDIUM473LOW7

Vulnerabilities

SortPage 29 of 92

CVE-2023-35644P3HIGHCVSS 7.8fixed in 10.0.19041.38032023-12-12

CVE-2023-35644 [HIGH] CWE-190 CVE-2023-35644: Windows Sysmain Service Elevation of Privilege Vulnerability Windows Sysmain Service Elevation of Privilege Vulnerability

CVE-2026-26176P3HIGHCVSS 7.8fixed in 10.0.19044.71842026-04-14

CVE-2026-26176 [HIGH] CWE-122 CVE-2026-26176: Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized atta Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized attacker to elevate privileges locally.

CVE-2023-35386P3HIGHCVSS 7.8fixed in 10.0.19044.33242023-08-08

CVE-2023-35386 [HIGH] CWE-125 CVE-2023-35386: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-35309P3HIGHCVSS 7.5fixed in 10.0.19041.32082023-07-11

CVE-2023-35309 [HIGH] CWE-591 CVE-2023-35309: Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

CVE-2023-35382P3HIGHCVSS 7.8fixed in 10.0.19044.33242023-08-08

CVE-2023-35382 [HIGH] CWE-416 CVE-2023-35382: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

CVE-2026-32161P3HIGHCVSS 7.5fixed in 10.0.19044.72912026-05-12

CVE-2026-32161 [HIGH] CWE-362 CVE-2026-32161: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Native WiFi Miniport Driver allows an unauthorized attacker to execute code over an adjacent network.

CVE-2023-38144P3HIGHCVSS 7.8fixed in 10.0.19044.34482023-09-12

CVE-2023-38144 [HIGH] CWE-126 CVE-2023-38144: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2024-38085P3HIGHCVSS 7.8fixed in 10.0.19044.46512024-07-09

CVE-2024-38085 [HIGH] CWE-416 CVE-2024-38085: Windows Graphics Component Elevation of Privilege Vulnerability Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2024-20653P3HIGHCVSS 7.8fixed in 10.0.19044.39302024-01-09

CVE-2024-20653 [HIGH] CWE-125 CVE-2024-20653: Microsoft Common Log File System Elevation of Privilege Vulnerability Microsoft Common Log File System Elevation of Privilege Vulnerability

CVE-2024-30025P3HIGHCVSS 7.8fixed in 10.0.19044.44122024-05-14

CVE-2024-30025 [HIGH] CWE-125 CVE-2024-30025: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2024-43630P3HIGHCVSS 7.8fixed in 10.0.19044.51312024-11-12

CVE-2024-43630 [HIGH] CWE-121 CVE-2024-43630: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-29996P3HIGHCVSS 7.8fixed in 10.0.19044.44122024-05-14

CVE-2024-29996 [HIGH] CWE-125 CVE-2024-29996: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2024-30068P3HIGHCVSS 8.8fixed in 10.0.19044.45292024-06-11

CVE-2024-30068 [HIGH] CWE-125 CVE-2024-30068: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-38237P3HIGHCVSS 7.8fixed in 10.0.19044.48942024-09-10

CVE-2024-38237 [HIGH] CWE-122 CVE-2024-38237: Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

CVE-2024-38242P3HIGHCVSS 7.8fixed in 10.0.19044.48942024-09-10

CVE-2024-38242 [HIGH] CWE-122 CVE-2024-38242: Kernel Streaming Service Driver Elevation of Privilege Vulnerability Kernel Streaming Service Driver Elevation of Privilege Vulnerability

CVE-2024-43574P3HIGHCVSS 8.3fixed in 10.0.19044.50112024-10-08

CVE-2024-43574 [HIGH] CWE-416 CVE-2024-43574: Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability

CVE-2023-28274P3HIGHCVSS 7.8fixed in 10.0.19044.28462023-04-11

CVE-2023-28274 [HIGH] CWE-20 CVE-2023-28274: Windows Win32k Elevation of Privilege Vulnerability Windows Win32k Elevation of Privilege Vulnerability

CVE-2025-47972P3HIGHCVSS 8.0fixed in 10.0.19044.60932025-07-08

CVE-2025-47972 [HIGH] CWE-362 CVE-2025-47972: Concurrent execution using shared resource with improper synchronization ('race condition') in Micro Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges over a network.

CVE-2025-49691P3HIGHCVSS 8.0fixed in 10.0.19044.60932025-07-08

CVE-2025-49691 [HIGH] CWE-122 CVE-2025-49691: Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over an Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over an adjacent network.

CVE-2024-30022P3HIGHCVSS 7.5fixed in 10.0.19044.44122024-05-14

CVE-2024-30022 [HIGH] CWE-197 CVE-2024-30022: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

← Previous29 / 92Next →

Microsoft Windows 10 21H2 vulnerabilities | cvebase