Microsoft Windows 10 21H2 vulnerabilities
1,827 known vulnerabilities affecting microsoft/windows_10_21h2.
Total CVEs
1,827
CISA KEV
87
actively exploited
Public exploits
54
Exploited in wild
97
Severity breakdown
CRITICAL44HIGH1303MEDIUM473LOW7
Vulnerabilities
Page 32 of 92
CVE-2026-27924P3HIGHCVSS 7.8fixed in 10.0.19044.71842026-04-14
CVE-2026-27924 [HIGH] CWE-416 CVE-2026-27924: Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally
Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-59187P3HIGHCVSS 7.8fixed in 10.0.19044.64562025-10-14
CVE-2025-59187 [HIGH] CWE-20 CVE-2025-59187: Improper input validation in Windows Kernel allows an authorized attacker to elevate privileges loca
Improper input validation in Windows Kernel allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-49732P3HIGHCVSS 7.8fixed in 10.0.19044.60932025-07-08
CVE-2025-49732 [HIGH] CWE-122 CVE-2025-49732: Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate
Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-41092P3HIGHCVSS 7.8fixed in 10.0.19044.74172026-06-09
CVE-2026-41092 [HIGH] CWE-284 CVE-2026-41092: Improper access control in Microsoft Kinect allows an authorized attacker to elevate privileges loca
Improper access control in Microsoft Kinect allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-59502P3HIGHCVSS 7.5fixed in 10.0.19044.63322025-10-14
CVE-2025-59502 [HIGH] CWE-400 CVE-2025-59502: Uncontrolled resource consumption in Windows Remote Procedure Call allows an unauthorized attacker t
Uncontrolled resource consumption in Windows Remote Procedure Call allows an unauthorized attacker to deny service over a network.
nvd
CVE-2026-49160P3HIGHCVSS 7.5fixed in 10.0.19044.74172026-06-09
CVE-2026-49160 [HIGH] CWE-400 CVE-2026-49160: Uncontrolled resource consumption in HTTP/2 allows an unauthorized attacker to deny service over a n
Uncontrolled resource consumption in HTTP/2 allows an unauthorized attacker to deny service over a network.
nvd
CVE-2026-48583P3HIGHCVSS 7.8fixed in 10.0.19044.74172026-06-09
CVE-2026-48583 [HIGH] CWE-416 CVE-2026-48583: Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
nvd
CVE-2023-28238P3HIGHCVSS 7.5fixed in 10.0.19044.28462023-04-11
CVE-2023-28238 [HIGH] CWE-591 CVE-2023-28238: Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability
Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability
nvd
CVE-2025-27484P3HIGHCVSS 7.5fixed in 10.0.19044.57372025-04-08
CVE-2025-27484 [HIGH] CWE-591 CVE-2025-27484: Sensitive data storage in improperly locked memory in Windows Universal Plug and Play (UPnP) Device
Sensitive data storage in improperly locked memory in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over a network.
nvd
CVE-2024-30032P3HIGHCVSS 7.8fixed in 10.0.19044.44122024-05-14
CVE-2024-30032 [HIGH] CWE-416 CVE-2024-30032: Windows DWM Core Library Elevation of Privilege Vulnerability
Windows DWM Core Library Elevation of Privilege Vulnerability
nvd
CVE-2023-38143P3HIGHCVSS 7.8fixed in 10.0.19044.34482023-09-12
CVE-2023-38143 [HIGH] CWE-122 CVE-2023-38143: Windows Common Log File System Driver Elevation of Privilege Vulnerability
Windows Common Log File System Driver Elevation of Privilege Vulnerability
nvd
CVE-2023-23388P3HIGHCVSS 8.8fixed in 10.0.19044.27282023-03-14
CVE-2023-23388 [HIGH] CWE-681 CVE-2023-23388: Windows Bluetooth Driver Elevation of Privilege Vulnerability
Windows Bluetooth Driver Elevation of Privilege Vulnerability
nvd
CVE-2023-35380P3HIGHCVSS 7.8fixed in 10.0.19044.33242023-08-08
CVE-2023-35380 [HIGH] CWE-416 CVE-2023-35380: Windows Kernel Elevation of Privilege Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
nvd
CVE-2024-43629P3HIGHCVSS 7.8fixed in 10.0.19044.51312024-11-12
CVE-2024-43629 [HIGH] CWE-822 CVE-2024-43629: Windows DWM Core Library Elevation of Privilege Vulnerability
Windows DWM Core Library Elevation of Privilege Vulnerability
nvd
CVE-2024-38141P3HIGHCVSS 7.8fixed in 10.0.19044.47802024-08-13
CVE-2024-38141 [HIGH] CWE-416 CVE-2024-38141: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
nvd
CVE-2024-43560P3HIGHCVSS 7.8fixed in 10.0.19044.50112024-10-08
CVE-2024-43560 [HIGH] CWE-122 CVE-2024-43560: Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability
Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability
nvd
CVE-2025-21292P3HIGHCVSS 8.8fixed in 10.0.19044.53712025-01-14
CVE-2025-21292 [HIGH] CWE-94 CVE-2025-21292: Windows Search Service Elevation of Privilege Vulnerability
Windows Search Service Elevation of Privilege Vulnerability
nvd
CVE-2025-27737P3HIGHCVSS 8.6fixed in 10.0.19044.57372025-04-08
CVE-2025-27737 [HIGH] CWE-20 CVE-2025-27737: Improper input validation in Windows Security Zone Mapping allows an unauthorized attacker to bypass
Improper input validation in Windows Security Zone Mapping allows an unauthorized attacker to bypass a security feature locally.
nvd
CVE-2025-48822P3HIGHCVSS 8.6fixed in 10.0.19044.60932025-07-08
CVE-2025-48822 [HIGH] CWE-125 CVE-2025-48822: Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally.
Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally.
nvd
CVE-2023-29351P3HIGHCVSS 8.1fixed in 10.0.19044.30862023-06-14
CVE-2023-29351 [HIGH] CWE-59 CVE-2023-29351: Windows Group Policy Elevation of Privilege Vulnerability
Windows Group Policy Elevation of Privilege Vulnerability
nvd