~/products/microsoft/windows_10_21h2

pipeline liveDigest Docs

Microsoft Windows 10 21H2 vulnerabilities

1,827 known vulnerabilities affecting microsoft/windows_10_21h2.

Total CVEs

1,827

CISA KEV

87

actively exploited

Public exploits

54

Exploited in wild

97

Severity breakdown

CRITICAL44HIGH1303MEDIUM473LOW7

Vulnerabilities

SortPage 52 of 92

CVE-2024-49107P3HIGHCVSS 7.3fixed in 10.0.19044.52472024-12-12

CVE-2024-49107 [HIGH] CWE-59 CVE-2024-49107: WmsRepair Service Elevation of Privilege Vulnerability WmsRepair Service Elevation of Privilege Vulnerability

CVE-2025-21287P3HIGHCVSS 7.8fixed in 10.0.19044.53712025-01-14

CVE-2025-21287 [HIGH] CWE-269 CVE-2025-21287: Windows Installer Elevation of Privilege Vulnerability Windows Installer Elevation of Privilege Vulnerability

CVE-2023-35353P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11

CVE-2023-35353 [HIGH] CWE-59 CVE-2023-35353: Connected User Experiences and Telemetry Elevation of Privilege Vulnerability Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

CVE-2023-32012P3HIGHCVSS 7.8fixed in 10.0.19044.30872023-06-14

CVE-2023-32012 [HIGH] CWE-59 CVE-2023-32012: Windows Container Manager Service Elevation of Privilege Vulnerability Windows Container Manager Service Elevation of Privilege Vulnerability

CVE-2025-21382P3HIGHCVSS 7.8fixed in 10.0.19044.53712025-01-14

CVE-2025-21382 [HIGH] CWE-122 CVE-2025-21382: Windows Graphics Component Elevation of Privilege Vulnerability Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2024-43530P3HIGHCVSS 7.8fixed in 10.0.19044.51312024-11-12

CVE-2024-43530 [HIGH] CWE-284 CVE-2024-43530: Windows Update Stack Elevation of Privilege Vulnerability Windows Update Stack Elevation of Privilege Vulnerability

CVE-2023-28272P3HIGHCVSS 7.8fixed in 10.0.19044.28462023-04-11

CVE-2023-28272 [HIGH] CWE-191 CVE-2023-28272: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-35363P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11

CVE-2023-35363 [HIGH] CWE-122 CVE-2023-35363: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-35320P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11

CVE-2023-35320 [HIGH] CWE-59 CVE-2023-35320: Connected User Experiences and Telemetry Elevation of Privilege Vulnerability Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

CVE-2024-43563P3HIGHCVSS 7.8fixed in 10.0.19044.50112024-10-08

CVE-2024-43563 [HIGH] CWE-591 CVE-2024-43563: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2023-35304P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11

CVE-2023-35304 [HIGH] CWE-122 CVE-2023-35304: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-35328P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11

CVE-2023-35328 [HIGH] CWE-197 CVE-2023-35328: Windows Transaction Manager Elevation of Privilege Vulnerability Windows Transaction Manager Elevation of Privilege Vulnerability

CVE-2023-35305P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11

CVE-2023-35305 [HIGH] CWE-122 CVE-2023-35305: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

CVE-2023-35299P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11

CVE-2023-35299 [HIGH] CWE-125 CVE-2023-35299: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2024-30031P3HIGHCVSS 7.8fixed in 10.0.19044.44122024-05-14

CVE-2024-30031 [HIGH] CWE-416 CVE-2024-30031: Windows CNG Key Isolation Service Elevation of Privilege Vulnerability Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

CVE-2026-20816P3HIGHCVSS 7.0fixed in 10.0.19044.68092026-01-13

CVE-2026-20816 [HIGH] CWE-367 CVE-2026-20816: Time-of-check time-of-use (toctou) race condition in Windows Installer allows an authorized attacker Time-of-check time-of-use (toctou) race condition in Windows Installer allows an authorized attacker to elevate privileges locally.

CVE-2023-33155P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11

CVE-2023-33155 [HIGH] CWE-284 CVE-2023-33155: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2023-28236P3HIGHCVSS 7.8fixed in 10.0.19044.28462023-04-11

CVE-2023-28236 [HIGH] CWE-591 CVE-2023-28236: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

CVE-2025-58720P3HIGHCVSS 7.8fixed in 10.0.19044.64562025-10-14

CVE-2025-58720 [HIGH] CWE-1240 CVE-2025-58720: Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allow Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally.

CVE-2025-29833P3HIGHCVSS 7.7fixed in 10.0.19044.58542025-05-13

CVE-2025-29833 [HIGH] CWE-367 CVE-2025-29833: Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an unauthori Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an unauthorized attacker to execute code locally.

← Previous52 / 92Next →

Microsoft Windows 10 21H2 vulnerabilities | cvebase