Microsoft Windows 10 21H2 vulnerabilities
1,827 known vulnerabilities affecting microsoft/windows_10_21h2.
Total CVEs
1,827
CISA KEV
87
actively exploited
Public exploits
54
Exploited in wild
97
Severity breakdown
CRITICAL44HIGH1303MEDIUM473LOW7
Vulnerabilities
Page 54 of 92
CVE-2023-35342P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11
CVE-2023-35342 [HIGH] CWE-59 CVE-2023-35342: Windows Image Acquisition Elevation of Privilege Vulnerability
Windows Image Acquisition Elevation of Privilege Vulnerability
nvd
CVE-2023-32053P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11
CVE-2023-32053 [HIGH] CWE-59 CVE-2023-32053: Windows Installer Elevation of Privilege Vulnerability
Windows Installer Elevation of Privilege Vulnerability
nvd
CVE-2023-24946P3HIGHCVSS 7.8fixed in 10.0.19044.29652023-05-09
CVE-2023-24946 [HIGH] CWE-591 CVE-2023-24946: Windows Backup Service Elevation of Privilege Vulnerability
Windows Backup Service Elevation of Privilege Vulnerability
nvd
CVE-2023-23417P3HIGHCVSS 7.8fixed in 10.0.19044.27282023-03-14
CVE-2023-23417 [HIGH] CWE-190 CVE-2023-23417: Windows Partition Management Driver Elevation of Privilege Vulnerability
Windows Partition Management Driver Elevation of Privilege Vulnerability
nvd
CVE-2023-35362P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11
CVE-2023-35362 [HIGH] CWE-591 CVE-2023-35362: Windows Clip Service Elevation of Privilege Vulnerability
Windows Clip Service Elevation of Privilege Vulnerability
nvd
CVE-2023-35340P3HIGHCVSS 7.8fixed in 10.0.19041.32082023-07-11
CVE-2023-35340 [HIGH] CWE-591 CVE-2023-35340: Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
nvd
CVE-2024-26232P3HIGHCVSS 7.3fixed in 10.0.19044.42912024-04-09
CVE-2024-26232 [HIGH] CWE-843 CVE-2024-26232: Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
nvd
CVE-2025-27491P3HIGHCVSS 7.1fixed in 10.0.19044.57372025-04-08
CVE-2025-27491 [HIGH] CWE-416 CVE-2025-27491: Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network.
Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network.
nvd
CVE-2026-40414P3HIGHCVSS 7.4fixed in 10.0.19044.72912026-05-12
CVE-2026-40414 [HIGH] CWE-476 CVE-2026-40414: Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an a
Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an adjacent network.
nvd
CVE-2025-32721P3HIGHCVSS 7.3fixed in 10.0.19044.59652025-06-10
CVE-2025-32721 [HIGH] CWE-59 CVE-2025-32721: Improper link resolution before file access ('link following') in Windows Recovery Driver allows an
Improper link resolution before file access ('link following') in Windows Recovery Driver allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-49680P3HIGHCVSS 7.3fixed in 10.0.19044.60932025-07-08
CVE-2025-49680 [HIGH] CWE-59 CVE-2025-49680: Improper link resolution before file access ('link following') in Windows Performance Recorder allow
Improper link resolution before file access ('link following') in Windows Performance Recorder allows an authorized attacker to deny service locally.
nvd
CVE-2024-30076P3MEDIUMCVSS 6.8fixed in 10.0.19044.45292024-06-11
CVE-2024-30076 [MEDIUM] CWE-59 CVE-2024-30076: Windows Container Manager Service Elevation of Privilege Vulnerability
Windows Container Manager Service Elevation of Privilege Vulnerability
nvd
CVE-2026-32093P3HIGHCVSS 7.0fixed in 10.0.19044.71842026-04-14
CVE-2026-32093 [HIGH] CWE-122 CVE-2026-32093: Concurrent execution using shared resource with improper synchronization ('race condition') in Funct
Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-26151P3HIGHCVSS 7.1fixed in 10.0.19044.71842026-04-14
CVE-2026-26151 [HIGH] CWE-357 CVE-2026-26151: Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized att
Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network.
nvd
CVE-2026-21253P3HIGHCVSS 7.0fixed in 10.0.19044.69372026-02-10
CVE-2026-21253 [HIGH] CWE-416 CVE-2026-21253: Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally.
Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-59214P3MEDIUMCVSS 6.5fixed in 10.0.19044.64562025-10-14
CVE-2025-59214 [MEDIUM] CWE-200 CVE-2025-59214: Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauth
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.
nvd
CVE-2026-21508P3HIGHCVSS 7.0fixed in 10.0.19044.69372026-02-10
CVE-2026-21508 [HIGH] CWE-287 CVE-2026-21508: Improper authentication in Windows Storage allows an authorized attacker to elevate privileges local
Improper authentication in Windows Storage allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-55340P3HIGHCVSS 7.0fixed in 10.0.19044.64562025-10-14
CVE-2025-55340 [HIGH] CWE-287 CVE-2025-55340: Improper authentication in Windows Remote Desktop Protocol allows an authorized attacker to bypass a
Improper authentication in Windows Remote Desktop Protocol allows an authorized attacker to bypass a security feature locally.
nvd
CVE-2026-25171P3HIGHCVSS 7.0fixed in 10.0.19044.70582026-03-10
CVE-2026-25171 [HIGH] CWE-416 CVE-2026-25171: Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges
Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-32087P3HIGHCVSS 7.0fixed in 10.0.19044.71842026-04-14
CVE-2026-32087 [HIGH] CWE-122 CVE-2026-32087: Heap-based buffer overflow in Function Discovery Service (fdwsd.dll) allows an authorized attacker t
Heap-based buffer overflow in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.
nvd