Microsoft Windows 10 21H2 vulnerabilities

1,827 known vulnerabilities affecting microsoft/windows_10_21h2.

Total CVEs

1,827

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL44HIGH1303MEDIUM473LOW7

Vulnerabilities

SortPage 55 of 92

CVE-2026-20847P3MEDIUMCVSS 6.5fixed in 10.0.19044.68092026-01-13

CVE-2026-20847 [MEDIUM] CWE-200 CVE-2026-20847: Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized att Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to perform spoofing over a network.

nvd

CVE-2025-50166P3MEDIUMCVSS 6.5fixed in 10.0.19044.62162025-08-12

CVE-2025-50166 [MEDIUM] CWE-190 CVE-2025-50166: Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized a Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network.

nvd

CVE-2024-30084P3HIGHCVSS 7.0fixed in 10.0.19044.45292024-06-11

CVE-2024-30084 [HIGH] CWE-367 CVE-2024-30084: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

nvd

CVE-2025-59185P3MEDIUMCVSS 6.5fixed in 10.0.19044.64562025-10-14

CVE-2025-59185 [MEDIUM] CWE-73 CVE-2025-59185: External control of file name or path in Windows Core Shell allows an unauthorized attacker to perfo External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network.

nvd

CVE-2025-62473P3MEDIUMCVSS 6.5fixed in 10.0.19044.66912025-12-09

CVE-2025-62473 [MEDIUM] CWE-126 CVE-2025-62473: Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

nvd

CVE-2025-64670P3MEDIUMCVSS 6.5fixed in 10.0.19044.66912025-12-09

CVE-2025-64670 [MEDIUM] CWE-200 CVE-2025-64670: Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows an Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows an authorized attacker to disclose information over a network.

nvd

CVE-2025-59244P3MEDIUMCVSS 6.5fixed in 10.0.19044.64562025-10-14

CVE-2025-59244 [MEDIUM] CWE-73 CVE-2025-59244: External control of file name or path in Windows Core Shell allows an unauthorized attacker to perfo External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network.

nvd

CVE-2025-29809P3HIGHCVSS 7.1fixed in 10.0.19044.57372025-04-08

CVE-2025-29809 [HIGH] CWE-922 CVE-2025-29809: Insecure storage of sensitive information in Windows Kerberos allows an authorized attacker to bypas Insecure storage of sensitive information in Windows Kerberos allows an authorized attacker to bypass a security feature locally.

nvd

CVE-2024-21438P3HIGHCVSS 7.5fixed in 10.0.19044.42912024-03-12

CVE-2024-21438 [HIGH] CWE-369 CVE-2024-21438: Microsoft AllJoyn API Denial of Service Vulnerability Microsoft AllJoyn API Denial of Service Vulnerability

nvd

CVE-2023-36709P3HIGHCVSS 7.5fixed in 10.0.19041.35702023-10-10

CVE-2023-36709 [HIGH] CWE-476 CVE-2023-36709: Microsoft AllJoyn API Denial of Service Vulnerability Microsoft AllJoyn API Denial of Service Vulnerability

nvd

CVE-2024-38068P3HIGHCVSS 7.5fixed in 10.0.19044.46512024-07-09

CVE-2024-38068 [HIGH] CWE-400 CVE-2024-38068: Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability

nvd

CVE-2024-20687P3HIGHCVSS 7.5fixed in 10.0.19044.39302024-01-09

CVE-2024-20687 [HIGH] CWE-125 CVE-2024-20687: Microsoft AllJoyn API Denial of Service Vulnerability Microsoft AllJoyn API Denial of Service Vulnerability

nvd

CVE-2023-36003P3HIGHCVSS 7.3fixed in 10.0.19041.38032023-12-12

CVE-2023-36003 [HIGH] CWE-426 CVE-2023-36003: XAML Diagnostics Elevation of Privilege Vulnerability XAML Diagnostics Elevation of Privilege Vulnerability

nvd

CVE-2024-49121P3HIGHCVSS 7.5fixed in 10.0.19044.52472024-12-12

CVE-2024-49121 [HIGH] CWE-476 CVE-2024-49121: Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

nvd

CVE-2024-43515P3HIGHCVSS 7.5fixed in 10.0.19044.50112024-10-08

CVE-2024-43515 [HIGH] CWE-400 CVE-2024-43515: Internet Small Computer Systems Interface (iSCSI) Denial of Service Vulnerability Internet Small Computer Systems Interface (iSCSI) Denial of Service Vulnerability

nvd

CVE-2025-21351P3HIGHCVSS 7.5fixed in 10.0.19044.54872025-02-11

CVE-2025-21351 [HIGH] CWE-400 CVE-2025-21351: Windows Active Directory Domain Services API Denial of Service Vulnerability Windows Active Directory Domain Services API Denial of Service Vulnerability

nvd

CVE-2023-36907P3HIGHCVSS 7.5fixed in 10.0.19044.33242023-08-08

CVE-2023-36907 [HIGH] CWE-170 CVE-2023-36907: Windows Cryptographic Services Information Disclosure Vulnerability Windows Cryptographic Services Information Disclosure Vulnerability

nvd

CVE-2023-35325P3HIGHCVSS 7.5fixed in 10.0.19041.32082023-07-11

CVE-2023-35325 [HIGH] CWE-908 CVE-2023-35325: Windows Print Spooler Information Disclosure Vulnerability Windows Print Spooler Information Disclosure Vulnerability

nvd

CVE-2023-32008P3HIGHCVSS 7.8fixed in 10.0.19044.30862023-06-14

CVE-2023-32008 [HIGH] CWE-476 CVE-2023-32008: Windows Resilient File System (ReFS) Remote Code Execution Vulnerability Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

nvd

CVE-2022-21871P3HIGHCVSS 7.8fixed in 10.0.19044.14662022-01-11

CVE-2022-21871 [HIGH] CVE-2022-21871: Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability

nvd

← Previous55 / 92Next →