~/products/microsoft/windows_10_21h2

pipeline liveDigest Docs

Microsoft Windows 10 21H2 vulnerabilities

1,827 known vulnerabilities affecting microsoft/windows_10_21h2.

Total CVEs

1,827

CISA KEV

87

actively exploited

Public exploits

54

Exploited in wild

97

Severity breakdown

CRITICAL44HIGH1303MEDIUM473LOW7

Vulnerabilities

SortPage 58 of 92

CVE-2026-42984P3HIGHCVSS 7.0fixed in 10.0.19044.74172026-06-09

CVE-2026-42984 [HIGH] CWE-416 CVE-2026-42984: Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally. Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-45653P3HIGHCVSS 7.0fixed in 10.0.19044.74172026-06-09

CVE-2026-45653 [HIGH] CWE-122 CVE-2026-45653: Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally. Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2025-59259P3MEDIUMCVSS 6.5fixed in 10.0.19044.64562025-10-14

CVE-2025-59259 [MEDIUM] CWE-1287 CVE-2025-59259: Improper validation of specified type of input in Windows Local Session Manager (LSM) allows an auth Improper validation of specified type of input in Windows Local Session Manager (LSM) allows an authorized attacker to deny service over a network.

CVE-2026-32151P3MEDIUMCVSS 6.5fixed in 10.0.19044.71842026-04-14

CVE-2026-32151 [MEDIUM] CWE-200 CVE-2026-32151: Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized att Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network.

CVE-2026-42907P3MEDIUMCVSS 6.5fixed in 10.0.19044.74172026-06-09

CVE-2026-42907 [MEDIUM] CWE-200 CVE-2026-42907: Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized att Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information locally.

CVE-2024-21433P3HIGHCVSS 7.0fixed in 10.0.19044.41702024-03-12

CVE-2024-21433 [HIGH] CWE-367 CVE-2024-21433: Windows Print Spooler Elevation of Privilege Vulnerability Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2025-21181P3HIGHCVSS 7.5fixed in 10.0.19044.54872025-02-11

CVE-2025-21181 [HIGH] CWE-400 CVE-2025-21181: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

CVE-2023-29361P3HIGHCVSS 7.0fixed in 10.0.19044.30862023-06-14

CVE-2023-29361 [HIGH] CWE-416 CVE-2023-29361: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

CVE-2024-38126P3HIGHCVSS 7.5fixed in 10.0.19044.47802024-08-13

CVE-2024-38126 [HIGH] CWE-476 CVE-2024-38126: Windows Network Address Translation (NAT) Denial of Service Vulnerability Windows Network Address Translation (NAT) Denial of Service Vulnerability

CVE-2024-38145P3HIGHCVSS 7.5fixed in 10.0.19044.47802024-08-13

CVE-2024-38145 [HIGH] CWE-476 CVE-2024-38145: Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

CVE-2024-38146P3HIGHCVSS 7.5fixed in 10.0.19044.47802024-08-13

CVE-2024-38146 [HIGH] CWE-476 CVE-2024-38146: Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

CVE-2025-21300P3HIGHCVSS 7.5fixed in 10.0.19044.53712025-01-14

CVE-2025-21300 [HIGH] CWE-400 CVE-2025-21300: Windows Universal Plug and Play (UPnP) Device Host Denial of Service Vulnerability Windows Universal Plug and Play (UPnP) Device Host Denial of Service Vulnerability

CVE-2024-21348P3HIGHCVSS 7.5fixed in 10.0.19044.40462024-02-13

CVE-2024-21348 [HIGH] CWE-122 CVE-2024-21348: Internet Connection Sharing (ICS) Denial of Service Vulnerability Internet Connection Sharing (ICS) Denial of Service Vulnerability

CVE-2023-21701P3HIGHCVSS 7.5fixed in 10.0.19044.26042023-02-14

CVE-2023-21701 [HIGH] CWE-126 CVE-2023-21701: Microsoft Protected Extensible Authentication Protocol (PEAP) Denial of Service Vulnerability Microsoft Protected Extensible Authentication Protocol (PEAP) Denial of Service Vulnerability

CVE-2023-24901P3HIGHCVSS 7.5fixed in 10.0.19044.29652023-05-09

CVE-2023-24901 [HIGH] CWE-126 CVE-2023-24901: Windows NFS Portmapper Information Disclosure Vulnerability Windows NFS Portmapper Information Disclosure Vulnerability

CVE-2023-36913P3HIGHCVSS 7.5fixed in 10.0.19044.33242023-08-08

CVE-2023-36913 [HIGH] CWE-908 CVE-2023-36913: Microsoft Message Queuing Information Disclosure Vulnerability Microsoft Message Queuing Information Disclosure Vulnerability

CVE-2023-24856P3HIGHCVSS 7.5fixed in 10.0.19044.27282023-03-14

CVE-2023-24856 [HIGH] CWE-20 CVE-2023-24856: Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

CVE-2023-24858P3HIGHCVSS 7.5fixed in 10.0.19044.27282023-03-14

CVE-2023-24858 [HIGH] CWE-126 CVE-2023-24858: Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

CVE-2023-36004P3HIGHCVSS 7.5fixed in 10.0.19041.38032023-12-12

CVE-2023-36004 [HIGH] CWE-287 CVE-2023-36004: Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability

CVE-2023-21526P3HIGHCVSS 7.4fixed in 10.0.19041.32082023-07-11

CVE-2023-21526 [HIGH] CVE-2023-21526: Windows Netlogon Information Disclosure Vulnerability Windows Netlogon Information Disclosure Vulnerability

← Previous58 / 92Next →

Microsoft Windows 10 21H2 vulnerabilities | cvebase