Microsoft Windows 10 21H2 vulnerabilities

CVE-2024-43565 [HIGH] CWE-125 CVE-2024-43565: Windows Network Address Translation (NAT) Denial of Service Vulnerability Windows Network Address Translation (NAT) Denial of Service Vulnerability

CVE-2024-43562 [HIGH] CWE-125 CVE-2024-43562: Windows Network Address Translation (NAT) Denial of Service Vulnerability Windows Network Address Translation (NAT) Denial of Service Vulnerability

CVE-2024-38091 [HIGH] CWE-166 CVE-2024-38091: Microsoft WS-Discovery Denial of Service Vulnerability Microsoft WS-Discovery Denial of Service Vulnerability

CVE-2025-21330 [HIGH] CWE-400 CVE-2025-21330: Windows Remote Desktop Services Denial of Service Vulnerability Windows Remote Desktop Services Denial of Service Vulnerability

CVE-2024-21343 [HIGH] CWE-125 CVE-2024-21343: Windows Network Address Translation (NAT) Denial of Service Vulnerability Windows Network Address Translation (NAT) Denial of Service Vulnerability

CVE-2023-21816 [HIGH] CWE-20 CVE-2023-21816: Windows Active Directory Domain Services API Denial of Service Vulnerability Windows Active Directory Domain Services API Denial of Service Vulnerability

CVE-2024-30093 [HIGH] CWE-59 CVE-2024-30093: Windows Storage Elevation of Privilege Vulnerability Windows Storage Elevation of Privilege Vulnerability

CVE-2024-43529 [HIGH] CWE-822 CVE-2024-43529: Windows Print Spooler Elevation of Privilege Vulnerability Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2024-30050 [MEDIUM] CWE-693 CVE-2024-30050: Windows Mark of the Web Security Feature Bypass Vulnerability Windows Mark of the Web Security Feature Bypass Vulnerability

CVE-2025-59208 [HIGH] CWE-125 CVE-2025-59208: Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information o Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network.

CVE-2025-59282 [HIGH] CWE-362 CVE-2025-59282: Concurrent execution using shared resource with improper synchronization ('race condition') in Inbox Concurrent execution using shared resource with improper synchronization ('race condition') in Inbox COM Objects allows an unauthorized attacker to execute code locally.

CVE-2025-55680 [HIGH] CWE-367 CVE-2025-55680: Time-of-check time-of-use (toctou) race condition in Windows Cloud Files Mini Filter Driver allows a Time-of-check time-of-use (toctou) race condition in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

CVE-2023-24940 [HIGH] CWE-476 CVE-2023-24940: Windows Pragmatic General Multicast (PGM) Denial of Service Vulnerability Windows Pragmatic General Multicast (PGM) Denial of Service Vulnerability

CVE-2025-53147 [HIGH] CWE-416 CVE-2025-53147: Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2025-53137 [HIGH] CWE-416 CVE-2025-53137: Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2025-50167 [HIGH] CWE-362 CVE-2025-50167: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

CVE-2025-53802 [HIGH] CWE-416 CVE-2025-53802: Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges loca Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.

CVE-2025-54093 [HIGH] CWE-367 CVE-2025-54093: Time-of-check time-of-use (toctou) race condition in Windows TCP/IP allows an authorized attacker to Time-of-check time-of-use (toctou) race condition in Windows TCP/IP allows an authorized attacker to elevate privileges locally.

CVE-2025-53718 [HIGH] CWE-416 CVE-2025-53718: Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2025-53721 [HIGH] CWE-416 CVE-2025-53721: Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevat Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.