Microsoft Windows 10 21H2 vulnerabilities
1,827 known vulnerabilities affecting microsoft/windows_10_21h2.
Total CVEs
1,827
CISA KEV
87
actively exploited
Public exploits
54
Exploited in wild
97
Severity breakdown
CRITICAL44HIGH1303MEDIUM473LOW7
Vulnerabilities
Page 71 of 92
CVE-2026-50507P4MEDIUMCVSS 6.8fixed in 10.0.19044.74172026-06-09
CVE-2026-50507 [MEDIUM] CWE-306 CVE-2026-50507: Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a securi
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
nvd
CVE-2024-37976P4MEDIUMCVSS 6.7fixed in 10.0.19044.50112024-10-08
CVE-2024-37976 [MEDIUM] CWE-190 CVE-2024-37976: Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
nvd
CVE-2024-37983P4MEDIUMCVSS 6.7fixed in 10.0.19044.50112024-10-08
CVE-2024-37983 [MEDIUM] CWE-822 CVE-2024-37983: Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
nvd
CVE-2025-26681P4MEDIUMCVSS 6.7fixed in 10.0.19044.57372025-04-08
CVE-2025-26681 [MEDIUM] CWE-416 CVE-2025-26681: Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-48807P4MEDIUMCVSS 6.7fixed in 10.0.19044.60932025-08-12
CVE-2025-48807 [MEDIUM] CWE-923 CVE-2025-48807: Improper restriction of communication channel to intended endpoints in Windows Hyper-V allows an aut
Improper restriction of communication channel to intended endpoints in Windows Hyper-V allows an authorized attacker to execute code locally.
nvd
CVE-2026-32170P4MEDIUMCVSS 6.7fixed in 10.0.19044.72912026-05-12
CVE-2026-32170 [MEDIUM] CWE-415 CVE-2026-32170: Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-21530P4MEDIUMCVSS 6.7fixed in 10.0.19044.72912026-05-12
CVE-2026-21530 [MEDIUM] CWE-415 CVE-2026-21530: Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-0390P4MEDIUMCVSS 6.7fixed in 10.0.19044.71842026-04-14
CVE-2026-0390 [MEDIUM] CWE-807 CVE-2026-0390: Reliance on untrusted inputs in a security decision in Windows Boot Loader allows an authorized atta
Reliance on untrusted inputs in a security decision in Windows Boot Loader allows an authorized attacker to bypass a security feature locally.
nvd
CVE-2026-21265P4MEDIUMCVSS 6.4fixed in 10.0.19044.68092026-01-13
CVE-2026-21265 [MEDIUM] CWE-1329 CVE-2026-21265: Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. These original certificate
Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. These original certificates are approaching expiration, and devices containing affected certificate versions must update them to maintain Secure Boot functionality and avoid compromising security by losing security fixes related to Windows boot manager or Secure Boot.
The ope
nvd
CVE-2025-48823P4MEDIUMCVSS 5.9fixed in 10.0.19044.60932025-07-08
CVE-2025-48823 [MEDIUM] CWE-310 CVE-2025-48823: Cryptographic issues in Windows Cryptographic Services allows an unauthorized attacker to disclose i
Cryptographic issues in Windows Cryptographic Services allows an unauthorized attacker to disclose information over a network.
nvd
CVE-2024-30033P4HIGHCVSS 7.0fixed in 10.0.19044.44122024-05-14
CVE-2024-30033 [HIGH] CWE-59 CVE-2024-30033: Windows Search Service Elevation of Privilege Vulnerability
Windows Search Service Elevation of Privilege Vulnerability
nvd
CVE-2025-21419P4HIGHCVSS 7.1fixed in 10.0.19044.54872025-02-11
CVE-2025-21419 [HIGH] CWE-59 CVE-2025-21419: Windows Setup Files Cleanup Elevation of Privilege Vulnerability
Windows Setup Files Cleanup Elevation of Privilege Vulnerability
nvd
CVE-2023-24023P4MEDIUMCVSS 6.8fixed in 10.0.19043.36932023-11-28
CVE-2023-24023 [MEDIUM] CVE-2023-24023: Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core
Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.
nvd
CVE-2024-21432P4HIGHCVSS 7.0fixed in 10.0.19044.41702024-03-12
CVE-2024-21432 [HIGH] CWE-59 CVE-2024-21432: Windows Update Stack Elevation of Privilege Vulnerability
Windows Update Stack Elevation of Privilege Vulnerability
nvd
CVE-2024-20657P4HIGHCVSS 7.0fixed in 10.0.19044.39302024-01-09
CVE-2024-20657 [HIGH] CWE-284 CVE-2024-20657: Windows Group Policy Elevation of Privilege Vulnerability
Windows Group Policy Elevation of Privilege Vulnerability
nvd
CVE-2024-38248P4HIGHCVSS 7.0fixed in 10.0.19044.48942024-09-10
CVE-2024-38248 [HIGH] CWE-416 CVE-2024-38248: Windows Storage Elevation of Privilege Vulnerability
Windows Storage Elevation of Privilege Vulnerability
nvd
CVE-2024-21445P4HIGHCVSS 7.0fixed in 10.0.19044.41702024-03-12
CVE-2024-21445 [HIGH] CWE-415 CVE-2024-21445: Windows USB Print Driver Elevation of Privilege Vulnerability
Windows USB Print Driver Elevation of Privilege Vulnerability
nvd
CVE-2025-21414P4HIGHCVSS 7.0fixed in 10.0.19044.54872025-02-11
CVE-2025-21414 [HIGH] CWE-122 CVE-2025-21414: Windows Core Messaging Elevation of Privileges Vulnerability
Windows Core Messaging Elevation of Privileges Vulnerability
nvd
CVE-2025-21184P4HIGHCVSS 7.0fixed in 10.0.19044.54872025-02-11
CVE-2025-21184 [HIGH] CWE-122 CVE-2025-21184: Windows Core Messaging Elevation of Privileges Vulnerability
Windows Core Messaging Elevation of Privileges Vulnerability
nvd
CVE-2025-21349P4MEDIUMCVSS 6.8fixed in 10.0.19044.54872025-02-11
CVE-2025-21349 [MEDIUM] CWE-287 CVE-2025-21349: Windows Remote Desktop Configuration Service Tampering Vulnerability
Windows Remote Desktop Configuration Service Tampering Vulnerability
nvd