Microsoft Windows 10 21H2 vulnerabilities
1,827 known vulnerabilities affecting microsoft/windows_10_21h2.
Total CVEs
1,827
CISA KEV
87
actively exploited
Public exploits
54
Exploited in wild
97
Severity breakdown
CRITICAL44HIGH1303MEDIUM473LOW7
Vulnerabilities
Page 75 of 92
CVE-2026-45658P4MEDIUMCVSS 6.8fixed in 10.0.19044.74172026-06-09
CVE-2026-45658 [MEDIUM] CWE-284 CVE-2026-45658: Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a securi
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
nvd
CVE-2025-29954P4MEDIUMCVSS 5.9fixed in 10.0.19044.58542025-05-13
CVE-2025-29954 [MEDIUM] CWE-400 CVE-2025-29954: Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.
nvd
CVE-2024-30034P4MEDIUMCVSS 5.5fixed in 10.0.19044.44122024-05-14
CVE-2024-30034 [MEDIUM] CWE-843 CVE-2024-30034: Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
Windows Cloud Files Mini Filter Driver Information Disclosure Vulnerability
nvd
CVE-2025-29956P4MEDIUMCVSS 5.4fixed in 10.0.19044.58542025-05-13
CVE-2025-29956 [MEDIUM] CWE-126 CVE-2025-29956: Buffer over-read in Windows SMB allows an authorized attacker to disclose information over a network
Buffer over-read in Windows SMB allows an authorized attacker to disclose information over a network.
nvd
CVE-2025-62567P4MEDIUMCVSS 5.3fixed in 10.0.19044.66912025-12-09
CVE-2025-62567 [MEDIUM] CWE-191 CVE-2025-62567: Integer underflow (wrap or wraparound) in Windows Hyper-V allows an authorized attacker to deny serv
Integer underflow (wrap or wraparound) in Windows Hyper-V allows an authorized attacker to deny service over a network.
nvd
CVE-2026-25185P4MEDIUMCVSS 5.3fixed in 10.0.19044.70582026-03-10
CVE-2026-25185 [MEDIUM] CWE-200 CVE-2026-25185: Exposure of sensitive information to an unauthorized actor in Windows Shell Link Processing allows a
Exposure of sensitive information to an unauthorized actor in Windows Shell Link Processing allows an unauthorized attacker to perform spoofing over a network.
nvd
CVE-2023-28267P4MEDIUMCVSS 6.5fixed in 10.0.19044.28462023-04-11
CVE-2023-28267 [MEDIUM] CWE-126 CVE-2023-28267: Remote Desktop Protocol Client Information Disclosure Vulnerability
Remote Desktop Protocol Client Information Disclosure Vulnerability
nvd
CVE-2023-28224P4HIGHCVSS 7.1fixed in 10.0.19044.28462023-04-11
CVE-2023-28224 [HIGH] CWE-591 CVE-2023-28224: Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability
Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability
nvd
CVE-2023-23407P4HIGHCVSS 7.1fixed in 10.0.19044.27282023-03-14
CVE-2023-23407 [HIGH] CWE-591 CVE-2023-23407: Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability
Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability
nvd
CVE-2023-23414P4HIGHCVSS 7.1fixed in 10.0.19044.27282023-03-14
CVE-2023-23414 [HIGH] CWE-591 CVE-2023-23414: Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability
Windows Point-to-Point Protocol over Ethernet (PPPoE) Remote Code Execution Vulnerability
nvd
CVE-2024-43534P4MEDIUMCVSS 6.5fixed in 10.0.19044.50112024-10-08
CVE-2024-43534 [MEDIUM] CWE-125 CVE-2024-43534: Windows Graphics Component Information Disclosure Vulnerability
Windows Graphics Component Information Disclosure Vulnerability
nvd
CVE-2025-50158P4HIGHCVSS 7.0fixed in 10.0.19044.62162025-08-12
CVE-2025-50158 [HIGH] CWE-367 CVE-2025-50158: Time-of-check time-of-use (toctou) race condition in Windows NTFS allows an unauthorized attacker to
Time-of-check time-of-use (toctou) race condition in Windows NTFS allows an unauthorized attacker to disclose information locally.
nvd
CVE-2023-35329P4MEDIUMCVSS 6.5fixed in 10.0.19041.32082023-07-11
CVE-2023-35329 [MEDIUM] CWE-400 CVE-2023-35329: Windows Authentication Denial of Service Vulnerability
Windows Authentication Denial of Service Vulnerability
nvd
CVE-2023-23385P4HIGHCVSS 7.0fixed in 10.0.19044.27282023-03-14
CVE-2023-23385 [HIGH] CWE-190 CVE-2023-23385: Windows Point-to-Point Protocol over Ethernet (PPPoE) Elevation of Privilege Vulnerability
Windows Point-to-Point Protocol over Ethernet (PPPoE) Elevation of Privilege Vulnerability
nvd
CVE-2025-48804P4MEDIUMCVSS 6.8fixed in 10.0.19044.60932025-07-08
CVE-2025-48804 [MEDIUM] CWE-349 CVE-2025-48804: Acceptance of extraneous untrusted data with trusted data in Windows BitLocker allows an unauthorize
Acceptance of extraneous untrusted data with trusted data in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
nvd
CVE-2025-48818P4MEDIUMCVSS 6.8fixed in 10.0.19044.60932025-07-08
CVE-2025-48818 [MEDIUM] CWE-367 CVE-2025-48818: Time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized attack
Time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
nvd
CVE-2025-48001P4MEDIUMCVSS 6.8fixed in 10.0.19044.60932025-07-08
CVE-2025-48001 [MEDIUM] CWE-367 CVE-2025-48001: Time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized attack
Time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
nvd
CVE-2022-35754P4MEDIUMCVSS 6.7fixed in 10.0.19042.18892023-05-31
CVE-2022-35754 [MEDIUM] CVE-2022-35754: Unified Write Filter Elevation of Privilege Vulnerability
Unified Write Filter Elevation of Privilege Vulnerability
nvd
CVE-2024-21430P4MEDIUMCVSS 6.4fixed in 10.0.19044.41702024-03-12
CVE-2024-21430 [MEDIUM] CWE-125 CVE-2024-21430: Windows USB Attached SCSI (UAS) Protocol Remote Code Execution Vulnerability
Windows USB Attached SCSI (UAS) Protocol Remote Code Execution Vulnerability
nvd
CVE-2024-21339P4MEDIUMCVSS 6.4fixed in 10.0.19044.40462024-02-13
CVE-2024-21339 [MEDIUM] CWE-416 CVE-2024-21339: Windows USB Generic Parent Driver Remote Code Execution Vulnerability
Windows USB Generic Parent Driver Remote Code Execution Vulnerability
nvd