Microsoft Windows 10 21H2 vulnerabilities

1,584 known vulnerabilities affecting microsoft/windows_10_21h2.

Total CVEs

1,584

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL39HIGH1118MEDIUM421LOW6

Vulnerabilities

Page 79 of 80

CVE-2023-21739HIGHCVSS 7.0fixed in 10.0.19044.24862023-01-10

CVE-2023-21739 [HIGH] CWE-591 CVE-2023-21739: Windows Bluetooth Driver Elevation of Privilege Vulnerability Windows Bluetooth Driver Elevation of Privilege Vulnerability

nvd

CVE-2022-44698MEDIUMCVSS 5.4KEVfixed in 10.0.19044.23642022-12-13

CVE-2022-44698 [MEDIUM] CVE-2022-44698: Windows SmartScreen Security Feature Bypass Vulnerability Windows SmartScreen Security Feature Bypass Vulnerability

nvd

CVE-2022-41128HIGHCVSS 8.8KEVfixed in 10.0.19044.22512022-11-09

CVE-2022-41128 [HIGH] CWE-787 CVE-2022-41128: Windows Scripting Languages Remote Code Execution Vulnerability Windows Scripting Languages Remote Code Execution Vulnerability

nvd

CVE-2022-41073HIGHCVSS 7.8KEVfixed in 10.0.19044.22512022-11-09

CVE-2022-41073 [HIGH] CWE-787 CVE-2022-41073: Windows Print Spooler Elevation of Privilege Vulnerability Windows Print Spooler Elevation of Privilege Vulnerability

nvd

CVE-2022-41125HIGHCVSS 7.8KEVfixed in 10.0.19044.22512022-11-09

CVE-2022-41125 [HIGH] CWE-787 CVE-2022-41125: Windows CNG Key Isolation Service Elevation of Privilege Vulnerability Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

nvd

CVE-2022-41049MEDIUMCVSS 5.4KEVfixed in 10.0.19044.22512022-11-09

CVE-2022-41049 [MEDIUM] CVE-2022-41049: Windows Mark of the Web Security Feature Bypass Vulnerability Windows Mark of the Web Security Feature Bypass Vulnerability

nvd

CVE-2022-41091MEDIUMCVSS 5.4KEVfixed in 10.0.19044.22512022-11-09

CVE-2022-41091 [MEDIUM] CWE-863 CVE-2022-41091: Windows Mark of the Web Security Feature Bypass Vulnerability Windows Mark of the Web Security Feature Bypass Vulnerability

nvd

CVE-2022-38028HIGHCVSS 7.8KEVfixed in 10.0.19044.21302022-10-11

CVE-2022-38028 [HIGH] CVE-2022-38028: Windows Print Spooler Elevation of Privilege Vulnerability Windows Print Spooler Elevation of Privilege Vulnerability

nvd

CVE-2022-41033HIGHCVSS 7.8KEVfixed in 10.0.19044.21302022-10-11

CVE-2022-41033 [HIGH] CWE-843 CVE-2022-41033: Windows COM+ Event System Service Elevation of Privilege Vulnerability Windows COM+ Event System Service Elevation of Privilege Vulnerability

nvd

CVE-2022-37969HIGHCVSS 7.8KEVfixed in 10.0.19044.20062022-09-13

CVE-2022-37969 [HIGH] CWE-787 CVE-2022-37969: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

nvd

CVE-2022-34713HIGHCVSS 7.8KEVfixed in 10.0.19044.18892022-08-09

CVE-2022-34713 [HIGH] CVE-2022-34713: Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability

nvd

CVE-2022-22047HIGHCVSS 7.8KEVfixed in 10.0.19044.18262022-07-12

CVE-2022-22047 [HIGH] CWE-426 CVE-2022-22047: Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

nvd

CVE-2022-30190HIGHCVSS 7.8KEVPoCfixed in 10.0.19044.17662022-06-01

CVE-2022-30190 [HIGH] CVE-2022-30190: A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calli A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, view, change, or delete data, or create new accounts in the cont

nvd

CVE-2022-26923HIGHCVSS 8.8KEVPoCfixed in 10.0.19044.17062022-05-10

CVE-2022-26923 [HIGH] CWE-295 CVE-2022-26923: Active Directory Domain Services Elevation of Privilege Vulnerability Active Directory Domain Services Elevation of Privilege Vulnerability

nvd

CVE-2022-26934MEDIUMCVSS 6.5fixed in 10.0.19044.17062022-05-10

CVE-2022-26934 [MEDIUM] CVE-2022-26934: Windows Graphics Component Information Disclosure Vulnerability Windows Graphics Component Information Disclosure Vulnerability

nvd

CVE-2022-26904HIGHCVSS 7.0KEVPoCfixed in 10.0.19044.16452022-04-15

CVE-2022-26904 [HIGH] CWE-362 CVE-2022-26904: Windows User Profile Service Elevation of Privilege Vulnerability Windows User Profile Service Elevation of Privilege Vulnerability

nvd

CVE-2022-24521HIGHCVSS 7.8KEVfixed in 10.0.19044.16452022-04-15

CVE-2022-24521 [HIGH] CWE-787 CVE-2022-24521: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

nvd

CVE-2022-21999HIGHCVSS 7.8KEVPoCfixed in 10.0.19044.15262022-02-09

CVE-2022-21999 [HIGH] CWE-22 CVE-2022-21999: Windows Print Spooler Elevation of Privilege Vulnerability Windows Print Spooler Elevation of Privilege Vulnerability

nvd

CVE-2022-22718HIGHCVSS 7.8KEVfixed in 10.0.19044.15262022-02-09

CVE-2022-22718 [HIGH] CVE-2022-22718: Windows Print Spooler Elevation of Privilege Vulnerability Windows Print Spooler Elevation of Privilege Vulnerability

nvd

CVE-2022-21971HIGHCVSS 7.8KEVfixed in 10.0.19044.15262022-02-09

CVE-2022-21971 [HIGH] CWE-824 CVE-2022-21971: Windows Runtime Remote Code Execution Vulnerability Windows Runtime Remote Code Execution Vulnerability

nvd

← Previous79 / 80Next →