~/products/microsoft/windows_10_21h2

pipeline liveDigest Docs

Microsoft Windows 10 21H2 vulnerabilities

1,830 known vulnerabilities affecting microsoft/windows_10_21h2.

Total CVEs

1,830

CISA KEV

87

actively exploited

Public exploits

54

Exploited in wild

97

Severity breakdown

CRITICAL44HIGH1306MEDIUM473LOW7

Vulnerabilities

SortPage 90 of 92

CVE-2024-20694P4MEDIUMCVSS 5.5fixed in 10.0.19044.39302024-01-09

CVE-2024-20694 [MEDIUM] CWE-908 CVE-2024-20694: Windows CoreMessaging Information Disclosure Vulnerability Windows CoreMessaging Information Disclosure Vulnerability

CVE-2024-21311P4MEDIUMCVSS 5.5fixed in 10.0.19044.39302024-01-09

CVE-2024-21311 [MEDIUM] CWE-125 CVE-2024-21311: Windows Cryptographic Services Information Disclosure Vulnerability Windows Cryptographic Services Information Disclosure Vulnerability

CVE-2023-36404P4MEDIUMCVSS 5.5fixed in 10.0.19041.36932023-11-14

CVE-2023-36404 [MEDIUM] CWE-284 CVE-2023-36404: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

CVE-2023-32041P4MEDIUMCVSS 5.5fixed in 10.0.19041.32082023-07-11

CVE-2023-32041 [MEDIUM] CWE-908 CVE-2023-32041: Windows Update Orchestrator Service Information Disclosure Vulnerability Windows Update Orchestrator Service Information Disclosure Vulnerability

CVE-2024-38151P4MEDIUMCVSS 5.5fixed in 10.0.19044.47802024-08-13

CVE-2024-38151 [MEDIUM] CWE-125 CVE-2024-38151: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

CVE-2025-21374P4MEDIUMCVSS 5.5fixed in 10.0.19044.53712025-01-14

CVE-2025-21374 [MEDIUM] CWE-125 CVE-2025-21374: Windows CSC Service Information Disclosure Vulnerability Windows CSC Service Information Disclosure Vulnerability

CVE-2023-33174P4MEDIUMCVSS 5.5fixed in 10.0.19041.32082023-07-11

CVE-2023-33174 [MEDIUM] CWE-200 CVE-2023-33174: Windows Cryptographic Information Disclosure Vulnerability Windows Cryptographic Information Disclosure Vulnerability

CVE-2023-24945P4MEDIUMCVSS 5.5fixed in 10.0.19044.29652023-05-09

CVE-2023-24945 [MEDIUM] CWE-190 CVE-2023-24945: Windows iSCSI Target Service Information Disclosure Vulnerability Windows iSCSI Target Service Information Disclosure Vulnerability

CVE-2023-35326P4MEDIUMCVSS 5.5fixed in 10.0.19041.32082023-07-11

CVE-2023-35326 [MEDIUM] CWE-908 CVE-2023-35326: Windows CDP User Components Information Disclosure Vulnerability Windows CDP User Components Information Disclosure Vulnerability

CVE-2026-20928P4MEDIUMCVSS 4.6fixed in 10.0.19044.71842026-04-14

CVE-2026-20928 [MEDIUM] CWE-212 CVE-2026-20928: Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack.

CVE-2023-32016P4MEDIUMCVSS 5.5fixed in 10.0.19044.30862023-06-14

CVE-2023-32016 [MEDIUM] CWE-908 CVE-2023-32016: Windows Installer Information Disclosure Vulnerability Windows Installer Information Disclosure Vulnerability

CVE-2023-28253P4MEDIUMCVSS 5.5fixed in 10.0.19044.28462023-04-11

CVE-2023-28253 [MEDIUM] CVE-2023-28253: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

CVE-2025-59198P4MEDIUMCVSS 5.0fixed in 10.0.19044.64562025-10-14

CVE-2025-59198 [MEDIUM] CWE-20 CVE-2025-59198: Improper input validation in Microsoft Windows Search Component allows an authorized attacker to den Improper input validation in Microsoft Windows Search Component allows an authorized attacker to deny service locally.

CVE-2023-36722P4MEDIUMCVSS 4.4fixed in 10.0.19041.35702023-10-10

CVE-2023-36722 [MEDIUM] CWE-284 CVE-2023-36722: Active Directory Domain Services Information Disclosure Vulnerability Active Directory Domain Services Information Disclosure Vulnerability

CVE-2024-38143P4MEDIUMCVSS 4.2fixed in 10.0.19044.47802024-08-13

CVE-2024-38143 [MEDIUM] CWE-306 CVE-2024-38143: Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability

CVE-2026-20828P4MEDIUMCVSS 4.6fixed in 10.0.19044.68092026-01-13

CVE-2026-20828 [MEDIUM] CWE-125 CVE-2026-20828: Out-of-bounds read in Windows Internet Connection Sharing (ICS) allows an unauthorized attacker to d Out-of-bounds read in Windows Internet Connection Sharing (ICS) allows an unauthorized attacker to disclose information with a physical attack.

CVE-2025-59294P4MEDIUMCVSS 4.6fixed in 10.0.19044.64562025-10-14

CVE-2025-59294 [MEDIUM] CWE-200 CVE-2025-59294: Exposure of sensitive information to an unauthorized actor in Windows Taskbar Live allows an unautho Exposure of sensitive information to an unauthorized actor in Windows Taskbar Live allows an unauthorized attacker to disclose information with a physical attack.

CVE-2025-21278P4MEDIUMCVSS 5.5fixed in 10.0.19044.53712025-01-14

CVE-2025-21278 [MEDIUM] CWE-362 CVE-2025-21278: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

CVE-2024-30071P4MEDIUMCVSS 4.7fixed in 10.0.19044.46512024-07-09

CVE-2024-30071 [MEDIUM] CWE-126 CVE-2024-30071: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

CVE-2024-30069P4MEDIUMCVSS 4.7fixed in 10.0.19044.45292024-06-11

CVE-2024-30069 [MEDIUM] CWE-126 CVE-2024-30069: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

← Previous90 / 92Next →

Microsoft Windows 10 21H2 vulnerabilities | cvebase