~/products/microsoft/windows_10_21h2

pipeline liveDigest Docs

Microsoft Windows 10 21H2 vulnerabilities

1,830 known vulnerabilities affecting microsoft/windows_10_21h2.

Total CVEs

1,830

CISA KEV

87

actively exploited

Public exploits

54

Exploited in wild

97

Severity breakdown

CRITICAL44HIGH1306MEDIUM473LOW7

Vulnerabilities

SortPage 91 of 92

CVE-2023-36698P4MEDIUMCVSS 4.4fixed in 10.0.19041.35702023-10-10

CVE-2023-36698 [MEDIUM] CWE-362 CVE-2023-36698: Windows Kernel Security Feature Bypass Vulnerability Windows Kernel Security Feature Bypass Vulnerability

CVE-2025-49760P4LOWCVSS 3.5fixed in 10.0.19044.60932025-07-08

CVE-2025-49760 [LOW] CWE-73 CVE-2025-49760: External control of file name or path in Windows Storage allows an authorized attacker to perform sp External control of file name or path in Windows Storage allows an authorized attacker to perform spoofing over a network.

CVE-2025-21274P4MEDIUMCVSS 5.5fixed in 10.0.19044.53712025-01-14

CVE-2025-21274 [MEDIUM] CWE-59 CVE-2025-21274: Windows Event Tracing Denial of Service Vulnerability Windows Event Tracing Denial of Service Vulnerability

CVE-2024-26172P4MEDIUMCVSS 5.5fixed in 10.0.19044.42912024-04-09

CVE-2024-26172 [MEDIUM] CWE-125 CVE-2024-26172: Windows DWM Core Library Information Disclosure Vulnerability Windows DWM Core Library Information Disclosure Vulnerability

CVE-2025-21284P4MEDIUMCVSS 5.5fixed in 10.0.19044.53712025-01-14

CVE-2025-21284 [MEDIUM] CWE-20 CVE-2025-21284: Windows Virtual Trusted Platform Module Denial of Service Vulnerability Windows Virtual Trusted Platform Module Denial of Service Vulnerability

CVE-2025-21280P4MEDIUMCVSS 5.5fixed in 10.0.19044.53712025-01-14

CVE-2025-21280 [MEDIUM] CWE-20 CVE-2025-21280: Windows Virtual Trusted Platform Module Denial of Service Vulnerability Windows Virtual Trusted Platform Module Denial of Service Vulnerability

CVE-2024-26220P4MEDIUMCVSS 5.0fixed in 10.0.19044.42912024-04-09

CVE-2024-26220 [MEDIUM] CWE-908 CVE-2024-26220: Windows Mobile Hotspot Information Disclosure Vulnerability Windows Mobile Hotspot Information Disclosure Vulnerability

CVE-2023-32019P4MEDIUMCVSS 4.7fixed in 10.0.19044.30862023-06-14

CVE-2023-32019 [MEDIUM] CWE-668 CVE-2023-32019: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

CVE-2023-28276P4MEDIUMCVSS 4.4fixed in 10.0.19044.28462023-04-11

CVE-2023-28276 [MEDIUM] CVE-2023-28276: Windows Group Policy Security Feature Bypass Vulnerability Windows Group Policy Security Feature Bypass Vulnerability

CVE-2026-20936P4MEDIUMCVSS 4.3fixed in 10.0.19044.68092026-01-13

CVE-2026-20936 [MEDIUM] CWE-125 CVE-2026-20936: Out-of-bounds read in Windows NDIS allows an authorized attacker to disclose information with a phys Out-of-bounds read in Windows NDIS allows an authorized attacker to disclose information with a physical attack.

CVE-2023-24862P4MEDIUMCVSS 5.5fixed in 10.0.19044.27282023-03-14

CVE-2023-24862 [MEDIUM] CWE-125 CVE-2023-24862: Windows Secure Channel Denial of Service Vulnerability Windows Secure Channel Denial of Service Vulnerability

CVE-2024-35270P4MEDIUMCVSS 5.3fixed in 10.0.19044.46512024-07-09

CVE-2024-35270 [MEDIUM] CWE-400 CVE-2024-35270: Windows iSCSI Service Denial of Service Vulnerability Windows iSCSI Service Denial of Service Vulnerability

CVE-2023-24911P4MEDIUMCVSS 4.3fixed in 10.0.19044.27282023-03-14

CVE-2023-24911 [MEDIUM] CWE-191 CVE-2023-24911: Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

CVE-2024-49098P4MEDIUMCVSS 4.3fixed in 10.0.19044.52472024-12-12

CVE-2024-49098 [MEDIUM] CWE-125 CVE-2024-49098: Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

CVE-2024-49099P4MEDIUMCVSS 4.3fixed in 10.0.19044.52472024-12-12

CVE-2024-49099 [MEDIUM] CWE-125 CVE-2024-49099: Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

CVE-2024-49103P4MEDIUMCVSS 4.3fixed in 10.0.19044.52472024-12-12

CVE-2024-49103 [MEDIUM] CWE-125 CVE-2024-49103: Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

CVE-2025-24055P4MEDIUMCVSS 4.3fixed in 10.0.19044.56082025-03-11

CVE-2025-24055 [MEDIUM] CWE-125 CVE-2025-24055: Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack.

CVE-2024-49087P4MEDIUMCVSS 4.6fixed in 10.0.19044.52472024-12-12

CVE-2024-49087 [MEDIUM] CWE-20 CVE-2024-49087: Windows Mobile Broadband Driver Information Disclosure Vulnerability Windows Mobile Broadband Driver Information Disclosure Vulnerability

CVE-2024-20691P4MEDIUMCVSS 4.7fixed in 10.0.19044.39302024-01-09

CVE-2024-20691 [MEDIUM] CWE-125 CVE-2024-20691: Windows Themes Information Disclosure Vulnerability Windows Themes Information Disclosure Vulnerability

CVE-2025-24997P4MEDIUMCVSS 4.4fixed in 10.0.19044.56082025-03-11

CVE-2025-24997 [MEDIUM] CWE-476 CVE-2025-24997: Null pointer dereference in Windows Kernel Memory allows an authorized attacker to deny service loca Null pointer dereference in Windows Kernel Memory allows an authorized attacker to deny service locally.

← Previous91 / 92Next →

Microsoft Windows 10 21H2 vulnerabilities | cvebase