~/products/microsoft/windows_10_21h2

pipeline liveDigest Docs

Microsoft Windows 10 21H2 vulnerabilities

1,830 known vulnerabilities affecting microsoft/windows_10_21h2.

Total CVEs

1,830

CISA KEV

87

actively exploited

Public exploits

54

Exploited in wild

97

Severity breakdown

CRITICAL44HIGH1306MEDIUM473LOW7

Vulnerabilities

SortPage 92 of 92

CVE-2024-21304P4MEDIUMCVSS 4.1fixed in 10.0.19044.40462024-02-13

CVE-2024-21304 [MEDIUM] CWE-20 CVE-2024-21304: Trusted Compute Base Elevation of Privilege Vulnerability Trusted Compute Base Elevation of Privilege Vulnerability

CVE-2024-21340P4MEDIUMCVSS 4.6fixed in 10.0.19044.40462024-02-13

CVE-2024-21340 [MEDIUM] CWE-126 CVE-2024-21340: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

CVE-2025-29839P4MEDIUMCVSS 4.0fixed in 10.0.19044.58542025-05-13

CVE-2025-29839 [MEDIUM] CWE-125 CVE-2025-29839: Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information lo Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally.

CVE-2026-45642P4LOWCVSS 3.9fixed in 10.0.19044.74172026-06-09

CVE-2026-45642 [LOW] CWE-20 CVE-2026-45642: Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Servi Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Service allows an authorized attacker to perform spoofing with a physical attack.

CVE-2025-59280P4LOWCVSS 3.1fixed in 10.0.19044.64562025-10-14

CVE-2025-59280 [LOW] CWE-287 CVE-2025-59280: Improper authentication in Windows SMB Client allows an unauthorized attacker to perform tampering o Improper authentication in Windows SMB Client allows an unauthorized attacker to perform tampering over a network.

CVE-2025-21210P4MEDIUMCVSS 4.2fixed in 10.0.19044.53712025-01-14

CVE-2025-21210 [MEDIUM] CWE-636 CVE-2025-21210: Windows BitLocker Information Disclosure Vulnerability Windows BitLocker Information Disclosure Vulnerability

CVE-2025-21214P4MEDIUMCVSS 4.2fixed in 10.0.19044.53712025-01-14

CVE-2025-21214 [MEDIUM] CWE-200 CVE-2025-21214: Windows BitLocker Information Disclosure Vulnerability Windows BitLocker Information Disclosure Vulnerability

CVE-2025-55695P4LOWCVSS 3.3fixed in 10.0.19044.64562025-10-14

CVE-2025-55695 [LOW] CWE-125 CVE-2025-55695: Out-of-bounds read in Windows WLAN Auto Config Service allows an authorized attacker to disclose inf Out-of-bounds read in Windows WLAN Auto Config Service allows an authorized attacker to disclose information locally.

CVE-2024-26217P4LOWCVSS 3.3fixed in 10.0.19044.44122024-04-09

CVE-2024-26217 [LOW] CWE-125 CVE-2024-26217: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

CVE-2025-21312P4LOWCVSS 2.4fixed in 10.0.19044.53712025-01-14

CVE-2025-21312 [LOW] CWE-908 CVE-2025-21312: Windows Smart Card Reader Information Disclosure Vulnerability Windows Smart Card Reader Information Disclosure Vulnerability

← Previous92 / 92

Microsoft Windows 10 21H2 vulnerabilities | cvebase