Microsoft Windows 10 Version 20H2 vulnerabilities

1,260 known vulnerabilities affecting microsoft/windows_10_version_20h2.

Total CVEs

1,260

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL41HIGH947MEDIUM268LOW4

Vulnerabilities

Page 45 of 63

CVE-2021-36934HIGHCVSS 7.8KEVPoC≥ 10.0.0, < 10.0.19042.11652021-07-22

CVE-2021-36934 [HIGH] CVE-2021-36934: <p>An elevation of privilege vulnerability exists because of overly permissive Access Control Lists An elevation of privilege vulnerability exists because of overly permissive Access Control Lists (ACLs) on multiple system files, including the Security Accounts Manager (SAM) database. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data

nvd

CVE-2021-34481CRITICALCVSS 9.8≥ 10.0.0, < 10.0.19042.11652021-07-16

CVE-2021-34481 [CRITICAL] CWE-269 CVE-2021-34481: <p>A remote code execution vulnerability exists when the Windows Print Spooler service improperly pe A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user r

nvd

CVE-2021-34441HIGHCVSS 7.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34441 [HIGH] CVE-2021-34441: Microsoft Windows Media Foundation Remote Code Execution Vulnerability Microsoft Windows Media Foundation Remote Code Execution Vulnerability

nvd

CVE-2021-34461HIGHCVSS 7.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34461 [HIGH] CWE-269 CVE-2021-34461: Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability

nvd

CVE-2021-34460HIGHCVSS 7.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34460 [HIGH] CWE-269 CVE-2021-34460: Storage Spaces Controller Elevation of Privilege Vulnerability Storage Spaces Controller Elevation of Privilege Vulnerability

nvd

CVE-2021-34447HIGHCVSS 8.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34447 [HIGH] CVE-2021-34447: Windows MSHTML Platform Remote Code Execution Vulnerability Windows MSHTML Platform Remote Code Execution Vulnerability

nvd

CVE-2021-34449HIGHCVSS 7.0≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34449 [HIGH] Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability

cvelistv5

CVE-2021-34459HIGHCVSS 7.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34459 [HIGH] CWE-269 CVE-2021-34459: Windows AppContainer Elevation Of Privilege Vulnerability Windows AppContainer Elevation Of Privilege Vulnerability

nvd

CVE-2021-34462HIGHCVSS 7.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34462 [HIGH] CWE-362 CVE-2021-34462: Windows AppX Deployment Extensions Elevation of Privilege Vulnerability Windows AppX Deployment Extensions Elevation of Privilege Vulnerability

nvd

CVE-2021-34438HIGHCVSS 7.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34438 [HIGH] CVE-2021-34438: Windows Font Driver Host Remote Code Execution Vulnerability Windows Font Driver Host Remote Code Execution Vulnerability

nvd

CVE-2021-34455HIGHCVSS 7.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34455 [HIGH] CWE-269 CVE-2021-34455: Windows File History Service Elevation of Privilege Vulnerability Windows File History Service Elevation of Privilege Vulnerability

nvd

CVE-2021-34446HIGHCVSS 8.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34446 [HIGH] CVE-2021-34446: Windows HTML Platforms Security Feature Bypass Vulnerability Windows HTML Platforms Security Feature Bypass Vulnerability

nvd

CVE-2021-34445HIGHCVSS 7.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34445 [HIGH] CVE-2021-34445: Windows Remote Access Connection Manager Elevation of Privilege Vulnerability Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

nvd

CVE-2021-34456HIGHCVSS 7.8≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34456 [HIGH] CWE-269 CVE-2021-34456: Windows Remote Access Connection Manager Elevation of Privilege Vulnerability Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

nvd

CVE-2021-34448MEDIUMCVSS 6.8KEV≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34448 [MEDIUM] Scripting Engine Memory Corruption Vulnerability Scripting Engine Memory Corruption Vulnerability Scripting Engine Memory Corruption Vulnerability

cvelistv5

CVE-2021-34457MEDIUMCVSS 5.5≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34457 [MEDIUM] CVE-2021-34457: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2021-34454MEDIUMCVSS 5.5≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34454 [MEDIUM] CVE-2021-34454: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2021-34466MEDIUMCVSS 6.1≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34466 [MEDIUM] CWE-290 CVE-2021-34466: Windows Hello Security Feature Bypass Vulnerability Windows Hello Security Feature Bypass Vulnerability

nvd

CVE-2021-34440MEDIUMCVSS 5.5≥ 10.0.0, < 10.0.19042.11102021-07-16

CVE-2021-34440 [MEDIUM] GDI+ Information Disclosure Vulnerability GDI+ Information Disclosure Vulnerability GDI+ Information Disclosure Vulnerability

cvelistv5

CVE-2021-33757CRITICALCVSS 9.8≥ 10.0.0, < 10.0.19042.11102021-07-14

CVE-2021-33757 [CRITICAL] CVE-2021-33757: Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability Windows Security Account Manager Remote Protocol Security Feature Bypass Vulnerability

nvd

← Previous45 / 63Next →