Microsoft Windows 10 Version 21H2 vulnerabilities

2,449 known vulnerabilities affecting microsoft/windows_10_version_21h2.

Total CVEs
2,449
CISA KEV
95
actively exploited
Public exploits
36
Exploited in wild
75
Severity breakdown
CRITICAL60HIGH1758MEDIUM621LOW10

Vulnerabilities

Page 123 of 123
CVE-2021-43244MEDIUMCVSS 5.5≥ 10.0.0, < 10.0.19044.14152021-12-15
CVE-2021-43244 [MEDIUM] CVE-2021-43244: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability
nvd
CVE-2021-43235MEDIUMCVSS 5.5≥ 10.0.0, < 10.0.19044.14152021-12-15
CVE-2021-43235 [MEDIUM] CVE-2021-43235: Storage Spaces Controller Information Disclosure Vulnerability Storage Spaces Controller Information Disclosure Vulnerability
nvd
CVE-2021-43224MEDIUMCVSS 5.5≥ 10.0.0, < 10.0.19044.14152021-12-15
CVE-2021-43224 [MEDIUM] CVE-2021-43224: Windows Common Log File System Driver Information Disclosure Vulnerability Windows Common Log File System Driver Information Disclosure Vulnerability
nvd
CVE-2021-43216MEDIUMCVSS 6.5≥ 10.0.0, < 10.0.19044.14152021-12-15
CVE-2021-43216 [MEDIUM] CWE-668 CVE-2021-43216: Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability
nvd
CVE-2021-43227MEDIUMCVSS 5.5≥ 10.0.0, < 10.0.19044.14152021-12-15
CVE-2021-43227 [MEDIUM] CVE-2021-43227: Storage Spaces Controller Information Disclosure Vulnerability Storage Spaces Controller Information Disclosure Vulnerability
nvd
CVE-2021-43246MEDIUMCVSS 5.6≥ 10.0.0, < 10.0.19044.14152021-12-15
CVE-2021-43246 [MEDIUM] Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability
cvelistv5
CVE-2021-34527HIGHCVSS 8.8KEVPoC≥ 10.0.0, < 10.0.19044.14152021-07-02
CVE-2021-34527 [HIGH] CVE-2021-34527: <p>A remote code execution vulnerability exists when the Windows Print Spooler service improperly pe A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. UPDAT
nvd
CVE-2021-26414MEDIUMCVSS 4.8≥ 10.0.0, < 10.0.19044.27282021-06-08
CVE-2021-26414 [MEDIUM] Windows DCOM Server Security Feature Bypass Windows DCOM Server Security Feature Bypass Windows DCOM Server Security Feature Bypass
cvelistv5
CVE-2013-3900HIGHCVSS 8.8KEVvN/A2013-12-11
CVE-2013-3900 [HIGH] CWE-347 CVE-2013-3900: Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Upd Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the format is different from the original CVE published in 2013, ex
nvd
← Previous123 / 123