Microsoft Windows 10 Version 21H2 vulnerabilities

2,449 known vulnerabilities affecting microsoft/windows_10_version_21h2.

Total CVEs

2,449

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL60HIGH1758MEDIUM621LOW10

Vulnerabilities

Page 44 of 123

CVE-2025-21215MEDIUMCVSS 4.6≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21215 [MEDIUM] CWE-125 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2025-21269MEDIUMCVSS 4.3≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21269 [MEDIUM] CWE-41 CVE-2025-21269: Windows HTML Platforms Security Feature Bypass Vulnerability Windows HTML Platforms Security Feature Bypass Vulnerability

nvd

CVE-2025-21211MEDIUMCVSS 6.8≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21211 [MEDIUM] CWE-693 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2025-21316MEDIUMCVSS 5.5≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21316 [MEDIUM] CWE-532 CVE-2025-21316: Windows Kernel Memory Information Disclosure Vulnerability Windows Kernel Memory Information Disclosure Vulnerability

nvd

CVE-2025-21265MEDIUMCVSS 6.6≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21265 [MEDIUM] CWE-125 CVE-2025-21265: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21210MEDIUMCVSS 4.2≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21210 [MEDIUM] CWE-636 CVE-2025-21210: Windows BitLocker Information Disclosure Vulnerability Windows BitLocker Information Disclosure Vulnerability

nvd

CVE-2025-21261MEDIUMCVSS 6.6≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21261 [MEDIUM] CWE-125 CVE-2025-21261: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21219MEDIUMCVSS 4.3≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21219 [MEDIUM] CWE-41 CVE-2025-21219: MapUrlToZone Security Feature Bypass Vulnerability MapUrlToZone Security Feature Bypass Vulnerability

nvd

CVE-2025-21268MEDIUMCVSS 4.3≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21268 [MEDIUM] CWE-41 CVE-2025-21268: MapUrlToZone Security Feature Bypass Vulnerability MapUrlToZone Security Feature Bypass Vulnerability

nvd

CVE-2025-21217MEDIUMCVSS 6.5≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21217 [MEDIUM] CWE-693 Windows NTLM Spoofing Vulnerability Windows NTLM Spoofing Vulnerability Windows NTLM Spoofing Vulnerability

cvelistv5

CVE-2025-21310MEDIUMCVSS 6.6≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21310 [MEDIUM] CWE-125 CVE-2025-21310: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21226MEDIUMCVSS 6.6≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21226 [MEDIUM] CWE-125 CVE-2025-21226: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21288MEDIUMCVSS 6.5≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21288 [MEDIUM] CWE-908 CVE-2025-21288: Windows COM Server Information Disclosure Vulnerability Windows COM Server Information Disclosure Vulnerability

nvd

CVE-2025-21312LOWCVSS 2.4≥ 10.0.19044.0, < 10.0.19044.53712025-01-14

CVE-2025-21312 [LOW] CWE-908 CVE-2025-21312: Windows Smart Card Reader Information Disclosure Vulnerability Windows Smart Card Reader Information Disclosure Vulnerability

nvd

CVE-2024-49112CRITICALCVSS 9.8≥ 10.0.19043.0, < 10.0.19044.52472024-12-12

CVE-2024-49112 [CRITICAL] CWE-190 CVE-2024-49112: Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

nvd

CVE-2024-49122HIGHCVSS 8.1≥ 10.0.19043.0, < 10.0.19044.52472024-12-12

CVE-2024-49122 [HIGH] CWE-416 CVE-2024-49122: Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

nvd

CVE-2024-49105HIGHCVSS 8.4≥ 10.0.19043.0, < 10.0.19044.52472024-12-12

CVE-2024-49105 [HIGH] CWE-284 CVE-2024-49105: Remote Desktop Client Remote Code Execution Vulnerability Remote Desktop Client Remote Code Execution Vulnerability

nvd

CVE-2024-49080HIGHCVSS 8.8≥ 10.0.19043.0, < 10.0.19044.52472024-12-12

CVE-2024-49080 [HIGH] CWE-122 CVE-2024-49080: Windows IP Routing Management Snapin Remote Code Execution Vulnerability Windows IP Routing Management Snapin Remote Code Execution Vulnerability

nvd

CVE-2024-49088HIGHCVSS 7.8≥ 10.0.19043.0, < 10.0.19044.52472024-12-12

CVE-2024-49088 [HIGH] CWE-126 CVE-2024-49088: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-49090HIGHCVSS 7.8≥ 10.0.19043.0, < 10.0.19044.52472024-12-12

CVE-2024-49090 [HIGH] CWE-822 CVE-2024-49090: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

nvd

← Previous44 / 123Next →