Microsoft Windows 10 Version 22H2 vulnerabilities

1,950 known vulnerabilities affecting microsoft/windows_10_version_22h2.

Total CVEs
1,950
CISA KEV
78
actively exploited
Public exploits
29
Exploited in wild
51
Severity breakdown
CRITICAL44HIGH1375MEDIUM523LOW8

Vulnerabilities

Page 98 of 98
CVE-2022-41049MEDIUMCVSS 5.4KEV≥ 10.0.19045.0, < 10.0.19045.22512022-11-09
CVE-2022-41049 [MEDIUM] CVE-2022-41049: Windows Mark of the Web Security Feature Bypass Vulnerability Windows Mark of the Web Security Feature Bypass Vulnerability
nvd
CVE-2022-41055MEDIUMCVSS 5.5≥ 10.0.19045.0, < 10.0.19045.22512022-11-09
CVE-2022-41055 [MEDIUM] CVE-2022-41055: Windows Human Interface Device Information Disclosure Vulnerability Windows Human Interface Device Information Disclosure Vulnerability
nvd
CVE-2022-41097MEDIUMCVSS 6.5≥ 10.0.19045.0, < 10.0.19045.22512022-11-09
CVE-2022-41097 [MEDIUM] CVE-2022-41097: Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability
nvd
CVE-2022-38015MEDIUMCVSS 6.5≥ 10.0.19045.0, < 10.0.19045.22512022-11-09
CVE-2022-38015 [MEDIUM] Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability
cvelistv5
CVE-2022-41090MEDIUMCVSS 5.9≥ 10.0.19045.0, < 10.0.19045.22512022-11-09
CVE-2022-41090 [MEDIUM] CWE-362 CVE-2022-41090: Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability
nvd
CVE-2022-41098MEDIUMCVSS 5.5≥ 10.0.19045.0, < 10.0.19045.22512022-11-09
CVE-2022-41098 [MEDIUM] Windows GDI+ Information Disclosure Vulnerability Windows GDI+ Information Disclosure Vulnerability Windows GDI+ Information Disclosure Vulnerability
cvelistv5
CVE-2022-41091MEDIUMCVSS 5.4KEV≥ 10.0.19045.0, < 10.0.19045.22512022-11-09
CVE-2022-41091 [MEDIUM] CWE-863 CVE-2022-41091: Windows Mark of the Web Security Feature Bypass Vulnerability Windows Mark of the Web Security Feature Bypass Vulnerability
nvd
CVE-2022-26928HIGHCVSS 7.0Exploited≥ 10.0.19045.0, < 10.0.19045.29652022-09-13
CVE-2022-26928 [HIGH] CWE-362 CVE-2022-26928: Windows Photo Import API Elevation of Privilege Vulnerability Windows Photo Import API Elevation of Privilege Vulnerability
nvd
CVE-2021-34527HIGHCVSS 8.8KEVPoC≥ 10.0.0, < 10.0.19045.22512021-07-02
CVE-2021-34527 [HIGH] CVE-2021-34527: <p>A remote code execution vulnerability exists when the Windows Print Spooler service improperly pe A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. UPDAT
nvd
CVE-2013-3900HIGHCVSS 8.8KEVvN/A2013-12-11
CVE-2013-3900 [HIGH] CWE-347 CVE-2013-3900: Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Upd Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the format is different from the original CVE published in 2013, ex
nvd
← Previous98 / 98