Msrc Windows 10 Version 1909 vulnerabilities
1,250 known vulnerabilities affecting msrc/windows_10_version_1909.
Total CVEs
1,250
CISA KEV
34
actively exploited
Public exploits
20
Exploited in wild
38
Severity breakdown
CRITICAL15HIGH936MEDIUM295LOW4
Vulnerabilities
Page 63 of 63
CVE-2019-1468HIGHCVSS 8.42019-12-10
CVE-2019-1468 [HIGH] Win32k Graphics Remote Code Execution Vulnerability
Win32k Graphics Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose acc
msrc
CVE-2019-1453HIGHCVSS 7.52019-12-10
CVE-2019-1453 [HIGH] Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability
Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability
Description: A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could cause the RDP service on the target system to stop responding.
To exploit this vulnerability
msrc
CVE-2019-1474MEDIUMCVSS 5.52019-12-10
CVE-2019-1474 [MEDIUM] Windows Kernel Information Disclosure Vulnerability
Windows Kernel Information Disclosure Vulnerability
Description: An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.
To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.
msrc
CVE-2019-1470MEDIUMCVSS 6.02019-12-10
CVE-2019-1470 [MEDIUM] Windows Hyper-V Information Disclosure Vulnerability
Windows Hyper-V Information Disclosure Vulnerability
Description: An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker on a guest operating system could run a specially crafted application that could cause the Hyper-V host operating system to disclos
msrc
CVE-2019-1466MEDIUMCVSS 5.52019-12-10
CVE-2019-1466 [MEDIUM] Windows GDI Information Disclosure Vulnerability
Windows GDI Information Disclosure Vulnerability
Description: An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.
There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a special
msrc
CVE-2019-1472MEDIUMCVSS 5.52019-12-10
CVE-2019-1472 [MEDIUM] Windows Kernel Information Disclosure Vulnerability
Windows Kernel Information Disclosure Vulnerability
Description: An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.
To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.
msrc
CVE-2019-1465MEDIUMCVSS 5.52019-12-10
CVE-2019-1465 [MEDIUM] Windows GDI Information Disclosure Vulnerability
Windows GDI Information Disclosure Vulnerability
Description: An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.
There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a special
msrc
CVE-2019-1467MEDIUMCVSS 5.52019-12-10
CVE-2019-1467 [MEDIUM] Windows GDI Information Disclosure Vulnerability
Windows GDI Information Disclosure Vulnerability
Description: An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.
There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a special
msrc
CVE-2019-1488LOWCVSS 3.32019-12-10
CVE-2019-1488 [LOW] Microsoft Defender Security Feature Bypass Vulnerability
Microsoft Defender Security Feature Bypass Vulnerability
Description: A security feature bypass vulnerability exists when Microsoft Defender improperly handles specific buffers. An attacker could exploit the vulnerability to trigger warnings and false positives when no threat is present.
To exploit the vulnerability, an attacker would first require execution permissions on the victim system.
The security update address
msrc
CVE-2018-0886HIGHCVSS 7.1PoC2018-03-13
CVE-2018-0886 [HIGH] CredSSP Remote Code Execution Vulnerability
CredSSP Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists in the Credential Security Support Provider protocol (CredSSP). An attacker who successfully exploited this vulnerability could relay user credentials and use them to execute code on the target system.
CredSSP is an authentication provider which processes authentication requests for other applications; any application which depend
msrc
← Previous63 / 63