Home/Product/microsoft windows 10 21h1
Product

microsoft windows 10 21h1

83 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-38257
< 10.0.19044.4894
Microsoft AllJoyn API Information Disclosure Vulnerability
7.5HIGH
 CVE-2024-38256
< 10.0.19044.4894
Windows Kernel-Mode Driver Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2024-38254
< 10.0.19044.4894
Windows Authentication Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2024-38252
< 10.0.19044.4894
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2024-38250
< 10.0.19044.4894
Windows Graphics Component Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2024-38119
< 10.0.19044.4894
Windows Network Address Translation (NAT) Remote Code Execution Vulnerability
7.5HIGH
 CVE-2024-38046
< 10.0.19044.4894
PowerShell Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2024-30080
< 10.0.19043.4529
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
9.8CRITICAL
 CVE-2024-21420
< 10.0.19044.4046
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
8.8HIGH
 CVE-2024-21357
< 10.0.19044.4046
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
8.1HIGH
 CVE-2022-44684
< 10.0.19043.2364
Windows Local Session Manager (LSM) Denial of Service Vulnerability
6.5MEDIUM
 CVE-2023-36602
< 10.0.19041.3570
Windows TCP/IP Denial of Service Vulnerability
7.5HIGH
 CVE-2023-36598
< 10.0.19041.3570
Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability
7.8HIGH
 CVE-2023-36596
< 10.0.19041.3570
Remote Procedure Call Information Disclosure Vulnerability
7.5HIGH
 CVE-2023-36594
< 10.0.19041.3570
Windows Graphics Component Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2023-36585
< 10.0.19041.3570
Windows upnphost.dll Denial of Service Vulnerability
7.5HIGH
 CVE-2023-36584
< 10.0.19041.3570
Windows Mark of the Web Security Feature Bypass Vulnerability
5.4MEDIUM
 CVE-2023-36577
< 10.0.19041.3570
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
8.8HIGH
 CVE-2023-36576
< 10.0.19041.3570
Windows Kernel Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2023-36567
< 10.0.19041.3570
Windows Deployment Services Information Disclosure Vulnerability
7.5HIGH
 CVE-2023-36436
< 10.0.19041.3570
Windows MSHTML Platform Remote Code Execution Vulnerability
7.8HIGH
 CVE-2022-35759
< 10.0.19043.1889
Windows Local Security Authority (LSA) Denial of Service Vulnerability
6.5MEDIUM
 CVE-2022-35758
< 10.0.19043.1889
Windows Kernel Memory Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2022-35757
< 10.0.19043.1889
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
7.3HIGH
 CVE-2022-35756
< 10.0.19043.1889
Windows Kerberos Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-35755
< 10.0.19043.1889
Windows Print Spooler Elevation of Privilege Vulnerability
7.3HIGH
 CVE-2022-35754
< 10.0.19043.1889
Unified Write Filter Elevation of Privilege Vulnerability
6.7MEDIUM
 CVE-2022-35753
< 10.0.19043.1889
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
8.1HIGH
 CVE-2022-35752
< 10.0.19043.1889
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
8.1HIGH
 CVE-2022-35750
< 10.0.19043.1889
Win32k Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-35749
< 10.0.19043.1889
Windows Digital Media Receiver Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-35747
< 10.0.19043.1889
Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability
5.9MEDIUM
 CVE-2022-35746
< 10.0.19043.1889
Windows Digital Media Receiver Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-35745
< 10.0.19043.1889
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
8.1HIGH
 CVE-2022-35744
< 10.0.19043.1889
Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability
9.8CRITICAL
 CVE-2022-35743
< 10.0.19043.1889
Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
7.8HIGH
 CVE-2023-21712
< 10.0.19043.2251
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
8.1HIGH
 CVE-2022-44698
< 10.0.19043.2364
Windows SmartScreen Security Feature Bypass Vulnerability
5.4MEDIUM
 CVE-2022-41094
all versions
Windows Hyper-V Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-41128
< 10.0.19043.2251
Windows Scripting Languages Remote Code Execution Vulnerability
8.8HIGH
 CVE-2022-41125
< 10.0.19043.2251
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-41091
< 10.0.19043.2251
Windows Mark of the Web Security Feature Bypass Vulnerability
5.4MEDIUM
 CVE-2022-41073
< 10.0.19043.2251
Windows Print Spooler Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-41049
< 10.0.19043.2251
Windows Mark of the Web Security Feature Bypass Vulnerability
5.4MEDIUM
 CVE-2022-41033
< 10.0.19043.2130
Windows COM+ Event System Service Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-38028
< 10.0.19043.2130
Windows Print Spooler Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-37969
< 10.0.19043.2006
Windows Common Log File System Driver Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-34713
< 10.0.19043.1889
Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability
7.8HIGH
 CVE-2022-22047
< 10.0.19043.1826
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-30190
< 10.0.19043.1766
A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. A
7.8HIGH
 CVE-2022-26934
< 10.0.19043.1706
Windows Graphics Component Information Disclosure Vulnerability
6.5MEDIUM
 CVE-2022-26925
< 10.0.19043.1706
Windows LSA Spoofing Vulnerability
8.1HIGH
 CVE-2022-26923
< 10.0.19043.1706
Active Directory Domain Services Elevation of Privilege Vulnerability
8.8HIGH
 CVE-2022-26904
< 10.0.19043.1645
Windows User Profile Service Elevation of Privilege Vulnerability
7.0HIGH
 CVE-2022-24521
< 10.0.19043.1645
Windows Common Log File System Driver Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-22718
< 10.0.19043.1526
Windows Print Spooler Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-21999
< 10.0.19043.1526
Windows Print Spooler Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2022-21971
< 10.0.19043.1526
Windows Runtime Remote Code Execution Vulnerability
7.8HIGH
 CVE-2022-21919
< 10.0.19043.1466
Windows User Profile Service Elevation of Privilege Vulnerability
7.0HIGH
 CVE-2022-21882
< 10.0.19043.1466
Win32k Elevation of Privilege Vulnerability
7.0HIGH
 CVE-2022-21871
< 10.0.19043.1466
Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability
7.0HIGH
 CVE-2021-43226
< 10.0.19043.1415
Windows Common Log File System Driver Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-41379
< 10.0.19043.1348
Windows Installer Elevation of Privilege Vulnerability
5.5MEDIUM
 CVE-2021-41357
< 10.0.19043.1288
Win32k Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-40450
< 10.0.19043.1288
Win32k Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-40449
< 10.0.19041.1288
Win32k Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-40444
< 10.0.19043.1237
<p>Microsoft is investigating reports of a remote code execution vulnerability in MSHTML that affects Microsoft Windows. Microsoft
8.8HIGH
 CVE-2021-36955
< 10.0.19043.1237
Windows Common Log File System Driver Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-36948
< 10.0.19043.1165
Windows Update Medic Service Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-34486
< 10.0.19043.1165
Windows Event Tracing Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-34484
< 10.0.19043.1165
Windows User Profile Service Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-36934
< 10.0.19043.1165
<p>An elevation of privilege vulnerability exists because of overly permissive Access Control Lists (ACLs) on multiple system file
7.8HIGH
 CVE-2021-34448
< 10.0.19043.1110
Scripting Engine Memory Corruption Vulnerability
6.8MEDIUM
 CVE-2021-33771
< 10.0.19043.1110
Windows Kernel Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-31979
< 10.0.19043.1110
Windows Kernel Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-33742
< 10.0.19043.1052
Windows MSHTML Platform Remote Code Execution Vulnerability
7.5HIGH
 CVE-2021-33739
< 10.0.19043.1052
Microsoft DWM Core Library Elevation of Privilege Vulnerability
8.4HIGH
 CVE-2021-31956
< 10.0.19043.1052
Windows NTFS Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2021-31955
< 10.0.19043.1052
Windows Kernel Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2021-31201
< 10.0.19043.1052
Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability
5.2MEDIUM
 CVE-2021-31199
< 10.0.19043.1052
Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability
5.2MEDIUM
 CVE-2021-1675
< 10.0.19043.1052
Windows Print Spooler Remote Code Execution Vulnerability
7.8HIGH
 CVE-2013-3900
all versions
Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update the Securi
5.5MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin