Vulnerabilities > Microsoft > Windows 10 1507 > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-13 | CVE-2025-29966 | Heap-based Buffer Overflow vulnerability in Microsoft products Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network. | 8.8 |
| 2025-05-13 | CVE-2025-29967 | Heap-based Buffer Overflow vulnerability in Microsoft products Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network. | 8.8 |
| 2025-05-13 | CVE-2025-29969 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Microsoft products Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attacker to execute code over a network. | 7.5 |
| 2025-05-13 | CVE-2025-29976 | Improper Privilege Management vulnerability in Microsoft products Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to elevate privileges locally. | 7.8 |
| 2025-04-08 | CVE-2025-29824 | Use After Free vulnerability in Microsoft products Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. | 7.8 |
| 2025-03-11 | CVE-2025-24983 | Use After Free vulnerability in Microsoft products Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally. | 7.0 |
| 2025-03-11 | CVE-2025-24993 | Heap-based Buffer Overflow vulnerability in Microsoft products Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally. | 7.8 |
| 2025-02-11 | CVE-2025-21184 | Unspecified vulnerability in Microsoft products Windows Core Messaging Elevation of Privileges Vulnerability | 7.0 |
| 2025-02-11 | CVE-2025-21190 | Unspecified vulnerability in Microsoft products Windows Telephony Service Remote Code Execution Vulnerability | 8.8 |
| 2025-02-11 | CVE-2025-21200 | Unspecified vulnerability in Microsoft products Windows Telephony Service Remote Code Execution Vulnerability | 8.8 |