10.0.10240.20915

DATE	CVE	VULNERABILITY TITLE	RISK
2025-04-08	CVE-2025-29824	Use After Free vulnerability in Microsoft products Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. local low complexity microsoft CWE-416	7.8
2025-03-11	CVE-2025-24054	Unspecified vulnerability in Microsoft products External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network. network low complexity microsoft	5.4
2025-03-11	CVE-2025-24983	Use After Free vulnerability in Microsoft products Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally. local high complexity microsoft CWE-416	7.0
2025-03-11	CVE-2025-24984	Information Exposure Through Log Files vulnerability in Microsoft products Insertion of sensitive information into log file in Windows NTFS allows an unauthorized attacker to disclose information with a physical attack. low complexity microsoft CWE-532	4.6
2025-03-11	CVE-2025-24991	Out-of-bounds Read vulnerability in Microsoft products Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally. local low complexity microsoft CWE-125	5.5
2025-03-11	CVE-2025-24993	Heap-based Buffer Overflow vulnerability in Microsoft products Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally. local low complexity microsoft CWE-122	7.8
2024-10-08	CVE-2024-43565	Unspecified vulnerability in Microsoft products Windows Network Address Translation (NAT) Denial of Service Vulnerability network low complexity microsoft	7.5
2024-06-11	CVE-2024-35250	Unspecified vulnerability in Microsoft products Windows Kernel-Mode Driver Elevation of Privilege Vulnerability local low complexity microsoft	7.8
2023-10-10	CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. network low complexity ietf nghttp2 netty envoyproxy eclipse caddyserver golang f5 apache apple grpc microsoft nodejs dena facebook amazon debian kazu-yamamoto istio varnish-cache-project traefik projectcontour linkerd linecorp redhat fedoraproject netapp akka konghq jenkins openresty cisco	7.5
2023-09-12	CVE-2023-36805	Unspecified vulnerability in Microsoft products Windows MSHTML Platform Security Feature Bypass Vulnerability local high complexity microsoft	7.0