Vulnerabilities > Microsoft > Windows 10 22H2 > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-01-09 CVE-2024-21320 Unspecified vulnerability in Microsoft products
Windows Themes Spoofing Vulnerability
network
low complexity
microsoft
6.5
6.5
2023-11-28 CVE-2023-24023 Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.
high complexity
bluetooth microsoft
6.8
6.8
2023-11-14 CVE-2023-36398 Unspecified vulnerability in Microsoft products
Windows NTFS Information Disclosure Vulnerability
local
low complexity
microsoft
6.5
6.5
2023-11-14 CVE-2023-36404 Unspecified vulnerability in Microsoft products
Windows Kernel Information Disclosure Vulnerability
local
low complexity
microsoft
5.5
5.5
2023-11-14 CVE-2023-36428 Unspecified vulnerability in Microsoft products
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
local
low complexity
microsoft
5.5
5.5
2023-10-10 CVE-2023-36563 Unspecified vulnerability in Microsoft products
Microsoft WordPad Information Disclosure Vulnerability
local
low complexity
microsoft
5.5
5.5
2023-10-10 CVE-2023-36698 Unspecified vulnerability in Microsoft products
Windows Kernel Security Feature Bypass Vulnerability
local
low complexity
microsoft
4.4
4.4
2023-08-08 CVE-2023-20569 Information Exposure Through Discrepancy vulnerability in multiple products
A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction.
local
high complexity
fedoraproject debian amd microsoft CWE-203
4.7
4.7
2023-08-08 CVE-2023-20588 Divide By Zero vulnerability in multiple products
A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. 
local
low complexity
debian amd xen fedoraproject microsoft CWE-369
5.5
5.5
2023-08-08 CVE-2023-35384 Unspecified vulnerability in Microsoft products
Windows HTML Platforms Security Feature Bypass Vulnerability
network
low complexity
microsoft
6.5
6.5