Vulnerabilities > Microsoft > Windows 10 > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-36903 Unspecified vulnerability in Microsoft products
Windows System Assessment Tool Elevation of Privilege Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2022-01-11 CVE-2022-21898 Unspecified vulnerability in Microsoft Windows 10, Windows Server and Windows Server 2019
DirectX Graphics Kernel Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2022-01-11 CVE-2022-21874 Unspecified vulnerability in Microsoft products
Windows Security Center API Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2021-12-15 CVE-2021-43217 Unspecified vulnerability in Microsoft products
Windows Encrypting File System (EFS) Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2021-12-15 CVE-2021-43215 Out-of-bounds Write vulnerability in Microsoft products
iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution
network
low complexity
microsoft CWE-787
critical
 9.8
9.8
2020-05-21 CVE-2020-1112 Unrestricted Upload of File with Dangerous Type vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) IIS module improperly handles uploaded content, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.
network
low complexity
microsoft CWE-434
critical
 9.9
9.9
2020-03-12 CVE-2020-0690 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Elevation of Privilege Vulnerability'.
network
low complexity
microsoft
critical
 9.8
9.8
2020-03-12 CVE-2020-0796 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Microsoft Windows 10 and Windows Server 2016
A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests, aka 'Windows SMBv3 Client/Server Remote Code Execution Vulnerability'.
network
low complexity
microsoft CWE-119
critical
 10.0
10
2019-11-12 CVE-2019-0719 Improper Input Validation vulnerability in Microsoft products
A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Remote Code Execution Vulnerability'.
network
low complexity
microsoft CWE-20
critical
 9.1
9.1
2019-11-12 CVE-2019-0721 Improper Input Validation vulnerability in Microsoft products
A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Remote Code Execution Vulnerability'.
network
low complexity
microsoft CWE-20
critical
 9.1
9.1