Vulnerabilities > Microsoft > Windows 10 > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-36903 Unspecified vulnerability in Microsoft products
Windows System Assessment Tool Elevation of Privilege Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2022-01-11 CVE-2022-21898 Unspecified vulnerability in Microsoft Windows 10, Windows Server and Windows Server 2019
DirectX Graphics Kernel Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2022-01-11 CVE-2022-21874 Unspecified vulnerability in Microsoft products
Windows Security Center API Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2021-12-15 CVE-2021-43217 Unspecified vulnerability in Microsoft products
Windows Encrypting File System (EFS) Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
 9.8
9.8
2021-12-15 CVE-2021-43215 Out-of-bounds Write vulnerability in Microsoft products
iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution
network
low complexity
microsoft CWE-787
critical
 9.8
9.8
2020-05-21 CVE-2020-1112 Unrestricted Upload of File with Dangerous Type vulnerability in Microsoft products
An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) IIS module improperly handles uploaded content, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.
network
low complexity
microsoft CWE-434
critical
 9.9
9.9
2020-03-12 CVE-2020-0690 Unspecified vulnerability in Microsoft products
An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Elevation of Privilege Vulnerability'.
network
low complexity
microsoft
critical
 9.8
9.8
2019-11-12 CVE-2019-0719 Improper Input Validation vulnerability in Microsoft products
A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Remote Code Execution Vulnerability'.
network
low complexity
microsoft CWE-20
critical
 9.1
9.1
2019-11-12 CVE-2019-0721 Improper Input Validation vulnerability in Microsoft products
A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Remote Code Execution Vulnerability'.
network
low complexity
microsoft CWE-20
critical
 9.1
9.1
2019-11-12 CVE-2019-1384 Insufficiently Protected Credentials vulnerability in Microsoft products
A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages.To exploit this vulnerability, an attacker could send a specially crafted authentication request, aka 'Microsoft Windows Security Feature Bypass Vulnerability'.
network
low complexity
microsoft CWE-522
critical
 9.9
9.9