Windows_10 - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Windows_10
(Microsoft)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	3015

Date	Id	Summary	Products	Score	Patch	Annotated
2021-06-08	CVE-2021-31956	Windows NTFS Elevation of Privilege Vulnerability	Windows_10, Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_1909, Windows_10_2004, Windows_10_20h2, Windows_10_21h1, Windows_7, Windows_8\.1, Windows_rt_8\.1, Windows_server_2004, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_20h2	N/A
2018-12-12	CVE-2018-8639	An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8641.	Windows_10, Windows_7, Windows_8\.1, Windows_rt_8\.1, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019	7.8
2020-05-21	CVE-2020-1055	A cross-site-scripting (XSS) vulnerability exists when Active Directory Federation Services (ADFS) does not properly sanitize user inputs, aka 'Microsoft Active Directory Federation Services Cross-Site Scripting Vulnerability'.	Windows_10, Windows_server_2016, Windows_server_2019	6.1
2022-12-13	CVE-2022-44689	Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability	Windows_10, Windows_11, Windows_server_2019, Windows_server_2022, Windows_subsystem_for_linux	7.8
2023-10-10	CVE-2023-36589	Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability	Windows_10, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_21h2, Windows_11_22h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022	N/A
2023-10-10	CVE-2023-36591	Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability	Windows_10, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_21h2, Windows_11_22h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022	N/A
2023-10-10	CVE-2023-36592	Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability	Windows_10, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_21h2, Windows_11_22h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022	N/A
2020-11-11	CVE-2020-17087	Windows Kernel Local Elevation of Privilege Vulnerability	Windows_10, Windows_7, Windows_8\.1, Windows_rt_8\.1, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019	N/A
2015-07-20	CVE-2015-2426	Buffer underflow in atmfd.dll in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted OpenType font, aka "OpenType Font Driver Vulnerability."	Windows_10, Windows_7, Windows_8, Windows_8\.1, Windows_rt, Windows_rt_8\.1, Windows_server_2008, Windows_server_2012, Windows_vista	N/A
2015-08-15	CVE-2015-1769	Mount Manager in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 mishandles symlinks, which allows physically proximate attackers to execute arbitrary code by connecting a crafted USB device, aka "Mount Manager Elevation of Privilege Vulnerability."	Windows_10, Windows_7, Windows_8, Windows_8\.1, Windows_rt, Windows_rt_8\.1, Windows_server_2008, Windows_server_2012, Windows_vista	N/A