Vulnerabilities (CVE)

Filtered by vendor Microsoft Subscribe
Filtered by product Windows 10
Total 4111 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-34302 3 Horizondatasys, Microsoft, Redhat 10 Uefi Bootloader, Windows 10, Windows 11 and 7 more 2024-11-21 N/A 6.7 MEDIUM
A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.
CVE-2022-34301 3 Kidan, Microsoft, Redhat 10 Cryptopro Securedisk For Bitlocker, Windows 10, Windows 11 and 7 more 2024-11-21 N/A 6.7 MEDIUM
A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.
CVE-2022-33973 2 Intel, Microsoft 3 Wlan Authentication And Privacy Infrastructure, Windows 10, Windows 11 2024-11-21 N/A 3.3 LOW
Improper access control in the Intel(R) WAPI Security software for Windows 10/11 before version 22.2150.0.1 may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2022-33670 1 Microsoft 8 Windows 10, Windows 11, Windows 8.1 and 5 more 2024-11-21 N/A 7.8 HIGH
Windows Partition Management Driver Elevation of Privilege Vulnerability
CVE-2022-33645 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2024-11-21 N/A 7.5 HIGH
Windows TCP/IP Driver Denial of Service Vulnerability
CVE-2022-33644 1 Microsoft 1 Windows 10 2024-11-21 4.4 MEDIUM 7.0 HIGH
Xbox Live Save Service Elevation of Privilege Vulnerability
CVE-2022-33635 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2024-11-21 N/A 7.8 HIGH
Windows GDI+ Remote Code Execution Vulnerability
CVE-2022-33634 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2024-11-21 N/A 8.1 HIGH
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
CVE-2022-32230 1 Microsoft 3 Windows 10, Windows 11, Windows Server 2019 2024-11-21 7.8 HIGH 7.5 HIGH
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot.
CVE-2022-30226 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2024-11-21 3.6 LOW 7.1 HIGH
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-30225 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2024-11-21 3.6 LOW 7.1 HIGH
Windows Media Player Network Sharing Service Elevation of Privilege Vulnerability
CVE-2022-30224 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2024-11-21 6.9 MEDIUM 7.0 HIGH
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
CVE-2022-30223 1 Microsoft 9 Windows 10, Windows 11, Windows 7 and 6 more 2024-11-21 2.7 LOW 5.7 MEDIUM
Windows Hyper-V Information Disclosure Vulnerability
CVE-2022-30222 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2024-11-21 4.6 MEDIUM 8.4 HIGH
Windows Shell Remote Code Execution Vulnerability
CVE-2022-30221 1 Microsoft 9 Windows 10, Windows 11, Windows 7 and 6 more 2024-11-21 5.1 MEDIUM 8.8 HIGH
Windows Graphics Component Remote Code Execution Vulnerability
CVE-2022-30220 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2024-11-21 7.2 HIGH 7.8 HIGH
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2022-30216 1 Microsoft 4 Windows 10, Windows 11, Windows Server 2016 and 1 more 2024-11-21 6.5 MEDIUM 8.8 HIGH
Windows Server Service Tampering Vulnerability
CVE-2022-30213 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2024-11-21 2.1 LOW 5.5 MEDIUM
Windows GDI+ Information Disclosure Vulnerability
CVE-2022-30212 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2024-11-21 4.7 MEDIUM 4.7 MEDIUM
Windows Connected Devices Platform Service Information Disclosure Vulnerability
CVE-2022-30211 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2024-11-21 6.0 MEDIUM 7.5 HIGH
Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability