Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Microsoft Subscribe
Filtered by product Windows 10
Total 4164 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-28326 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2021-06-04 3.6 LOW 6.1 MEDIUM
Windows AppX Deployment Server Denial of Service Vulnerability
CVE-2021-31166 1 Microsoft 2 Windows 10, Windows Server 2016 2021-05-26 7.5 HIGH 9.8 CRITICAL
HTTP Protocol Stack Remote Code Execution Vulnerability
CVE-2021-31205 1 Microsoft 2 Windows 10, Windows Server 2016 2021-05-18 4.3 MEDIUM 6.5 MEDIUM
Windows SMB Client Security Feature Bypass Vulnerability
CVE-2021-31182 1 Microsoft 7 Windows 10, Windows 7, Windows 8.1 and 4 more 2021-05-18 4.8 MEDIUM 7.1 HIGH
Microsoft Bluetooth Driver Spoofing Vulnerability
CVE-2021-31192 1 Microsoft 1 Windows 10 2021-05-18 6.8 MEDIUM 7.8 HIGH
Windows Media Foundation Core Remote Code Execution Vulnerability
CVE-2021-28455 1 Microsoft 10 365 Apps, Office, Windows 10 and 7 more 2021-05-18 6.5 MEDIUM 8.8 HIGH
Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability
CVE-2020-1108 1 Microsoft 14 .net Core, .net Framework, Powershell and 11 more 2021-05-18 5.0 MEDIUM 7.5 HIGH
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.
CVE-2021-31185 1 Microsoft 2 Windows 10, Windows Server 2016 2021-05-17 2.1 LOW 5.5 MEDIUM
Windows Desktop Bridge Denial of Service Vulnerability
CVE-2021-31184 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2021-05-17 2.1 LOW 5.5 MEDIUM
Microsoft Windows Infrared Data Association (IrDA) Information Disclosure Vulnerability
CVE-2021-31186 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2021-05-17 4.3 MEDIUM 6.5 MEDIUM
Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
CVE-2021-31191 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2021-05-17 2.1 LOW 5.5 MEDIUM
Windows Projected File System FS Filter Driver Information Disclosure Vulnerability
CVE-2021-31194 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2021-05-17 6.5 MEDIUM 8.8 HIGH
OLE Automation Remote Code Execution Vulnerability
CVE-2021-31168 1 Microsoft 2 Windows 10, Windows Server 2016 2021-05-14 4.6 MEDIUM 7.8 HIGH
Windows Container Manager Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-31165, CVE-2021-31167, CVE-2021-31169, CVE-2021-31208.
CVE-2021-28479 1 Microsoft 6 Windows 10, Windows 8.1, Windows Rt 8.1 and 3 more 2021-05-14 2.1 LOW 5.5 MEDIUM
Windows CSC Service Information Disclosure Vulnerability
CVE-2021-31169 1 Microsoft 2 Windows 10, Windows Server 2016 2021-05-14 4.6 MEDIUM 7.8 HIGH
Windows Container Manager Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-31165, CVE-2021-31167, CVE-2021-31168, CVE-2021-31208.
CVE-2021-1640 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2021-05-04 4.6 MEDIUM 7.8 HIGH
Windows Print Spooler Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26878.
CVE-2021-27077 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2021-05-04 4.6 MEDIUM 7.8 HIGH
Windows Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26863, CVE-2021-26875, CVE-2021-26900.
CVE-2020-15706 6 Canonical, Debian, Gnu and 3 more 13 Ubuntu Linux, Debian Linux, Grub2 and 10 more 2021-04-30 4.4 MEDIUM 6.4 MEDIUM
GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.
CVE-2020-12695 18 Asus, Broadcom, Canon and 15 more 257 Rt-n11, Adsl, Selphy Cp1200 and 254 more 2021-04-22 7.8 HIGH 7.5 HIGH
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
CVE-2021-28323 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2021-04-22 4.0 MEDIUM 6.5 MEDIUM
Windows DNS Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-28328.