Microsoft Windows 10

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Microsoft Windows 10.

Recent Microsoft Windows 10 Security Advisories

Advisory	Title	Published
CVE-2021-42297	Windows 10 Update Assistant Elevation of Privilege Vulnerability	November 16, 2021
CVE-2021-43211	Windows 10 Update Assistant Elevation of Privilege Vulnerability	November 16, 2021
CVE-2021-36945	Windows 10 Update Assistant Elevation of Privilege Vulnerability	August 10, 2021

By the Year

In 2025 there have been 154 vulnerabilities in Microsoft Windows 10 with an average score of 7.2 out of ten. Last year, in 2024 Windows 10 had 525 security vulnerabilities published. Right now, Windows 10 is on track to have less security vulnerabilities in 2025 than it did last year. Last year, the average CVE base score was greater by 0.18

Year	Vulnerabilities	Average Score
2025	154	7.19
2024	525	7.36
2023	525	7.53
2022	525	7.42
2021	488	7.35
2020	804	7.36
2019	448	7.34
2018	259	6.59

It may take a day or so for new Windows 10 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Windows 10 Security Vulnerabilities

Use after free in Windows Common Log File System Driver

CVE-2025-29824 7.8 - High - April 08, 2025

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

Dangling pointer

External control of file name or path in Windows NTLM

CVE-2025-24054 5.4 - Medium - March 11, 2025

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

External Control of File Name or Path

Integer overflow or wraparound in Windows Fast FAT Driver

CVE-2025-24985 7.8 - High - March 11, 2025

Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to execute code locally.

Integer Overflow or Wraparound

Use after free in Windows Win32 Kernel Subsystem

CVE-2025-24983 7 - High - March 11, 2025

Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.

Dangling pointer

Insertion of sensitive information into log file in Windows NTFS

CVE-2025-24984 4.6 - Medium - March 11, 2025

Insertion of sensitive information into log file in Windows NTFS allows an unauthorized attacker to disclose information with a physical attack.

Insertion of Sensitive Information into Log File

Out-of-bounds read in Windows NTFS

CVE-2025-24991 5.5 - Medium - March 11, 2025

Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.

Out-of-bounds Read

Heap-based buffer overflow in Windows NTFS

CVE-2025-24993 7.8 - High - March 11, 2025

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.

Heap-based Buffer Overflow

Improper neutralization in Microsoft Management Console

CVE-2025-26633 7 - High - March 11, 2025

Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally.

Improper Neutralization

Windows Core Messaging Elevation of Privileges Vulnerability

CVE-2025-21184 7 - High - February 11, 2025

Windows Core Messaging Elevation of Privileges Vulnerability

Heap-based Buffer Overflow

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21190 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21200 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Telephony Server Remote Code Execution Vulnerability

CVE-2025-21201 8.8 - High - February 11, 2025

Windows Telephony Server Remote Code Execution Vulnerability

Double-free

Internet Connection Sharing (ICS) Denial of Service Vulnerability

CVE-2025-21212 6.5 - Medium - February 11, 2025

Internet Connection Sharing (ICS) Denial of Service Vulnerability

Out-of-bounds Read

Internet Connection Sharing (ICS) Denial of Service Vulnerability

CVE-2025-21216 6.5 - Medium - February 11, 2025

Internet Connection Sharing (ICS) Denial of Service Vulnerability

Out-of-bounds Read

Internet Connection Sharing (ICS) Denial of Service Vulnerability

CVE-2025-21254 6.5 - Medium - February 11, 2025

Internet Connection Sharing (ICS) Denial of Service Vulnerability

Out-of-bounds Read

Windows NTFS Elevation of Privilege Vulnerability

CVE-2025-21337 3.3 - Low - February 11, 2025

Windows NTFS Elevation of Privilege Vulnerability

Authorization

Windows Deployment Services Denial of Service Vulnerability

CVE-2025-21347 6 - Medium - February 11, 2025

Windows Deployment Services Denial of Service Vulnerability

insecure temporary file

Windows Remote Desktop Configuration Service Tampering Vulnerability

CVE-2025-21349 6.8 - Medium - February 11, 2025

Windows Remote Desktop Configuration Service Tampering Vulnerability

authentification

Windows Kerberos Denial of Service Vulnerability

CVE-2025-21350 5.9 - Medium - February 11, 2025

Windows Kerberos Denial of Service Vulnerability

Improper Input Validation

Microsoft Digest Authentication Remote Code Execution Vulnerability

CVE-2025-21368 8.8 - High - February 11, 2025

Microsoft Digest Authentication Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Microsoft Digest Authentication Remote Code Execution Vulnerability

CVE-2025-21369 8.8 - High - February 11, 2025

Microsoft Digest Authentication Remote Code Execution Vulnerability

Integer Overflow or Wraparound

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21371 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Installer Elevation of Privilege Vulnerability

CVE-2025-21373 7.8 - High - February 11, 2025

Windows Installer Elevation of Privilege Vulnerability

insecure temporary file

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

CVE-2025-21375 7.8 - High - February 11, 2025

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

Improper Input Validation

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2025-21376 8.1 - High - February 11, 2025

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Race Condition

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

CVE-2025-21181 7.5 - High - February 11, 2025

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

Resource Exhaustion

NTLM Hash Disclosure Spoofing Vulnerability

CVE-2025-21377 6.5 - Medium - February 11, 2025

NTLM Hash Disclosure Spoofing Vulnerability

External Control of File Name or Path

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21406 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Dangling pointer

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21407 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Core Messaging Elevation of Privileges Vulnerability

CVE-2025-21414 7 - High - February 11, 2025

Windows Core Messaging Elevation of Privileges Vulnerability

Heap-based Buffer Overflow

Windows Setup Files Cleanup Elevation of Privilege Vulnerability

CVE-2025-21419 7.1 - High - February 11, 2025

Windows Setup Files Cleanup Elevation of Privilege Vulnerability

insecure temporary file

Windows Disk Cleanup Tool Elevation of Privilege Vulnerability

CVE-2025-21420 7.8 - High - February 11, 2025

Windows Disk Cleanup Tool Elevation of Privilege Vulnerability

insecure temporary file

Windows Storage Elevation of Privilege Vulnerability

CVE-2025-21391 7.1 - High - February 11, 2025

Windows Storage Elevation of Privilege Vulnerability

insecure temporary file

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2025-21418 7.8 - High - February 11, 2025

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Heap-based Buffer Overflow

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

CVE-2025-21325 7.8 - High - January 17, 2025

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

Incorrect Permission Assignment for Critical Resource

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21417 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21413 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21411 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21409 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows upnphost.dll Denial of Service Vulnerability

CVE-2025-21389 7.5 - High - January 14, 2025

Windows upnphost.dll Denial of Service Vulnerability

Resource Exhaustion

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2025-21382 7.8 - High - January 14, 2025

Windows Graphics Component Elevation of Privilege Vulnerability

Integer Overflow or Wraparound

Windows CSC Service Elevation of Privilege Vulnerability

CVE-2025-21378 7.8 - High - January 14, 2025

Windows CSC Service Elevation of Privilege Vulnerability

Heap-based Buffer Overflow

Windows CSC Service Information Disclosure Vulnerability

CVE-2025-21374 5.5 - Medium - January 14, 2025

Windows CSC Service Information Disclosure Vulnerability

Out-of-bounds Read

Windows upnphost.dll Denial of Service Vulnerability

CVE-2025-21300 7.5 - High - January 14, 2025

Windows upnphost.dll Denial of Service Vulnerability

Resource Exhaustion

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

CVE-2025-21335 7.8 - High - January 14, 2025

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

Dangling pointer

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

CVE-2025-21334 7.8 - High - January 14, 2025

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

Dangling pointer

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

CVE-2025-21333 7.8 - High - January 14, 2025

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

Heap-based Buffer Overflow

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21341 6.6 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

CVE-2025-21340 5.5 - Medium - January 14, 2025

Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

Authorization

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21339 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

GDI+ Remote Code Execution Vulnerability

CVE-2025-21338 7.8 - High - January 14, 2025

GDI+ Remote Code Execution Vulnerability

Integer Overflow or Wraparound

Windows Cryptographic Information Disclosure Vulnerability

CVE-2025-21336 5.6 - Medium - January 14, 2025

Windows Cryptographic Information Disclosure Vulnerability

Side Channel Attack

MapUrlToZone Security Feature Bypass Vulnerability

CVE-2025-21332 8.8 - High - January 14, 2025

MapUrlToZone Security Feature Bypass Vulnerability

Improper Resolution of Path Equivalence

Windows Installer Elevation of Privilege Vulnerability

CVE-2025-21331 7.3 - High - January 14, 2025

Windows Installer Elevation of Privilege Vulnerability

insecure temporary file

Windows Remote Desktop Services Denial of Service Vulnerability

CVE-2025-21330 7.5 - High - January 14, 2025

Windows Remote Desktop Services Denial of Service Vulnerability

Resource Exhaustion

MapUrlToZone Security Feature Bypass Vulnerability

CVE-2025-21328 4.3 - Medium - January 14, 2025

MapUrlToZone Security Feature Bypass Vulnerability

Improper Resolution of Path Equivalence

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21327 6.6 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21324 6.6 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21323 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

Insertion of Sensitive Information into Log File

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21321 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

Insertion of Sensitive Information into Log File

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21320 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

Insertion of Sensitive Information into Log File

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21319 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

Insertion of Sensitive Information into Log File

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21318 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

Insertion of Sensitive Information into Log File

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21317 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

Insertion of Sensitive Information into Log File

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21316 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

Insertion of Sensitive Information into Log File

MapUrlToZone Security Feature Bypass Vulnerability

CVE-2025-21329 4.3 - Medium - January 14, 2025

MapUrlToZone Security Feature Bypass Vulnerability

Improper Resolution of Path Equivalence

Windows Smart Card Reader Information Disclosure Vulnerability

CVE-2025-21312 2.4 - Low - January 14, 2025

Windows Smart Card Reader Information Disclosure Vulnerability

Use of Uninitialized Resource

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21310 6.6 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Themes Spoofing Vulnerability

CVE-2025-21308 6.5 - Medium - January 14, 2025

Windows Themes Spoofing Vulnerability

Information Disclosure

Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability

CVE-2025-21307 9.8 - Critical - January 14, 2025

Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability

Dangling pointer

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21306 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21305 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Microsoft DWM Core Library Elevation of Privilege Vulnerability

CVE-2025-21304 7.8 - High - January 14, 2025

Microsoft DWM Core Library Elevation of Privilege Vulnerability

Dangling pointer

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21303 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21302 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Geolocation Service Information Disclosure Vulnerability

CVE-2025-21301 6.5 - Medium - January 14, 2025

Windows Geolocation Service Information Disclosure Vulnerability

Authorization

Windows Kerberos Security Feature Bypass Vulnerability

CVE-2025-21299 7.8 - High - January 14, 2025

Windows Kerberos Security Feature Bypass Vulnerability

Insecure Storage of Sensitive Information

Windows OLE Remote Code Execution Vulnerability

CVE-2025-21298 9.8 - Critical - January 14, 2025

Windows OLE Remote Code Execution Vulnerability

Dangling pointer

BranchCache Remote Code Execution Vulnerability

CVE-2025-21296 7.5 - High - January 14, 2025

BranchCache Remote Code Execution Vulnerability

Dangling pointer

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability

CVE-2025-21295 8.1 - High - January 14, 2025

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability

Dangling pointer

Microsoft Digest Authentication Remote Code Execution Vulnerability

CVE-2025-21294 8.1 - High - January 14, 2025

Microsoft Digest Authentication Remote Code Execution Vulnerability

Sensitive Data Storage in Improperly Locked Memory

Active Directory Domain Services Elevation of Privilege Vulnerability

CVE-2025-21293 8.8 - High - January 14, 2025

Active Directory Domain Services Elevation of Privilege Vulnerability

Authorization

Windows Search Service Elevation of Privilege Vulnerability

CVE-2025-21292 8.8 - High - January 14, 2025

Windows Search Service Elevation of Privilege Vulnerability

Code Injection

Windows Direct Show Remote Code Execution Vulnerability

CVE-2025-21291 8.8 - High - January 14, 2025

Windows Direct Show Remote Code Execution Vulnerability

Double-free

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

CVE-2025-21290 7.5 - High - January 14, 2025

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

Resource Exhaustion

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

CVE-2025-21289 7.5 - High - January 14, 2025

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

Resource Exhaustion

Windows COM Server Information Disclosure Vulnerability

CVE-2025-21288 6.5 - Medium - January 14, 2025

Windows COM Server Information Disclosure Vulnerability

Use of Uninitialized Resource

Windows Installer Elevation of Privilege Vulnerability

CVE-2025-21287 7.8 - High - January 14, 2025

Windows Installer Elevation of Privilege Vulnerability

Improper Privilege Management

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21286 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

CVE-2025-21285 7.5 - High - January 14, 2025

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

NULL Pointer Dereference

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21252 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

CVE-2025-21251 7.5 - High - January 14, 2025

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

Resource Exhaustion

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21250 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21249 6.6 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21248 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

CVE-2025-21230 7.5 - High - January 14, 2025

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

Improper Input Validation

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21256 6.6 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21255 6.6 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

Out-of-bounds Read

IP Helper Denial of Service Vulnerability

CVE-2025-21231 7.5 - High - January 14, 2025

IP Helper Denial of Service Vulnerability

Resource Exhaustion

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21228 6.6 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

Out-of-bounds Read

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Microsoft Windows Server 2025 or by Microsoft? Click the Watch button to subscribe.

Microsoft
Vendor

Microsoft Windows 10
Product

Microsoft Windows 10

Don't miss out!

Recent Microsoft Windows 10 Security Advisories

By the Year

Recent Microsoft Windows 10 Security Vulnerabilities

Use after free in Windows Common Log File System Driver CVE-2025-29824 7.8 - High - April 08, 2025

External control of file name or path in Windows NTLM CVE-2025-24054 5.4 - Medium - March 11, 2025

Integer overflow or wraparound in Windows Fast FAT Driver CVE-2025-24985 7.8 - High - March 11, 2025

Use after free in Windows Win32 Kernel Subsystem CVE-2025-24983 7 - High - March 11, 2025

Insertion of sensitive information into log file in Windows NTFS CVE-2025-24984 4.6 - Medium - March 11, 2025

Out-of-bounds read in Windows NTFS CVE-2025-24991 5.5 - Medium - March 11, 2025

Heap-based buffer overflow in Windows NTFS CVE-2025-24993 7.8 - High - March 11, 2025

Improper neutralization in Microsoft Management Console CVE-2025-26633 7 - High - March 11, 2025

Windows Core Messaging Elevation of Privileges Vulnerability CVE-2025-21184 7 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21190 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21200 8.8 - High - February 11, 2025

Windows Telephony Server Remote Code Execution Vulnerability CVE-2025-21201 8.8 - High - February 11, 2025

Internet Connection Sharing (ICS) Denial of Service Vulnerability CVE-2025-21212 6.5 - Medium - February 11, 2025

Internet Connection Sharing (ICS) Denial of Service Vulnerability CVE-2025-21216 6.5 - Medium - February 11, 2025

Internet Connection Sharing (ICS) Denial of Service Vulnerability CVE-2025-21254 6.5 - Medium - February 11, 2025

Windows NTFS Elevation of Privilege Vulnerability CVE-2025-21337 3.3 - Low - February 11, 2025

Windows Deployment Services Denial of Service Vulnerability CVE-2025-21347 6 - Medium - February 11, 2025

Windows Remote Desktop Configuration Service Tampering Vulnerability CVE-2025-21349 6.8 - Medium - February 11, 2025

Windows Kerberos Denial of Service Vulnerability CVE-2025-21350 5.9 - Medium - February 11, 2025

Microsoft Digest Authentication Remote Code Execution Vulnerability CVE-2025-21368 8.8 - High - February 11, 2025

Microsoft Digest Authentication Remote Code Execution Vulnerability CVE-2025-21369 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21371 8.8 - High - February 11, 2025

Windows Installer Elevation of Privilege Vulnerability CVE-2025-21373 7.8 - High - February 11, 2025

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability CVE-2025-21375 7.8 - High - February 11, 2025

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability CVE-2025-21376 8.1 - High - February 11, 2025

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability CVE-2025-21181 7.5 - High - February 11, 2025

NTLM Hash Disclosure Spoofing Vulnerability CVE-2025-21377 6.5 - Medium - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21406 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21407 8.8 - High - February 11, 2025

Windows Core Messaging Elevation of Privileges Vulnerability CVE-2025-21414 7 - High - February 11, 2025

Windows Setup Files Cleanup Elevation of Privilege Vulnerability CVE-2025-21419 7.1 - High - February 11, 2025

Windows Disk Cleanup Tool Elevation of Privilege Vulnerability CVE-2025-21420 7.8 - High - February 11, 2025

Windows Storage Elevation of Privilege Vulnerability CVE-2025-21391 7.1 - High - February 11, 2025

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability CVE-2025-21418 7.8 - High - February 11, 2025

Windows Secure Kernel Mode Elevation of Privilege Vulnerability CVE-2025-21325 7.8 - High - January 17, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21417 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21413 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21411 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21409 8.8 - High - January 14, 2025

Windows upnphost.dll Denial of Service Vulnerability CVE-2025-21389 7.5 - High - January 14, 2025

Windows Graphics Component Elevation of Privilege Vulnerability CVE-2025-21382 7.8 - High - January 14, 2025

Windows CSC Service Elevation of Privilege Vulnerability CVE-2025-21378 7.8 - High - January 14, 2025

Windows CSC Service Information Disclosure Vulnerability CVE-2025-21374 5.5 - Medium - January 14, 2025

Windows upnphost.dll Denial of Service Vulnerability CVE-2025-21300 7.5 - High - January 14, 2025

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability CVE-2025-21335 7.8 - High - January 14, 2025

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability CVE-2025-21334 7.8 - High - January 14, 2025

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability CVE-2025-21333 7.8 - High - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability CVE-2025-21341 6.6 - Medium - January 14, 2025

Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability CVE-2025-21340 5.5 - Medium - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21339 8.8 - High - January 14, 2025

GDI+ Remote Code Execution Vulnerability CVE-2025-21338 7.8 - High - January 14, 2025

Windows Cryptographic Information Disclosure Vulnerability CVE-2025-21336 5.6 - Medium - January 14, 2025

MapUrlToZone Security Feature Bypass Vulnerability CVE-2025-21332 8.8 - High - January 14, 2025

Windows Installer Elevation of Privilege Vulnerability CVE-2025-21331 7.3 - High - January 14, 2025

Windows Remote Desktop Services Denial of Service Vulnerability CVE-2025-21330 7.5 - High - January 14, 2025

MapUrlToZone Security Feature Bypass Vulnerability CVE-2025-21328 4.3 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability CVE-2025-21327 6.6 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability CVE-2025-21324 6.6 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability CVE-2025-21323 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability CVE-2025-21321 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability CVE-2025-21320 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability CVE-2025-21319 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability CVE-2025-21318 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability CVE-2025-21317 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability CVE-2025-21316 5.5 - Medium - January 14, 2025

MapUrlToZone Security Feature Bypass Vulnerability CVE-2025-21329 4.3 - Medium - January 14, 2025

Windows Smart Card Reader Information Disclosure Vulnerability CVE-2025-21312 2.4 - Low - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability CVE-2025-21310 6.6 - Medium - January 14, 2025

Windows Themes Spoofing Vulnerability CVE-2025-21308 6.5 - Medium - January 14, 2025

Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability CVE-2025-21307 9.8 - Critical - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21306 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21305 8.8 - High - January 14, 2025

Microsoft DWM Core Library Elevation of Privilege Vulnerability CVE-2025-21304 7.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21303 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability CVE-2025-21302 8.8 - High - January 14, 2025

Use after free in Windows Common Log File System Driver

CVE-2025-29824 7.8 - High - April 08, 2025

External control of file name or path in Windows NTLM

CVE-2025-24054 5.4 - Medium - March 11, 2025

Integer overflow or wraparound in Windows Fast FAT Driver

CVE-2025-24985 7.8 - High - March 11, 2025

Use after free in Windows Win32 Kernel Subsystem

CVE-2025-24983 7 - High - March 11, 2025

Insertion of sensitive information into log file in Windows NTFS

CVE-2025-24984 4.6 - Medium - March 11, 2025

Out-of-bounds read in Windows NTFS

CVE-2025-24991 5.5 - Medium - March 11, 2025

Heap-based buffer overflow in Windows NTFS

CVE-2025-24993 7.8 - High - March 11, 2025

Improper neutralization in Microsoft Management Console

CVE-2025-26633 7 - High - March 11, 2025

Windows Core Messaging Elevation of Privileges Vulnerability

CVE-2025-21184 7 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21190 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21200 8.8 - High - February 11, 2025

Windows Telephony Server Remote Code Execution Vulnerability

CVE-2025-21201 8.8 - High - February 11, 2025

Internet Connection Sharing (ICS) Denial of Service Vulnerability

CVE-2025-21212 6.5 - Medium - February 11, 2025

Internet Connection Sharing (ICS) Denial of Service Vulnerability

CVE-2025-21216 6.5 - Medium - February 11, 2025

Internet Connection Sharing (ICS) Denial of Service Vulnerability

CVE-2025-21254 6.5 - Medium - February 11, 2025

Windows NTFS Elevation of Privilege Vulnerability

CVE-2025-21337 3.3 - Low - February 11, 2025

Windows Deployment Services Denial of Service Vulnerability

CVE-2025-21347 6 - Medium - February 11, 2025

Windows Remote Desktop Configuration Service Tampering Vulnerability

CVE-2025-21349 6.8 - Medium - February 11, 2025

Windows Kerberos Denial of Service Vulnerability

CVE-2025-21350 5.9 - Medium - February 11, 2025

Microsoft Digest Authentication Remote Code Execution Vulnerability

CVE-2025-21368 8.8 - High - February 11, 2025

Microsoft Digest Authentication Remote Code Execution Vulnerability

CVE-2025-21369 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21371 8.8 - High - February 11, 2025

Windows Installer Elevation of Privilege Vulnerability

CVE-2025-21373 7.8 - High - February 11, 2025

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

CVE-2025-21375 7.8 - High - February 11, 2025

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2025-21376 8.1 - High - February 11, 2025

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

CVE-2025-21181 7.5 - High - February 11, 2025

NTLM Hash Disclosure Spoofing Vulnerability

CVE-2025-21377 6.5 - Medium - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21406 8.8 - High - February 11, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21407 8.8 - High - February 11, 2025

Windows Core Messaging Elevation of Privileges Vulnerability

CVE-2025-21414 7 - High - February 11, 2025

Windows Setup Files Cleanup Elevation of Privilege Vulnerability

CVE-2025-21419 7.1 - High - February 11, 2025

Windows Disk Cleanup Tool Elevation of Privilege Vulnerability

CVE-2025-21420 7.8 - High - February 11, 2025

Windows Storage Elevation of Privilege Vulnerability

CVE-2025-21391 7.1 - High - February 11, 2025

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

CVE-2025-21418 7.8 - High - February 11, 2025

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

CVE-2025-21325 7.8 - High - January 17, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21417 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21413 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21411 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21409 8.8 - High - January 14, 2025

Windows upnphost.dll Denial of Service Vulnerability

CVE-2025-21389 7.5 - High - January 14, 2025

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2025-21382 7.8 - High - January 14, 2025

Windows CSC Service Elevation of Privilege Vulnerability

CVE-2025-21378 7.8 - High - January 14, 2025

Windows CSC Service Information Disclosure Vulnerability

CVE-2025-21374 5.5 - Medium - January 14, 2025

Windows upnphost.dll Denial of Service Vulnerability

CVE-2025-21300 7.5 - High - January 14, 2025

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

CVE-2025-21335 7.8 - High - January 14, 2025

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

CVE-2025-21334 7.8 - High - January 14, 2025

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

CVE-2025-21333 7.8 - High - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21341 6.6 - Medium - January 14, 2025

Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability

CVE-2025-21340 5.5 - Medium - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21339 8.8 - High - January 14, 2025

GDI+ Remote Code Execution Vulnerability

CVE-2025-21338 7.8 - High - January 14, 2025

Windows Cryptographic Information Disclosure Vulnerability

CVE-2025-21336 5.6 - Medium - January 14, 2025

MapUrlToZone Security Feature Bypass Vulnerability

CVE-2025-21332 8.8 - High - January 14, 2025

Windows Installer Elevation of Privilege Vulnerability

CVE-2025-21331 7.3 - High - January 14, 2025

Windows Remote Desktop Services Denial of Service Vulnerability

CVE-2025-21330 7.5 - High - January 14, 2025

MapUrlToZone Security Feature Bypass Vulnerability

CVE-2025-21328 4.3 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21327 6.6 - Medium - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21324 6.6 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21323 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21321 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21320 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21319 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21318 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21317 5.5 - Medium - January 14, 2025

Windows Kernel Memory Information Disclosure Vulnerability

CVE-2025-21316 5.5 - Medium - January 14, 2025

MapUrlToZone Security Feature Bypass Vulnerability

CVE-2025-21329 4.3 - Medium - January 14, 2025

Windows Smart Card Reader Information Disclosure Vulnerability

CVE-2025-21312 2.4 - Low - January 14, 2025

Windows Digital Media Elevation of Privilege Vulnerability

CVE-2025-21310 6.6 - Medium - January 14, 2025

Windows Themes Spoofing Vulnerability

CVE-2025-21308 6.5 - Medium - January 14, 2025

Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability

CVE-2025-21307 9.8 - Critical - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21306 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21305 8.8 - High - January 14, 2025

Microsoft DWM Core Library Elevation of Privilege Vulnerability

CVE-2025-21304 7.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21303 8.8 - High - January 14, 2025

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2025-21302 8.8 - High - January 14, 2025

Windows Geolocation Service Information Disclosure Vulnerability

CVE-2025-21301 6.5 - Medium - January 14, 2025

Windows Kerberos Security Feature Bypass Vulnerability

CVE-2025-21299 7.8 - High - January 14, 2025

Windows OLE Remote Code Execution Vulnerability

CVE-2025-21298 9.8 - Critical - January 14, 2025

BranchCache Remote Code Execution Vulnerability

CVE-2025-21296 7.5 - High - January 14, 2025

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability

CVE-2025-21295 8.1 - High - January 14, 2025