Microsoft Windows 10
Recent Microsoft Windows 10 Security Advisories
| Advisory | Title | Published |
|---|---|---|
| CVE-2021-42297 | Windows 10 Update Assistant Elevation of Privilege Vulnerability | November 16, 2021 |
| CVE-2021-43211 | Windows 10 Update Assistant Elevation of Privilege Vulnerability | November 16, 2021 |
| CVE-2021-36945 | Windows 10 Update Assistant Elevation of Privilege Vulnerability | August 10, 2021 |
By the Year
In 2023 there have been 43 vulnerabilities in Microsoft Windows 10 with an average score of 7.3 out of ten. Last year Windows 10 had 524 security vulnerabilities published. Right now, Windows 10 is on track to have less security vulnerabilities in 2023 than it did last year. Last year, the average CVE base score was greater by 0.18
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 43 | 7.25 |
| 2022 | 524 | 7.43 |
| 2021 | 486 | 7.50 |
| 2020 | 802 | 7.42 |
| 2019 | 448 | 7.37 |
| 2018 | 259 | 6.58 |
It may take a day or so for new Windows 10 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Windows 10 Security Vulnerabilities
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-23420
7.8 - High
- March 14, 2023
Windows Kernel Elevation of Privilege Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-23421
7.8 - High
- March 14, 2023
Windows Kernel Elevation of Privilege Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-23422
7.8 - High
- March 14, 2023
Windows Kernel Elevation of Privilege Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-23423
7.8 - High
- March 14, 2023
Windows Kernel Elevation of Privilege Vulnerability
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
CVE-2023-24856
7.5 - High
- March 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
CVE-2023-24857
7.5 - High
- March 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
CVE-2023-24858
7.5 - High
- March 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
CVE-2023-24859
7.5 - High
- March 14, 2023
Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2023-23376
7.8 - High
- February 14, 2023
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
CVE-2023-21693
5.7 - Medium
- February 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
Windows Fax Service Remote Code Execution Vulnerability
CVE-2023-21694
6.8 - Medium
- February 14, 2023
Windows Fax Service Remote Code Execution Vulnerability
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
CVE-2023-21695
8.8 - High
- February 14, 2023
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
Windows Internet Storage Name Service (iSNS) Server Information Disclosure Vulnerability
CVE-2023-21697
5.5 - Medium
- February 14, 2023
Windows Internet Storage Name Service (iSNS) Server Information Disclosure Vulnerability
Windows Internet Storage Name Service (iSNS) Server Information Disclosure Vulnerability
CVE-2023-21699
5.3 - Medium
- February 14, 2023
Windows Internet Storage Name Service (iSNS) Server Information Disclosure Vulnerability
Windows iSCSI Discovery Service Denial of Service Vulnerability
CVE-2023-21700
7.5 - High
- February 14, 2023
Windows iSCSI Discovery Service Denial of Service Vulnerability
Microsoft Protected Extensible Authentication Protocol (PEAP) Denial of Service Vulnerability
CVE-2023-21701
7.5 - High
- February 14, 2023
Microsoft Protected Extensible Authentication Protocol (PEAP) Denial of Service Vulnerability
Windows iSCSI Service Denial of Service Vulnerability
CVE-2023-21702
7.5 - High
- February 14, 2023
Windows iSCSI Service Denial of Service Vulnerability
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
CVE-2023-21801
7.8 - High
- February 14, 2023
Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
Windows Media Remote Code Execution Vulnerability
CVE-2023-21802
7.8 - High
- February 14, 2023
Windows Media Remote Code Execution Vulnerability
Windows iSCSI Discovery Service Remote Code Execution Vulnerability
CVE-2023-21803
9.8 - Critical
- February 14, 2023
Windows iSCSI Discovery Service Remote Code Execution Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2023-21804
7.8 - High
- February 14, 2023
Windows Graphics Component Elevation of Privilege Vulnerability
Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2023-21805
7.8 - High
- February 14, 2023
Windows MSHTML Platform Remote Code Execution Vulnerability
Windows iSCSI Service Denial of Service Vulnerability
CVE-2023-21811
7.5 - High
- February 14, 2023
Windows iSCSI Service Denial of Service Vulnerability
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2023-21812
7.8 - High
- February 14, 2023
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Windows Secure Channel Denial of Service Vulnerability
CVE-2023-21813
7.5 - High
- February 14, 2023
Windows Secure Channel Denial of Service Vulnerability
Windows Active Directory Domain Services API Denial of Service Vulnerability
CVE-2023-21816
7.5 - High
- February 14, 2023
Windows Active Directory Domain Services API Denial of Service Vulnerability
Windows Kerberos Elevation of Privilege Vulnerability
CVE-2023-21817
7.8 - High
- February 14, 2023
Windows Kerberos Elevation of Privilege Vulnerability
Windows Secure Channel Denial of Service Vulnerability
CVE-2023-21818
7.5 - High
- February 14, 2023
Windows Secure Channel Denial of Service Vulnerability
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
CVE-2023-21820
7.4 - High
- February 14, 2023
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2023-21822
7.8 - High
- February 14, 2023
Windows Graphics Component Elevation of Privilege Vulnerability
Windows Kernel Information Disclosure Vulnerability.
CVE-2023-21776
5.5 - Medium
- January 10, 2023
Windows Kernel Information Disclosure Vulnerability.
Windows NTLM Elevation of Privilege Vulnerability.
CVE-2023-21746
7.8 - High
- January 10, 2023
Windows NTLM Elevation of Privilege Vulnerability.
Windows Backup Service Elevation of Privilege Vulnerability.
CVE-2023-21752
7.1 - High
- January 10, 2023
Windows Backup Service Elevation of Privilege Vulnerability.
Windows Layer 2 Tunneling Protocol (L2TP) Denial of Service Vulnerability.
CVE-2023-21757
7.5 - High
- January 10, 2023
Windows Layer 2 Tunneling Protocol (L2TP) Denial of Service Vulnerability.
Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
CVE-2023-21758
7.5 - High
- January 10, 2023
Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2023-21677, CVE-2023-21683.
Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability.
CVE-2023-21759
3.3 - Low
- January 10, 2023
Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability.
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2023-21760
7.1 - High
- January 10, 2023
Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2023-21678, CVE-2023-21765.
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2023-21765
7.8 - High
- January 10, 2023
Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2023-21678, CVE-2023-21760.
Windows Error Reporting Service Elevation of Privilege Vulnerability.
CVE-2023-21558
7.8 - High
- January 10, 2023
Windows Error Reporting Service Elevation of Privilege Vulnerability.
Windows Overlay Filter Information Disclosure Vulnerability.
CVE-2023-21766
4.7 - Medium
- January 10, 2023
Windows Overlay Filter Information Disclosure Vulnerability.
Race Condition
Windows Overlay Filter Elevation of Privilege Vulnerability.
CVE-2023-21767
7.8 - High
- January 10, 2023
Windows Overlay Filter Elevation of Privilege Vulnerability.
Event Tracing for Windows Information Disclosure Vulnerability
CVE-2023-21753
5.5 - Medium
- January 10, 2023
Event Tracing for Windows Information Disclosure Vulnerability. This CVE ID is unique from CVE-2023-21536.
Windows Local Session Manager (LSM) Elevation of Privilege Vulnerability.
CVE-2023-21771
7 - High
- January 10, 2023
Windows Local Session Manager (LSM) Elevation of Privilege Vulnerability.
Race Condition
Windows Bluetooth Driver Elevation of Privilege Vulnerability
CVE-2022-44675
7.8 - High
- December 13, 2022
Windows Bluetooth Driver Elevation of Privilege Vulnerability
Windows Bluetooth Driver Information Disclosure Vulnerability
CVE-2022-44674
5.5 - Medium
- December 13, 2022
Windows Bluetooth Driver Information Disclosure Vulnerability
Windows Media Remote Code Execution Vulnerability
CVE-2022-44668
7.8 - High
- December 13, 2022
Windows Media Remote Code Execution Vulnerability
Windows Media Remote Code Execution Vulnerability
CVE-2022-44667
7.8 - High
- December 13, 2022
Windows Media Remote Code Execution Vulnerability
Windows Contacts Remote Code Execution Vulnerability
CVE-2022-44666
7.8 - High
- December 13, 2022
Windows Contacts Remote Code Execution Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2022-41121
7.8 - High
- December 13, 2022
Windows Graphics Component Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-44671, CVE-2022-44680, CVE-2022-44697.
Windows Fax Compose Form Elevation of Privilege Vulnerability
CVE-2022-41077
7.8 - High
- December 13, 2022
Windows Fax Compose Form Elevation of Privilege Vulnerability
PowerShell Remote Code Execution Vulnerability.
CVE-2022-41076
8.5 - High
- December 13, 2022
PowerShell Remote Code Execution Vulnerability.
Windows Graphics Component Information Disclosure Vulnerability
CVE-2022-41074
5.5 - Medium
- December 13, 2022
Windows Graphics Component Information Disclosure Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2022-44697
7.8 - High
- December 13, 2022
Windows Graphics Component Elevation of Privilege Vulnerability
Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability.
CVE-2022-44689
7.8 - High
- December 13, 2022
Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability.
Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-44683
7.8 - High
- December 13, 2022
Windows Kernel Elevation of Privilege Vulnerability
Dangling pointer
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-44681
7.8 - High
- December 13, 2022
Windows Print Spooler Elevation of Privilege Vulnerability
Windows Graphics Component Information Disclosure Vulnerability
CVE-2022-44679
6.5 - Medium
- December 13, 2022
Windows Graphics Component Information Disclosure Vulnerability
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-44678
7.8 - High
- December 13, 2022
Windows Print Spooler Elevation of Privilege Vulnerability
Windows Projected File System Elevation of Privilege Vulnerability
CVE-2022-44677
7.8 - High
- December 13, 2022
Windows Projected File System Elevation of Privilege Vulnerability
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-44676
8.1 - High
- December 13, 2022
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
Race Condition
Windows Client Server Run-Time Subsystem (CSRSS) Elevation of Privilege Vulnerability
CVE-2022-44673
7 - High
- December 13, 2022
Windows Client Server Run-Time Subsystem (CSRSS) Elevation of Privilege Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2022-44671
7.8 - High
- December 13, 2022
Windows Graphics Component Elevation of Privilege Vulnerability
Windows Kernel Denial of Service Vulnerability
CVE-2022-44707
6.5 - Medium
- December 13, 2022
Windows Kernel Denial of Service Vulnerability
Windows SmartScreen Security Feature Bypass Vulnerability
CVE-2022-44698
5.4 - Medium
- December 13, 2022
Windows SmartScreen Security Feature Bypass Vulnerability
AuthZ
Windows Hyper-V Denial of Service Vulnerability
CVE-2022-44682
6.8 - Medium
- December 13, 2022
Windows Hyper-V Denial of Service Vulnerability
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-44670
8.1 - High
- December 13, 2022
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
TOCTTOU
Windows Error Reporting Elevation of Privilege Vulnerability
CVE-2022-44669
7 - High
- December 13, 2022
Windows Error Reporting Elevation of Privilege Vulnerability
Race Condition
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2022-44680
7.8 - High
- December 13, 2022
Windows Graphics Component Elevation of Privilege Vulnerability
Microsoft ODBC Driver Remote Code Execution Vulnerability
CVE-2022-41048
8.8 - High
- November 09, 2022
Microsoft ODBC Driver Remote Code Execution Vulnerability
Windows Scripting Languages Remote Code Execution Vulnerability
CVE-2022-41128
8.8 - High
- November 09, 2022
Windows Scripting Languages Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-41118.
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
CVE-2022-41125
7.8 - High
- November 09, 2022
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
Windows Scripting Languages Remote Code Execution Vulnerability
CVE-2022-41118
7.5 - High
- November 09, 2022
Windows Scripting Languages Remote Code Execution Vulnerability
Race Condition
Windows Group Policy Elevation of Privilege Vulnerability
CVE-2022-41086
6.4 - Medium
- November 09, 2022
Windows Group Policy Elevation of Privilege Vulnerability
Race Condition
Windows Network Address Translation (NAT) Denial of Service Vulnerability
CVE-2022-41058
7.5 - High
- November 09, 2022
Windows Network Address Translation (NAT) Denial of Service Vulnerability
Windows HTTP.sys Elevation of Privilege Vulnerability
CVE-2022-41057
7.8 - High
- November 09, 2022
Windows HTTP.sys Elevation of Privilege Vulnerability
Network Policy Server (NPS) RADIUS Protocol Denial of Service Vulnerability
CVE-2022-41056
7.5 - High
- November 09, 2022
Network Policy Server (NPS) RADIUS Protocol Denial of Service Vulnerability
Windows Human Interface Device Information Disclosure Vulnerability
CVE-2022-41055
5.5 - Medium
- November 09, 2022
Windows Human Interface Device Information Disclosure Vulnerability
Microsoft ODBC Driver Remote Code Execution Vulnerability
CVE-2022-41047
8.8 - High
- November 09, 2022
Microsoft ODBC Driver Remote Code Execution Vulnerability
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
CVE-2022-41045
7.8 - High
- November 09, 2022
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
Race Condition
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
CVE-2022-41039
8.1 - High
- November 09, 2022
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Windows Hyper-V Denial of Service Vulnerability
CVE-2022-38015
6.5 - Medium
- November 09, 2022
Windows Hyper-V Denial of Service Vulnerability
Windows Group Policy Elevation of Privilege Vulnerability
CVE-2022-37992
7.8 - High
- November 09, 2022
Windows Group Policy Elevation of Privilege Vulnerability
Windows Bind Filter Driver Elevation of Privilege Vulnerability
CVE-2022-41114
7 - High
- November 09, 2022
Windows Bind Filter Driver Elevation of Privilege Vulnerability
Race Condition
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
CVE-2022-41113
7.8 - High
- November 09, 2022
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
Windows Win32k Elevation of Privilege Vulnerability
CVE-2022-41109
7.8 - High
- November 09, 2022
Windows Win32k Elevation of Privilege Vulnerability
Windows Overlay Filter Elevation of Privilege Vulnerability
CVE-2022-41102
7.8 - High
- November 09, 2022
Windows Overlay Filter Elevation of Privilege Vulnerability
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
CVE-2022-41100
7.8 - High
- November 09, 2022
Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
Race Condition
Windows Overlay Filter Elevation of Privilege Vulnerability
CVE-2022-41101
7.8 - High
- November 09, 2022
Windows Overlay Filter Elevation of Privilege Vulnerability
Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2022-41049
5.4 - Medium
- November 09, 2022
Windows Mark of the Web Security Feature Bypass Vulnerability
Windows Extensible File Allocation Table Elevation of Privilege Vulnerability
CVE-2022-41050
7.8 - High
- November 09, 2022
Windows Extensible File Allocation Table Elevation of Privilege Vulnerability
Windows Graphics Component Remote Code Execution Vulnerability
CVE-2022-41052
7.8 - High
- November 09, 2022
Windows Graphics Component Remote Code Execution Vulnerability
Windows Kerberos Denial of Service Vulnerability
CVE-2022-41053
7.5 - High
- November 09, 2022
Windows Kerberos Denial of Service Vulnerability
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability
CVE-2022-41054
7.8 - High
- November 09, 2022
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2022-41073
7.8 - High
- November 09, 2022
Windows Print Spooler Elevation of Privilege Vulnerability
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
CVE-2022-41088
8.1 - High
- November 09, 2022
Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability
CVE-2022-41090
5.9 - Medium
- November 09, 2022
Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability
Race Condition
BitLocker Security Feature Bypass Vulnerability
CVE-2022-41099
4.6 - Medium
- November 09, 2022
BitLocker Security Feature Bypass Vulnerability
Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability
CVE-2022-41097
6.5 - Medium
- November 09, 2022
Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability
Windows GDI+ Information Disclosure Vulnerability
CVE-2022-41098
5.5 - Medium
- November 09, 2022
Windows GDI+ Information Disclosure Vulnerability
Windows Win32k Elevation of Privilege Vulnerability
CVE-2022-41092
7.8 - High
- November 09, 2022
Windows Win32k Elevation of Privilege Vulnerability
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Windows 11 or by Microsoft? Click the Watch button to subscribe.
