Summary
| Detail | |||
|---|---|---|---|
| Vendor | Microsoft | First view | 2018-03-14 |
| Product | Windows 10 | Last view | 2021-01-12 |
| Version | 1803 | Type | Os |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:microsoft:windows_10 | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.8 | 2021-01-12 | CVE-2021-1710 | Microsoft Windows Media Foundation Remote Code Execution Vulnerability |
| 7.8 | 2021-01-12 | CVE-2021-1709 | Windows Win32k Elevation of Privilege Vulnerability |
| 5.7 | 2021-01-12 | CVE-2021-1708 | Windows GDI+ Information Disclosure Vulnerability |
| 8.8 | 2021-01-12 | CVE-2021-1706 | Windows LUAFV Elevation of Privilege Vulnerability |
| 7.8 | 2021-01-12 | CVE-2021-1702 | Windows Remote Procedure Call Runtime Elevation of Privilege Vulnerability |
| 8.8 | 2021-01-12 | CVE-2021-1701 | Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-1658, CVE-2021-1660, CVE-2021-1664, CVE-2021-1666, CVE-2021-1667, CVE-2021-1671, CVE-2021-1673, CVE-2021-1700. |
| 8.8 | 2021-01-12 | CVE-2021-1700 | Remote Procedure Call Runtime Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-1658, CVE-2021-1660, CVE-2021-1664, CVE-2021-1666, CVE-2021-1667, CVE-2021-1671, CVE-2021-1673, CVE-2021-1701. |
| 5.5 | 2021-01-12 | CVE-2021-1699 | Windows (modem.sys) Information Disclosure Vulnerability |
| 7.8 | 2021-01-12 | CVE-2021-1697 | Windows InstallService Elevation of Privilege Vulnerability |
| 5.5 | 2021-01-12 | CVE-2021-1696 | Windows Graphics Component Information Disclosure Vulnerability |
| 7.8 | 2021-01-12 | CVE-2021-1695 | Windows Print Spooler Elevation of Privilege Vulnerability |
| 9.8 | 2021-01-12 | CVE-2021-1694 | Windows Update Stack Elevation of Privilege Vulnerability |
| 7.8 | 2021-01-12 | CVE-2021-1693 | Windows CSC Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1652, CVE-2021-1653, CVE-2021-1654, CVE-2021-1655, CVE-2021-1659, CVE-2021-1688. |
| 7.8 | 2021-01-12 | CVE-2021-1690 | Windows WalletService Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1681, CVE-2021-1686, CVE-2021-1687. |
| 7.8 | 2021-01-12 | CVE-2021-1689 | Windows Multipoint Management Elevation of Privilege Vulnerability |
| 7.8 | 2021-01-12 | CVE-2021-1688 | Windows CSC Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1652, CVE-2021-1653, CVE-2021-1654, CVE-2021-1655, CVE-2021-1659, CVE-2021-1693. |
| 7.8 | 2021-01-12 | CVE-2021-1687 | Windows WalletService Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1681, CVE-2021-1686, CVE-2021-1690. |
| 7.8 | 2021-01-12 | CVE-2021-1686 | Windows WalletService Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1681, CVE-2021-1687, CVE-2021-1690. |
| 7.8 | 2021-01-12 | CVE-2021-1685 | Windows AppX Deployment Extensions Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1642. |
| 5.5 | 2021-01-12 | CVE-2021-1684 | Windows Bluetooth Security Feature Bypass Vulnerability This CVE ID is unique from CVE-2021-1638, CVE-2021-1683. |
| 5.5 | 2021-01-12 | CVE-2021-1683 | Windows Bluetooth Security Feature Bypass Vulnerability This CVE ID is unique from CVE-2021-1638, CVE-2021-1684. |
| 7.8 | 2021-01-12 | CVE-2021-1682 | Windows Kernel Elevation of Privilege Vulnerability |
| 7.8 | 2021-01-12 | CVE-2021-1681 | Windows WalletService Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1686, CVE-2021-1687, CVE-2021-1690. |
| 7.8 | 2021-01-12 | CVE-2021-1680 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-1651. |
| 6.5 | 2021-01-12 | CVE-2021-1679 | Windows CryptoAPI Denial of Service Vulnerability |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 50% (463) | CWE-269 | Improper Privilege Management |
| 15% (138) | CWE-200 | Information Exposure |
| 10% (96) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 3% (32) | CWE-404 | Improper Resource Shutdown or Release |
| 3% (31) | CWE-20 | Improper Input Validation |
| 3% (30) | CWE-787 | Out-of-bounds Write |
| 2% (22) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
| 1% (12) | CWE-611 | Information Leak Through XML External Entity File Disclosure |
| 1% (11) | CWE-665 | Improper Initialization |
| 1% (11) | CWE-125 | Out-of-bounds Read |
| 0% (7) | CWE-732 | Incorrect Permission Assignment for Critical Resource |
| 0% (6) | CWE-190 | Integer Overflow or Wraparound |
| 0% (5) | CWE-367 | Time-of-check Time-of-use (TOCTOU) Race Condition |
| 0% (4) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 0% (3) | CWE-755 | Improper Handling of Exceptional Conditions |
| 0% (3) | CWE-416 | Use After Free |
| 0% (3) | CWE-362 | Race Condition |
| 0% (3) | CWE-347 | Improper Verification of Cryptographic Signature |
| 0% (3) | CWE-295 | Certificate Issues |
| 0% (3) | CWE-287 | Improper Authentication |
| 0% (3) | CWE-264 | Permissions, Privileges, and Access Controls |
| 0% (3) | CWE-19 | Data Handling |
| 0% (2) | CWE-522 | Insufficiently Protected Credentials |
| 0% (2) | CWE-502 | Deserialization of Untrusted Data |
| 0% (2) | CWE-434 | Unrestricted Upload of File with Dangerous Type |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2021-01-08 | Microsoft Windows SMB authenticated remote code execution attempt RuleID : 56562 - Type : OS-WINDOWS - Revision : 1 |
| 2021-01-08 | Microsoft Windows SMB authenticated remote code execution attempt RuleID : 56561 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-12 | Windows Network File System denial of service attempt RuleID : 56309 - Type : PROTOCOL-RPC - Revision : 1 |
| 2020-12-10 | Microsoft Windows NFS read procedure remote code execution attempt RuleID : 56302 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows NFS read procedure remote code execution attempt RuleID : 56301 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Common Log Files System driver privilege escalation attempt RuleID : 56296 - Type : FILE-OTHER - Revision : 1 |
| 2020-12-10 | Microsoft Windows Common Log Files System driver privilege escalation attempt RuleID : 56295 - Type : FILE-OTHER - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k elevation of privilege attempt RuleID : 56262 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k elevation of privilege attempt RuleID : 56261 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k DirectComposition privilege escalation attempt RuleID : 56260 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows Win32k DirectComposition privilege escalation attempt RuleID : 56259 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows DirectX graphics kernel subsystem privilege escalation attempt RuleID : 56255 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-10 | Microsoft Windows DirectX graphics kernel subsystem privilege escalation attempt RuleID : 56254 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-08 | Microsoft Windows Kernel Cryptography Driver privilege escalation attempt RuleID : 56231 - Type : OS-WINDOWS - Revision : 1 |
| 2020-12-08 | Microsoft Windows Kernel Cryptography Driver privilege escalation attempt RuleID : 56230 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows Remote Desktop information disclosure attempt RuleID : 55994 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows IPv6 DNSSL option record denial of service attempt RuleID : 55993 - Type : PROTOCOL-ICMP - Revision : 1 |
| 2020-11-12 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 55990 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows Win32k kernel driver privilege escalation attempt RuleID : 55989 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows IPv6 stack remote execution attempt RuleID : 55984 - Type : PROTOCOL-ICMP - Revision : 1 |
| 2020-11-12 | Microsoft Windows digital signature spoofing attempt RuleID : 55983 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows digital signature spoofing attempt RuleID : 55982 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows Media Foundation memory corruption attempt RuleID : 55980 - Type : FILE-MULTIMEDIA - Revision : 1 |
| 2020-11-12 | Microsoft Windows Media Foundation memory corruption attempt RuleID : 55979 - Type : FILE-MULTIMEDIA - Revision : 1 |
| 2020-11-11 | Microsoft Windows Win32k driver privilege escalation attempt RuleID : 55943 - Type : OS-WINDOWS - Revision : 2 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2018-09-11 | Name: An application installed on the remote macOS or Mac OS X host is affected by ... File: macos_ms18_sep_office.nasl - Type: ACT_GATHER_INFO |
