This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Microsoft First view 2021-05-21
Product Windows 10 Last view 2022-06-15
Version 21h1 Type Os
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:microsoft:windows_10

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
6.5 2022-06-15 CVE-2022-30189

Windows Autopilot Device Management and Enrollment Client Spoofing Vulnerability.

7.8 2022-06-15 CVE-2022-30166

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability.

8.8 2022-06-15 CVE-2022-30165

Windows Kerberos Elevation of Privilege Vulnerability.

7.8 2022-06-15 CVE-2022-30164

Kerberos AppContainer Security Feature Bypass Vulnerability.

5.5 2022-06-15 CVE-2022-30162

Windows Kernel Information Disclosure Vulnerability.

8.8 2022-06-15 CVE-2022-30161

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153.

7.8 2022-06-15 CVE-2022-30160

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability.

7.8 2022-06-15 CVE-2022-30147

Windows Installer Elevation of Privilege Vulnerability.

7.5 2022-06-15 CVE-2022-30142

Windows File History Remote Code Execution Vulnerability.

7.8 2022-06-15 CVE-2022-30132

Windows Container Manager Service Elevation of Privilege Vulnerability.

7.5 2022-06-14 CVE-2022-32230

Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot.

7.8 2022-06-01 CVE-2022-30190

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability.

7.8 2022-05-18 CVE-2022-30138

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29104, CVE-2022-29132.

7 2022-05-10 CVE-2022-29142

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29133.

8.8 2022-05-10 CVE-2022-29141

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139.

5.5 2022-05-10 CVE-2022-29140

Windows Print Spooler Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-29114.

8.8 2022-05-10 CVE-2022-29139

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29141.

8.8 2022-05-10 CVE-2022-29137

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29139, CVE-2022-29141.

7.8 2022-05-10 CVE-2022-29132

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29104.

8.8 2022-05-10 CVE-2022-29131

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

9.8 2022-05-10 CVE-2022-29130

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

8.8 2022-05-10 CVE-2022-29129

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

8.8 2022-05-10 CVE-2022-29128

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

4.2 2022-05-10 CVE-2022-29127

BitLocker Security Feature Bypass Vulnerability.

7 2022-05-10 CVE-2022-29126

Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability.

CWE : Common Weakness Enumeration

%idName
75% (110) CWE-269 Improper Privilege Management
8% (13) CWE-362 Race Condition
3% (5) CWE-200 Information Exposure
2% (4) CWE-787 Out-of-bounds Write
2% (3) CWE-668 Exposure of Resource to Wrong Sphere
2% (3) CWE-59 Improper Link Resolution Before File Access ('Link Following')
0% (1) CWE-639 Access Control Bypass Through User-Controlled Key
0% (1) CWE-476 NULL Pointer Dereference
0% (1) CWE-295 Certificate Issues
0% (1) CWE-294 Authentication Bypass by Capture-replay
0% (1) CWE-190 Integer Overflow or Wraparound
0% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
0% (1) CWE-94 Failure to Control Generation of Code ('Code Injection')