Windows 10 1803

windows_10_1803

Vendor: Microsoft • 45 CVEs

CVEs (45)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-38396 1Microsoft 10Windows 10 1507 Windows 10 1511Windows 10 1607+7 more Mar 25, 2025 Feb 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 HP Factory Preinstalled Images on certain systems that shipped with Windows 10 versions 20H2 and earlier OS versions might allow escalation of privilege via execution of certain files outside the restricted path. This po...Show more HP Factory Preinstalled Images on certain systems that shipped with Windows 10 versions 20H2 and earlier OS versions might allow escalation of privilege via execution of certain files outside the restricted path. This potential vulnerability was remediated starting with Windows 10 versions 21H2 on October 31, 2021.Show less
CVE-2021-28310 1Microsoft 9Windows 10 1803 Windows 10 1809Windows 10 1909+6 more Oct 30, 2025 Apr 13, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Win32k Elevation of Privilege Vulnerability
CVE-2021-1732 1Microsoft 9Windows 10 1803 Windows 10 1809Windows 10 1909+6 more Oct 30, 2025 Feb 25, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Windows Win32k Elevation of Privilege Vulnerability
CVE-2020-17087 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1803+12 more Oct 29, 2025 Nov 11, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Windows Kernel Local Elevation of Privilege Vulnerability
CVE-2020-1464 1Microsoft 18Windows 10 1507 Windows 10 1607Windows 10 1709+15 more Feb 23, 2026 Aug 17, 2020 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack...Show more A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack scenario, an attacker could bypass security features intended to prevent improperly signed files from being loaded. The update addresses the vulnerability by correcting how Windows validates file signatures.Show less
CVE-2020-0986 1Microsoft 17Windows 10 1507 Windows 10 1607Windows 10 1709+14 more Oct 29, 2025 Jun 9, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1237, CVE-...Show more An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020-1273, CVE-2020-1274, CVE-2020-1275, CVE-2020-1276, CVE-2020-1307, CVE-2020-1316.Show less
CVE-2020-1054 1Microsoft 17Windows 10 1507 Windows 10 1607Windows 10 1709+14 more Oct 29, 2025 May 21, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-...Show more An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1143.Show less
CVE-2020-1027 1Microsoft 17Windows 10 1507 Windows 10 1607Windows 10 1709+14 more Oct 29, 2025 Apr 15, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0913, CVE-2020-1...Show more An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003.Show less
CVE-2020-1020 1Microsoft 16Windows 10 1507 Windows 10 1607Windows 10 1709+13 more Oct 29, 2025 Apr 15, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems exce...Show more A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Adobe Font Manager Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0938.Show less
CVE-2020-0938 1Microsoft 17Windows 10 1507 Windows 10 1607Windows 10 1709+14 more Oct 29, 2025 Apr 15, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems exce...Show more A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Adobe Font Manager Library Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1020.Show less
CVE-2020-0787 1Microsoft 17Windows 10 1507 Windows 10 1607Windows 10 1709+14 more Oct 29, 2025 Mar 12, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka 'Windows Background Intelligent Transfer Service Elevation of Privileg...Show more An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.Show less
CVE-2020-0683 1Microsoft 17Windows 10 1507 Windows 10 1607Windows 10 1709+14 more Oct 29, 2025 Feb 11, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0686.
CVE-2020-0638 1Microsoft 9Windows 10 1709 Windows 10 1803Windows 10 1809+6 more Oct 29, 2025 Jan 14, 2020 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Noti...Show more An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Update Notification Manager Elevation of Privilege Vulnerability'.Show less
CVE-2020-0601 2Golang Microsoft 13Go Windows 10 1507Windows 10 1607+10 more Dec 18, 2025 Jan 14, 2020 N/A· v4 8.1 HIGH· v3 5.8 MEDIUM· v2 A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate...Show more A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka 'Windows CryptoAPI Spoofing Vulnerability'.Show less
CVE-2019-1405 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1709+12 more Oct 29, 2025 Nov 12, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'.
CVE-2019-1388 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1709+11 more Oct 29, 2025 Nov 12, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists in the Windows Certificate Dialog when it does not properly enforce user privileges, aka 'Windows Certificate Dialog Elevation of Privilege Vulnerability'.
CVE-2019-1385 1Microsoft 6Windows 10 1709 Windows 10 1803Windows 10 1809+3 more Oct 29, 2025 Nov 12, 2019 N/A· v4 7.8 HIGH· v3 6.1 MEDIUM· v2 An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.To exploit this vulnerability, an authenticated att...Show more An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to elevate privileges.The security update addresses the vulnerability by correcting how AppX Deployment Extensions manages privileges., aka 'Windows AppX Deployment Extensions Elevation of Privilege Vulnerability'.Show less
CVE-2019-1322 1Microsoft 6Windows 10 1803 Windows 10 1809Windows 10 1903+3 more Oct 29, 2025 Oct 10, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1320, CVE-2019-134...Show more An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka 'Microsoft Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1320, CVE-2019-1340.Show less
CVE-2019-1315 1Microsoft 13Windows 10 1607 Windows 10 1703Windows 10 1709+10 more Oct 29, 2025 Oct 10, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CV...Show more An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1339, CVE-2019-1342.Show less
CVE-2019-1253 1Microsoft 8Windows 10 1703 Windows 10 1709Windows 10 1803+5 more Oct 29, 2025 Sep 11, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka...Show more An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1215, CVE-2019-1278, CVE-2019-1303.Show less

12 3 Next