Microsoft: >> Windows 10 21h2 Security Vulnerabilities
Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally.
CVSS Score
5.5
EPSS Score
0.001
Published
2025-05-13
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-05-13
CVE-2025-29824
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
Known exploited
CVSS Score
7.8
EPSS Score
0.008
Published
2025-04-08
Insecure storage of sensitive information in Windows Kerberos allows an authorized attacker to bypass a security feature locally.
CVSS Score
7.1
EPSS Score
0.01
Published
2025-04-08
Improper access control in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-04-08
Out-of-bounds read in Windows NTFS allows an unauthorized attacker to disclose information locally.
CVSS Score
5.5
EPSS Score
0.003
Published
2025-04-08
Improper input validation in Windows Security Zone Mapping allows an unauthorized attacker to bypass a security feature locally.
CVSS Score
8.6
EPSS Score
0.005
Published
2025-04-08
Improper access control in Windows Resilient File System (ReFS) allows an authorized attacker to disclose information over a network.
CVSS Score
6.5
EPSS Score
0.012
Published
2025-04-08
Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.003
Published
2025-04-08
Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.008
Published
2025-04-08