Microsoft » Windows 10 : Security Vulnerabilities, CVEs, CVSS score between 6 and 6.99

Microsoft Message Queuing Denial of Service Vulnerability

Windows Hyper-V Information Disclosure Vulnerability

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

Windows Internet Storage Name Service (iSNS) Server Information Disclosure Vulnerability

Windows Fax Service Remote Code Execution Vulnerability

Windows Kernel Denial of Service Vulnerability

Windows Hyper-V Denial of Service Vulnerability

Windows Graphics Component Information Disclosure Vulnerability

Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability

Windows Group Policy Elevation of Privilege Vulnerability

Windows Server Remotely Accessible Registry Keys Information Disclosure Vulnerability

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability

Windows Hyper-V Denial of Service Vulnerability

Windows Graphics Component Information Disclosure Vulnerability

Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

Windows Mixed Reality Developer Tools Information Disclosure Vulnerability

Windows Graphics Component Information Disclosure Vulnerability

Windows Hello Security Feature Bypass Vulnerability

Windows NTLM Spoofing Vulnerability

Windows Defender Credential Guard Security Feature Bypass Vulnerability

A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.

A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.

A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.

Windows Security Account Manager (SAM) Denial of Service Vulnerability

Windows Group Policy Elevation of Privilege Vulnerability