Windows 10 Vulnerabilities

This vulnerability allows an attacker to access sensitive information from a Windows 10 system by connecting a device like a camera or scanner and running a specially designed application. To exploit this, the attacker must already have access to the system and be able to connect their device to it.

This vulnerability allows an attacker who has already logged into a Windows 10 system to run malicious code with high-level permissions, potentially letting them install software, access or modify files, or create new user accounts. To exploit it, the attacker needs to run a specially crafted application on the system.

This vulnerability allows an attacker to gather sensitive information from a Windows 10 system that has the Routing and Remote Access feature enabled, potentially leading to further attacks. However, only systems with this feature turned on are at risk, as it is not enabled by default.

An attacker can take control of a victim's computer, allowing them to install programs, change or delete files, or create new user accounts with full access. This vulnerability can be exploited if the victim opens a specially crafted document or visits a malicious website.

An attacker can take over a user's account by tricking them into visiting a malicious website that steals their login token. This requires the user to click on a specially crafted link, making it crucial for users to be cautious about where they browse.

This vulnerability allows an attacker who has logged into a Windows 10 system to run a specially crafted application that can reveal sensitive information, potentially leading to further attacks on the system. While it doesn't let the attacker execute code or gain higher privileges directly, the leaked information could help them compromise the system in other ways.

An attacker can inject malicious code into a signed CAB file without breaking its signature, allowing them to trick a user into running the compromised file. To exploit this, the attacker needs to modify the CAB file and convince the target user to execute it.

This vulnerability allows an attacker to access sensitive information from a user's system, which could help them take further control of the device. To exploit it, the attacker might trick the user into opening a malicious document or visiting a harmful website.

This vulnerability allows an attacker to access sensitive information from a user's system, which could help them take further control of it. To exploit this, the attacker might trick the user into opening a malicious document or visiting a harmful website.

An attacker can exploit this vulnerability to access sensitive information from a user's system, potentially leading to further attacks. However, they need to be authenticated and must run a specially crafted application on the target machine to take advantage of this flaw.

An attacker with a privileged account on a virtual machine can crash the host server by running a specially crafted application. This vulnerability relies on the attacker already having elevated access within the guest operating system.

An attacker with a privileged account on a virtual machine can crash the host server by running a specially crafted application, causing a denial of service. This vulnerability affects systems using Microsoft Hyper-V Network Switch, and it requires the attacker to already have elevated access within the guest operating system.

An attacker with a privileged account on a virtual machine can crash the host server by running a specially crafted application, leading to a denial of service. This vulnerability specifically affects the Microsoft Hyper-V Network Switch, and it requires the attacker to already have elevated access on the guest operating system.

An attacker can cause a Windows 10 system to freeze and stop responding by logging in and running a specially crafted application. However, they cannot execute malicious code or gain higher privileges through this vulnerability.

An attacker with a privileged account on a virtual machine can crash the host server by running a specially crafted application, disrupting services for all users. This vulnerability requires the attacker to already have elevated access within the guest operating system.

An attacker with a privileged account on a virtual machine can crash the host server by running a specially crafted application, leading to a denial of service. This vulnerability requires the attacker to already have elevated access within the guest operating system.