Windows 10 1607 CVE Vulnerabilities

By Microsoft17 known vulnerabilities

Critical
0
High
14
Medium
3
Low
0
None
0

All Windows 10 1607 CVEs

Recent Highest Score Oldest
CVE-2026-40414
7.4 high

Windows TCP/IP Denial of Service Vulnerability

May 12, 2026
CVE-2026-40413
7.4 high

Windows TCP/IP Denial of Service Vulnerability

May 12, 2026
CVE-2026-40401
7.1 high

Windows TCP/IP Denial of Service Vulnerability

May 12, 2026
CVE-2026-40399
7.8 high

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally.

May 12, 2026
CVE-2026-40397
7.8 high

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

May 12, 2026
CVE-2026-35416
7.0 high

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

May 12, 2026
CVE-2026-34345
7.0 high

Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

May 12, 2026
CVE-2026-34336
7.8 high

Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

May 12, 2026
CVE-2026-34330
7.8 high

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

May 12, 2026
CVE-2026-32170
6.7 medium

Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.

May 12, 2026
CVE-2026-21530
6.7 medium

Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.

May 12, 2026
CVE-2026-32202
4.3 medium

Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network.

Apr 14, 2026
CVE-2026-32077
7.8 high

Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.

Apr 14, 2026
CVE-2026-26128
7.8 high

Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.

Mar 10, 2026
CVE-2026-25187
7.8 high

Improper link resolution before file access ('link following') in Winlogon allows an authorized attacker to elevate privileges locally.

Mar 10, 2026
CVE-2026-20931
8.0 high

External control of file name or path in Windows Telephony Service allows an authorized attacker to elevate privileges over an adjacent network.

Jan 13, 2026
CVE-2026-20921
7.5 high

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SMB Server allows an authorized attacker to elevate privileges over a network.

Jan 13, 2026