Windows · Fixed build

10.0.19042.1466

MSRC advisory

74 CVEs fixed by this build, deployed across 1 Windows SKUs.

Published on: 2020-11-10
SKUs covered: 1
CVEs fixed: 74

Windows SKUs covered by this build

The SKUs below share this MSRC build number. Deploying the corresponding KB secures all of them at once.

Windows 10 20H2 · 2020-H2

CISA KEV: 2
Critical: 6
High: 68
NVD pending: 0

CVEs fixed by this build

CVE	Severity	KEV	Published	Description
CVE-2022-21919 2022-01-11 KEV Windows User Profile Service Elevation of Privilege Vulnerability	HIGH 7.0	KEV	2022-01-11	Windows User Profile Service Elevation of Privilege Vulnerability
CVE-2022-21882 2022-01-11 KEV Win32k Elevation of Privilege Vulnerability	HIGH 7.0	KEV	2022-01-11	Win32k Elevation of Privilege Vulnerability
CVE-2022-21907 2022-01-11 HTTP Protocol Stack Remote Code Execution Vulnerability	CRITICAL 9.8	—	2022-01-11	HTTP Protocol Stack Remote Code Execution Vulnerability
CVE-2022-21849 2022-01-11 Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability	HIGH 9.8	—	2022-01-11	Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability
CVE-2022-21857 2022-01-11 Active Directory Domain Services Elevation of Privilege Vulnerability	CRITICAL 8.8	—	2022-01-11	Active Directory Domain Services Elevation of Privilege Vulnerability
CVE-2022-21920 2022-01-11 Windows Kerberos Elevation of Privilege Vulnerability	HIGH 8.8	—	2022-01-11	Windows Kerberos Elevation of Privilege Vulnerability
CVE-2022-21922 2022-01-11 Remote Procedure Call Runtime Remote Code Execution Vulnerability	HIGH 8.8	—	2022-01-11	Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2022-21850 2022-01-11 Remote Desktop Client Remote Code Execution Vulnerability	HIGH 8.8	—	2022-01-11	Remote Desktop Client Remote Code Execution Vulnerability
CVE-2022-21851 2022-01-11 Remote Desktop Client Remote Code Execution Vulnerability	HIGH 8.8	—	2022-01-11	Remote Desktop Client Remote Code Execution Vulnerability
CVE-2022-21893 2022-01-11 Remote Desktop Protocol Remote Code Execution Vulnerability	HIGH 8.0	—	2022-01-11	Remote Desktop Protocol Remote Code Execution Vulnerability
CVE-2022-21852 2022-01-11 Windows DWM Core Library Elevation of Privilege Vulnerability	HIGH 7.8	—	2022-01-11	Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2022-21858 2022-01-11 Windows Bind Filter Driver Elevation of Privilege Vulnerability	HIGH 7.8	—	2022-01-11	Windows Bind Filter Driver Elevation of Privilege Vulnerability
CVE-2022-21874 2022-01-11 Windows Security Center API Remote Code Execution Vulnerability	HIGH 7.8	—	2022-01-11	Windows Security Center API Remote Code Execution Vulnerability
CVE-2022-21902 2022-01-11 Windows DWM Core Library Elevation of Privilege Vulnerability	HIGH 7.8	—	2022-01-11	Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2022-21908 2022-01-11 Windows Installer Elevation of Privilege Vulnerability	HIGH 7.8	—	2022-01-11	Windows Installer Elevation of Privilege Vulnerability
CVE-2022-21912 2022-01-11 DirectX Graphics Kernel Remote Code Execution Vulnerability	CRITICAL 7.8	—	2022-01-11	DirectX Graphics Kernel Remote Code Execution Vulnerability
CVE-2022-21836 2022-01-11 Windows Certificate Spoofing Vulnerability	HIGH 7.8	—	2022-01-11	Windows Certificate Spoofing Vulnerability
CVE-2022-21914 2022-01-11 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	HIGH 7.8	—	2022-01-11	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2022-21895 2022-01-11 Windows User Profile Service Elevation of Privilege Vulnerability	HIGH 7.8	—	2022-01-11	Windows User Profile Service Elevation of Privilege Vulnerability
CVE-2022-21916 2022-01-11 Windows Common Log File System Driver Elevation of Privilege Vulnerability	HIGH 7.8	—	2022-01-11	Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2022-21835 2022-01-11 Microsoft Cryptographic Services Elevation of Privilege Vulnerability	HIGH 7.8	—	2022-01-11	Microsoft Cryptographic Services Elevation of Privilege Vulnerability
CVE-2022-21833 2022-01-11 Virtual Machine IDE Drive Elevation of Privilege Vulnerability	CRITICAL 7.8	—	2022-01-11	Virtual Machine IDE Drive Elevation of Privilege Vulnerability
CVE-2022-21888 2022-01-11 Windows Modern Execution Server Remote Code Execution Vulnerability	HIGH 7.8	—	2022-01-11	Windows Modern Execution Server Remote Code Execution Vulnerability
CVE-2022-21885 2022-01-11 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	HIGH 7.8	—	2022-01-11	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
CVE-2022-21878 2022-01-11 Windows Geolocation Service Remote Code Execution Vulnerability	HIGH 7.8	—	2022-01-11	Windows Geolocation Service Remote Code Execution Vulnerability
CVE-2022-21897 2022-01-11 Windows Common Log File System Driver Elevation of Privilege Vulnerability	HIGH 7.8	—	2022-01-11	Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2022-21898 2022-01-11 DirectX Graphics Kernel Remote Code Execution Vulnerability	CRITICAL 7.8	—	2022-01-11	DirectX Graphics Kernel Remote Code Execution Vulnerability
CVE-2022-21843 2022-01-11 Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability	HIGH 7.5	—	2022-01-11	Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability
CVE-2022-21904 2022-01-11 Windows GDI Information Disclosure Vulnerability	HIGH 7.5	—	2022-01-11	Windows GDI Information Disclosure Vulnerability
CVE-2022-21848 2022-01-11 Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability	HIGH 7.5	—	2022-01-11	Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
CVE-2022-21890 2022-01-11 Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability	HIGH 7.5	—	2022-01-11	Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
CVE-2022-21889 2022-01-11 Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability	HIGH 7.5	—	2022-01-11	Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
CVE-2022-21883 2022-01-11 Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability	HIGH 7.5	—	2022-01-11	Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability
CVE-2022-21880 2022-01-11 Windows GDI+ Information Disclosure Vulnerability	HIGH 7.5	—	2022-01-11	Windows GDI+ Information Disclosure Vulnerability
CVE-2022-21872 2022-01-11 Windows Event Tracing Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2022-21859 2022-01-11 Windows Accounts Control Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows Accounts Control Elevation of Privilege Vulnerability
CVE-2022-21860 2022-01-11 Windows AppContracts API Server Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows AppContracts API Server Elevation of Privilege Vulnerability
CVE-2022-21861 2022-01-11 Task Flow Data Engine Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Task Flow Data Engine Elevation of Privilege Vulnerability
CVE-2022-21862 2022-01-11 Windows Application Model Core API Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows Application Model Core API Elevation of Privilege Vulnerability
CVE-2022-21863 2022-01-11 Windows StateRepository API Server file Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows StateRepository API Server file Elevation of Privilege Vulnerability
CVE-2022-21864 2022-01-11 Windows UI Immersive Server API Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows UI Immersive Server API Elevation of Privilege Vulnerability
CVE-2022-21865 2022-01-11 Connected Devices Platform Service Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Connected Devices Platform Service Elevation of Privilege Vulnerability
CVE-2022-21866 2022-01-11 Windows System Launcher Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows System Launcher Elevation of Privilege Vulnerability
CVE-2022-21867 2022-01-11 Windows Push Notifications Apps Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows Push Notifications Apps Elevation of Privilege Vulnerability
CVE-2022-21868 2022-01-11 Windows Devices Human Interface Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows Devices Human Interface Elevation of Privilege Vulnerability
CVE-2022-21869 2022-01-11 Clipboard User Service Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Clipboard User Service Elevation of Privilege Vulnerability
CVE-2022-21870 2022-01-11 Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability
CVE-2022-21871 2022-01-11 Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability
CVE-2022-21873 2022-01-11 Tile Data Repository Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Tile Data Repository Elevation of Privilege Vulnerability
CVE-2022-21875 2022-01-11 Windows Storage Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows Storage Elevation of Privilege Vulnerability
CVE-2022-21834 2022-01-11 Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability
CVE-2022-21881 2022-01-11 Windows Kernel Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-21896 2022-01-11 Windows DWM Core Library Elevation of Privilege Vulnerability	HIGH 7.0	—	2022-01-11	Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2022-21958 2022-01-11 Windows Resilient File System (ReFS) Remote Code Execution Vulnerability	HIGH 6.8	—	2022-01-11	Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2022-21959 2022-01-11 Windows Resilient File System (ReFS) Remote Code Execution Vulnerability	HIGH 6.8	—	2022-01-11	Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2022-21960 2022-01-11 Windows Resilient File System (ReFS) Remote Code Execution Vulnerability	HIGH 6.8	—	2022-01-11	Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2022-21961 2022-01-11 Windows Resilient File System (ReFS) Remote Code Execution Vulnerability	HIGH 6.8	—	2022-01-11	Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2022-21962 2022-01-11 Windows Resilient File System (ReFS) Remote Code Execution Vulnerability	HIGH 6.8	—	2022-01-11	Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2022-21892 2022-01-11 Windows Resilient File System (ReFS) Remote Code Execution Vulnerability	HIGH 6.8	—	2022-01-11	Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2022-21915 2022-01-11 Windows GDI+ Information Disclosure Vulnerability	HIGH 6.5	—	2022-01-11	Windows GDI+ Information Disclosure Vulnerability
CVE-2022-21918 2022-01-11 DirectX Graphics Kernel File Denial of Service Vulnerability	HIGH 6.5	—	2022-01-11	DirectX Graphics Kernel File Denial of Service Vulnerability
CVE-2022-21963 2022-01-11 Windows Resilient File System (ReFS) Remote Code Execution Vulnerability	HIGH 6.4	—	2022-01-11	Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2022-21928 2022-01-11 Windows Resilient File System (ReFS) Remote Code Execution Vulnerability	HIGH 6.3	—	2022-01-11	Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2022-21876 2022-01-11 Win32k Information Disclosure Vulnerability	HIGH 5.5	—	2022-01-11	Win32k Information Disclosure Vulnerability
CVE-2022-21877 2022-01-11 Storage Spaces Controller Information Disclosure Vulnerability	HIGH 5.5	—	2022-01-11	Storage Spaces Controller Information Disclosure Vulnerability
CVE-2022-21906 2022-01-11 Windows Defender Application Control Security Feature Bypass Vulnerability	HIGH 5.5	—	2022-01-11	Windows Defender Application Control Security Feature Bypass Vulnerability
CVE-2022-21838 2022-01-11 Windows Cleanup Manager Elevation of Privilege Vulnerability	HIGH 5.5	—	2022-01-11	Windows Cleanup Manager Elevation of Privilege Vulnerability
CVE-2022-21879 2022-01-11 Windows Kernel Elevation of Privilege Vulnerability	HIGH 5.5	—	2022-01-11	Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-21913 2022-01-11 Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass	HIGH 5.3	—	2022-01-11	Local Security Authority (Domain Policy) Remote Protocol Security Feature Bypass
CVE-2022-21924 2022-01-11 Workstation Service Remote Protocol Security Feature Bypass Vulnerability	HIGH 5.3	—	2022-01-11	Workstation Service Remote Protocol Security Feature Bypass Vulnerability
CVE-2022-21921 2022-01-11 Windows Defender Credential Guard Security Feature Bypass Vulnerability	HIGH 4.4	—	2022-01-11	Windows Defender Credential Guard Security Feature Bypass Vulnerability
CVE-2022-21894 2022-01-11 Secure Boot Security Feature Bypass Vulnerability	HIGH 4.4	—	2022-01-11	Secure Boot Security Feature Bypass Vulnerability
CVE-2021-22947 2022-01-11 Open Source Curl Remote Code Execution Vulnerability	CRITICAL	—	2022-01-11	Open Source Curl Remote Code Execution Vulnerability
CVE-2021-36976 2022-01-11 Libarchive Remote Code Execution Vulnerability	HIGH	—	2022-01-11	Libarchive Remote Code Execution Vulnerability