Windows · Fixed build

10.0.19045.4291

MSRC advisory

63 CVEs fixed by this build, deployed across 1 Windows SKUs.

Published on: 2021-07-13
SKUs covered: 1
CVEs fixed: 63

Windows SKUs covered by this build

The SKUs below share this MSRC build number. Deploying the corresponding KB secures all of them at once.

Windows 10 22H2 · 2022-H2

CISA KEV: 1
Critical: 0
High: 63
NVD pending: 0

CVEs fixed by this build

CVE	Severity	KEV	Published	Description
CVE-2024-29988 2024-04-09 KEV SmartScreen Prompt Security Feature Bypass Vulnerability	HIGH 8.8	KEV	2024-04-09	SmartScreen Prompt Security Feature Bypass Vulnerability
CVE-2024-20678 2024-04-09 Remote Procedure Call Runtime Remote Code Execution Vulnerability	HIGH 8.8	—	2024-04-09	Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2024-26179 2024-04-09 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	HIGH 8.8	—	2024-04-09	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2024-26200 2024-04-09 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	HIGH 8.8	—	2024-04-09	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2024-26205 2024-04-09 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	HIGH 8.8	—	2024-04-09	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2024-26210 2024-04-09 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability	HIGH 8.8	—	2024-04-09	Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-26244 2024-04-09 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability	HIGH 8.8	—	2024-04-09	Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-26214 2024-04-09 Microsoft WDAC SQL Server ODBC Driver Remote Code Execution Vulnerability	HIGH 8.8	—	2024-04-09	Microsoft WDAC SQL Server ODBC Driver Remote Code Execution Vulnerability
CVE-2024-29050 2024-04-09 Windows Cryptographic Services Remote Code Execution Vulnerability	HIGH 8.4	—	2024-04-09	Windows Cryptographic Services Remote Code Execution Vulnerability
CVE-2024-26180 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 8.0	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26189 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 8.0	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26240 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 8.0	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-28925 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 8.0	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-20693 2024-04-09 Windows Kernel Elevation of Privilege Vulnerability	HIGH 7.8	—	2024-04-09	Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-21447 2024-04-09 Windows Authentication Elevation of Privilege Vulnerability	HIGH 7.8	—	2024-04-09	Windows Authentication Elevation of Privilege Vulnerability
CVE-2024-26158 2024-04-09 Microsoft Install Service Elevation of Privilege Vulnerability	HIGH 7.8	—	2024-04-09	Microsoft Install Service Elevation of Privilege Vulnerability
CVE-2024-28920 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 7.8	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26175 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 7.8	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26218 2024-04-09 Windows Kernel Elevation of Privilege Vulnerability	HIGH 7.8	—	2024-04-09	Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-26241 2024-04-09 Win32k Elevation of Privilege Vulnerability	HIGH 7.8	—	2024-04-09	Win32k Elevation of Privilege Vulnerability
CVE-2024-26229 2024-04-09 Windows CSC Service Elevation of Privilege Vulnerability	HIGH 7.8	—	2024-04-09	Windows CSC Service Elevation of Privilege Vulnerability
CVE-2024-26237 2024-04-09 Windows Defender Credential Guard Elevation of Privilege Vulnerability	HIGH 7.8	—	2024-04-09	Windows Defender Credential Guard Elevation of Privilege Vulnerability
CVE-2024-26228 2024-04-09 Windows Cryptographic Services Security Feature Bypass Vulnerability	HIGH 7.8	—	2024-04-09	Windows Cryptographic Services Security Feature Bypass Vulnerability
CVE-2024-26230 2024-04-09 Windows Telephony Server Elevation of Privilege Vulnerability	HIGH 7.8	—	2024-04-09	Windows Telephony Server Elevation of Privilege Vulnerability
CVE-2024-26239 2024-04-09 Windows Telephony Server Elevation of Privilege Vulnerability	HIGH 7.8	—	2024-04-09	Windows Telephony Server Elevation of Privilege Vulnerability
CVE-2024-29052 2024-04-09 Windows Storage Elevation of Privilege Vulnerability	HIGH 7.8	—	2024-04-09	Windows Storage Elevation of Privilege Vulnerability
CVE-2024-29061 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 7.8	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26254 2024-04-09 Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability	HIGH 7.5	—	2024-04-09	Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability
CVE-2024-28896 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 7.5	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26219 2024-04-09 HTTP.sys Denial of Service Vulnerability	HIGH 7.5	—	2024-04-09	HTTP.sys Denial of Service Vulnerability
CVE-2024-26248 2024-04-09 Windows Kerberos Elevation of Privilege Vulnerability	HIGH 7.5	—	2024-04-09	Windows Kerberos Elevation of Privilege Vulnerability
CVE-2024-26194 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 7.4	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26232 2024-04-09 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability	HIGH 7.3	—	2024-04-09	Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
CVE-2024-26208 2024-04-09 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability	HIGH 7.2	—	2024-04-09	Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
CVE-2024-29062 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 7.1	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26243 2024-04-09 Windows USB Print Driver Elevation of Privilege Vulnerability	HIGH 7.0	—	2024-04-09	Windows USB Print Driver Elevation of Privilege Vulnerability
CVE-2024-26242 2024-04-09 Windows Telephony Server Elevation of Privilege Vulnerability	HIGH 7.0	—	2024-04-09	Windows Telephony Server Elevation of Privilege Vulnerability
CVE-2024-26252 2024-04-09 Windows rndismp6.sys Remote Code Execution Vulnerability	HIGH 6.8	—	2024-04-09	Windows rndismp6.sys Remote Code Execution Vulnerability
CVE-2024-26253 2024-04-09 Windows rndismp6.sys Remote Code Execution Vulnerability	HIGH 6.8	—	2024-04-09	Windows rndismp6.sys Remote Code Execution Vulnerability
CVE-2024-26168 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 6.8	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-28897 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 6.8	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-20669 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 6.7	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26250 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 6.7	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-28921 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 6.7	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-28919 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 6.7	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-28903 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 6.7	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-23593 2024-04-09 Lenovo: CVE-2024-23593 Modify Boot Manager and Escalate Privileges	HIGH 6.7	—	2024-04-09	Lenovo: CVE-2024-23593 Modify Boot Manager and Escalate Privileges
CVE-2024-26171 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 6.7	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26234 2024-04-09 Proxy Driver Spoofing Vulnerability	HIGH 6.7	—	2024-04-09	Proxy Driver Spoofing Vulnerability
CVE-2024-28924 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 6.7	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-26183 2024-04-09 Windows Kerberos Denial of Service Vulnerability	HIGH 6.5	—	2024-04-09	Windows Kerberos Denial of Service Vulnerability
CVE-2024-23594 2024-04-09 Lenovo: CVE-2024-23594 Stack buffer overflow in Lenovo system recovery boot manager	HIGH 6.4	—	2024-04-09	Lenovo: CVE-2024-23594 Stack buffer overflow in Lenovo system recovery boot manager
CVE-2024-28898 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 6.3	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-29064 2024-04-09 Windows Hyper-V Denial of Service Vulnerability	HIGH 6.2	—	2024-04-09	Windows Hyper-V Denial of Service Vulnerability
CVE-2024-20665 2024-04-09 BitLocker Security Feature Bypass Vulnerability	HIGH 6.1	—	2024-04-09	BitLocker Security Feature Bypass Vulnerability
CVE-2024-26255 2024-04-09 Windows Remote Access Connection Manager Information Disclosure Vulnerability	HIGH 5.5	—	2024-04-09	Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2024-26172 2024-04-09 Windows DWM Core Library Information Disclosure Vulnerability	HIGH 5.5	—	2024-04-09	Windows DWM Core Library Information Disclosure Vulnerability
CVE-2024-28901 2024-04-09 Windows Remote Access Connection Manager Information Disclosure Vulnerability	HIGH 5.5	—	2024-04-09	Windows Remote Access Connection Manager Information Disclosure Vulnerability
CVE-2024-26209 2024-04-09 Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability	HIGH 5.5	—	2024-04-09	Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
CVE-2024-26220 2024-04-09 Windows Mobile Hotspot Information Disclosure Vulnerability	HIGH 5.0	—	2024-04-09	Windows Mobile Hotspot Information Disclosure Vulnerability
CVE-2022-0001 2024-04-09 Intel: CVE-2022-0001 Branch History Injection	HIGH 4.7	—	2024-04-09	Intel: CVE-2022-0001 Branch History Injection
CVE-2024-28922 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH 4.1	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability
CVE-2024-28923 2024-04-09 Secure Boot Security Feature Bypass Vulnerability	HIGH	—	2024-04-09	Secure Boot Security Feature Bypass Vulnerability