CVE-2010-4398
Microsoft Windows Kernel Stack-Based Buffer Overflow Vulnerability
CVSS
—
Sin CVSS
EPSS
8.7%
p95
KEV
SÍ
28 mar 2022
Exploit Today
78
0-100
Publicado: — · Última mod.: —
8.7%EPSS · 30 días8.7%
2026-06-302026-07-17
Producto
Microsoft / Windows
Vulnerabilidad
Microsoft Windows Kernel Stack-Based Buffer Overflow Vulnerability
Añadido a KEV
28 mar 2022
Remediar antes de
21 abr 2022
Uso conocido en ransomware
No
Descripción resumida
Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows allows local users to gain privileges, and bypass the User Account Control (UAC) feature.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2010-4398
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2025-59287—100.0%
KEV—80Microsoft Windows Server Update Service (WSUS) Deserialization of Untrusted Data Vulnerability—CVE-2021-34527—100.0%
KEV—80Microsoft Windows Print Spooler Remote Code Execution Vulnerability—CVE-2023-36884—99.9%
KEV—80Microsoft Windows Search Remote Code Execution Vulnerability—CVE-2022-30190—99.9%
KEV—80Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability—CVE-2008-4250—99.9%
KEV—80Microsoft Windows Buffer Overflow Vulnerability—CVE-2024-21412—99.9%
KEV—80Microsoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability—