What is the CVSS score of CVE-2010-0232?

CVE-2010-0232 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 72.6%.

Which versions of Microsoft are affected by CVE-2010-0232?

Organizations using Microsoft Windows NT 3.1 face notable risk from CVE-2010-0232 rated CVSS 7.8. Exploitation could compromise the security of affected deployments.. A patch is available.

Is there a public PoC exploit available for CVE-2010-0232?

Yes, a public proof-of-concept exploit is available for CVE-2010-0232. Prioritise patching immediately. EPSS: 72.6%.

How to fix or mitigate CVE-2010-0232?

Within 24 hours: Identify all affected systems running Microsoft Windows NT 3.1 and apply vendor patches immediately. Vendor patch is available.

Microsoft CVE-2010-0232

HIGH

2010-01-21 secure@microsoft.com

Information Disclosure Microsoft

7.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.8 HIGH

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Re-analysis Queued

Apr 21, 2026 - 15:22 vuln.today

cvss_changed

Analysis Generated

Mar 26, 2026 - 11:17 vuln.today

Added to CISA KEV

Oct 22, 2025 - 01:15 cisa

CISA KEV

PoC Detected

Oct 22, 2025 - 01:15 vuln.today

Public exploit code

Patch released

Oct 22, 2025 - 01:15 nvd

Patch available

CVE Published

Jan 21, 2010 - 19:30 nvd

HIGH 7.8

DescriptionCVE.org

The kernel in Microsoft Windows NT 3.1 through Windows 7, including Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, and Windows Server 2008 Gold and SP2, when access to 16-bit applications is enabled on a 32-bit x86 platform, does not properly validate certain BIOS calls, which allows local users to gain privileges by crafting a VDM_TIB data structure in the Thread Environment Block (TEB), and then calling the NtVdmControl function to start the Windows Virtual DOS Machine (aka NTVDM) subsystem, leading to improperly handled exceptions involving the #GP trap handler (nt!KiTrap0D), aka "Windows Kernel Exception Handler Vulnerability."

AnalysisAI

The Windows kernel from NT 3.1 through Windows 7 improperly validates BIOS calls on 32-bit x86 platforms with 16-bit application support enabled, allowing local users to gain SYSTEM privileges and bypass UAC.

Technical ContextAI

When 16-bit application support is enabled on 32-bit Windows, the kernel fails to properly validate certain BIOS interrupt calls. A local attacker can craft a malicious 16-bit application that exploits this validation gap to execute code with ring-0 privileges.

RemediationAI

Apply Microsoft security update. Disable 16-bit application support via Group Policy (NTVDM subsystem) on systems that don't require legacy application compatibility.

CVE-2010-0232 vulnerability details – vuln.today

Back

Microsoft CVE-2010-0232

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code