What is the severity of CVE-2010-2568?

CVE-2010-2568 has a CVSS v3 score of 7.8, which is classified as High severity.

Is there an exploit available for CVE-2010-2568?

Yes, there are known exploits available for CVE-2010-2568. Immediate patching is recommended.

Is there a patch available for CVE-2010-2568?

Yes, patches are available for CVE-2010-2568. Check the vendor advisories for update instructions.

CVE-2010-2568

Published: January 28, 2026

Last updated:18 hours ago (January 28, 2026)

Exploit: YesZero-day: YesPatch: YesTrend: Neutral

TL;DR

Updated January 28, 2026

CVE-2010-2568 is a high severity vulnerability with a CVSS score of 7.8. Exploits are available; patches have been released and should be applied urgently. This is classified as a zero-day vulnerability.

Key Points

1High severity (CVSS 7.8/10)
2EPSS: 93.00% - very high likelihood of exploitation
3Public exploits are available
4Vendor patches are available
5Strobes Priority Score: 814/1000 (High)
6Affects products from: Microsoft

Severity Scores

CVSS v37.8

CVSS v29.3

Priority Score814.0

EPSS Score93.0

High

Exploitation LikelihoodCritical

93.00%EPSS

Very high probability of exploitation in the next 30 days

Immediate patching required

93.00%

EPSS

7.8

CVSS

Yes

Exploit

Yes

Patch

High Priority

high EPSS • exploit exists

EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.

Description

Microsoft Windows incorrectly parses shortcuts in such a way that malicious code may be executed when the operating system displays the icon of a malicious shortcut file. An attacker who successfully exploited this vulnerability could execute code as the logged-on user.

CVSS v3 Breakdown

Attack Vector:Local

Attack Complexity:Local

Privileges Required:Network

User Interaction:Required

Scope:Unchanged

Confidentiality:High

Integrity:High

Availability:High

Exploit References

Cisa.gov Metasploit [email protected][email protected][email protected]Proofpoint Emerging Threats

Patch References

[email protected][email protected][email protected][email protected]Zeroday CZ Zeroday CZ

Trend Analysis

Neutral

Vulnerable Products

Vendor	Product
Microsoft	Windows 7
Microsoft	Windows Server 2008
Microsoft	Windows Xp
Microsoft	Windows Vista
Microsoft	Windows Server 2003

Advisories

CISA: Microsoft Windows incorrectly parses shortcuts in such a way that malicious code may be executed when the operating system displays the icon of a malicious shortcut file. An attacker who successfully exploited this vulnerability could execute code as the logged-on user.

GitHub Advisory NVD

Cite This Page

APA Format

Strobes VI. (2026). CVE-2010-2568 - CVE Details and Analysis. Strobes VI. Retrieved January 29, 2026, from https://vi.strobes.co/cve/CVE-2010-2568

Quick copy link + title

Please cite this page when referencing data from Strobes VI. Proper attribution helps support our vulnerability intelligence research.

Vendor

Product

Microsoft

Windows 7

Microsoft

Windows Server 2008

Microsoft

Windows Xp

Microsoft

Windows Vista

Microsoft

Windows Server 2003