Lucene search

Windows 11 23H2 Security Vulnerabilities

cve

CVE-2023-20588

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.

5.5CVSS

6.7AI Score

0.001EPSS

2023-08-08 06:15 PM

186

cve

CVE-2023-21740

Windows Media Remote Code Execution Vulnerability

7.8CVSS

8.2AI Score

0.001EPSS

2023-12-12 06:15 PM

cve

CVE-2023-24023

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.

6.8CVSS

6.8AI Score

0.003EPSS

2023-11-28 07:15 AM

113

cve

CVE-2023-24932

Secure Boot Security Feature Bypass Vulnerability

6.7CVSS

6.9AI Score

0.13EPSS

2023-05-09 06:15 PM

268

In Wild

cve

CVE-2023-35628

Windows MSHTML Platform Remote Code Execution Vulnerability

8.1CVSS

8.8AI Score

0.035EPSS

2023-12-12 06:15 PM

cve

CVE-2023-35630

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8CVSS

8.7AI Score

0.001EPSS

2023-12-12 06:15 PM

cve

CVE-2023-35631

Win32k Elevation of Privilege Vulnerability

7.8CVSS

8AI Score

0.0005EPSS

2023-12-12 06:15 PM

cve

CVE-2023-35634

Windows Bluetooth Driver Remote Code Execution Vulnerability

8.8CVSS

9.1AI Score

0.001EPSS

2023-12-12 06:15 PM

cve

CVE-2023-35635

Windows Kernel Denial of Service Vulnerability

5.5CVSS

6.2AI Score

0.001EPSS

2023-12-12 06:15 PM

cve

CVE-2023-35639

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS

9AI Score

0.033EPSS

2023-12-12 06:15 PM

cve

CVE-2023-35641

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8CVSS

9AI Score

0.001EPSS

2023-12-12 06:15 PM

cve

CVE-2023-35642

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS

7.5AI Score

0.001EPSS

2023-12-12 06:15 PM

cve

CVE-2023-35644

Windows Sysmain Service Elevation of Privilege

7.8CVSS

8AI Score

0.0005EPSS

2023-12-12 06:15 PM

cve

CVE-2023-36003

XAML Diagnostics Elevation of Privilege Vulnerability

7.3CVSS

7.4AI Score

0.002EPSS

2023-12-12 06:15 PM

cve

CVE-2023-36004

Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability

7.5CVSS

7.5AI Score

0.002EPSS

2023-12-12 06:15 PM

cve

CVE-2023-36005

Windows Telephony Server Elevation of Privilege Vulnerability

8.1CVSS

8.1AI Score

0.001EPSS

2023-12-12 06:15 PM

cve

CVE-2023-36006

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS

9.2AI Score

0.033EPSS

2023-12-12 06:15 PM

cve

CVE-2023-36011

Win32k Elevation of Privilege Vulnerability

7.8CVSS

8AI Score

0.0005EPSS

2023-12-12 06:15 PM

cve

CVE-2023-36017

Windows Scripting Engine Memory Corruption Vulnerability

8.8CVSS

8.5AI Score

0.005EPSS

2023-11-14 06:15 PM

123

cve

CVE-2023-36025

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS

8.7AI Score

0.005EPSS

2023-11-14 06:15 PM

305

In Wild

cve

CVE-2023-36028

Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

9.8CVSS

9.4AI Score

0.57EPSS

2023-11-14 06:15 PM

131

cve

CVE-2023-36033

Windows DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS

8.3AI Score

0.0004EPSS

2023-11-14 06:15 PM

271

In Wild

cve

CVE-2023-36036

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS

8.3AI Score

0.0004EPSS

2023-11-14 06:15 PM

253

In Wild

cve

CVE-2023-36046

Windows Authentication Denial of Service Vulnerability

7.1CVSS

7.2AI Score

0.0005EPSS

2023-11-14 06:15 PM

cve

CVE-2023-36047

Windows Authentication Elevation of Privilege Vulnerability

7.8CVSS

8AI Score

0.0005EPSS

2023-11-14 06:15 PM

123

cve

CVE-2023-36391

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability

7.8CVSS

8.1AI Score

0.0005EPSS

2023-12-12 06:15 PM

cve

CVE-2023-36393

Windows User Interface Application Core Remote Code Execution Vulnerability

7.8CVSS

8.2AI Score

0.001EPSS

2023-11-14 06:15 PM

130

cve

CVE-2023-36396

Windows Compressed Folder Remote Code Execution Vulnerability

7.8CVSS

7.9AI Score

0.001EPSS

2023-11-14 06:15 PM

cve

CVE-2023-36397

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS

9.5AI Score

0.018EPSS

2023-11-14 06:15 PM

153

cve

CVE-2023-36398

Windows NTFS Information Disclosure Vulnerability

6.5CVSS

6.6AI Score

0.0005EPSS

2023-11-14 06:15 PM

113

cve

CVE-2023-36399

Windows Storage Elevation of Privilege Vulnerability

7.1CVSS

8AI Score

0.0005EPSS

2023-11-14 06:15 PM

cve

CVE-2023-36400

Windows HMAC Key Derivation Elevation of Privilege Vulnerability

8.8CVSS

9AI Score

0.0005EPSS

2023-11-14 06:15 PM

108

cve

CVE-2023-36401

Microsoft Remote Registry Service Remote Code Execution Vulnerability

7.2CVSS

7.4AI Score

0.002EPSS

2023-11-14 06:15 PM

112

cve

CVE-2023-36402

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS

9.2AI Score

0.05EPSS

2023-11-14 06:15 PM

138

cve

CVE-2023-36403

Windows Kernel Elevation of Privilege Vulnerability

7CVSS

7.2AI Score

0.001EPSS

2023-11-14 06:15 PM

111

cve

CVE-2023-36404

Windows Kernel Information Disclosure Vulnerability

5.5CVSS

5.9AI Score

0.0005EPSS

2023-11-14 06:15 PM

113

cve

CVE-2023-36405

Windows Kernel Elevation of Privilege Vulnerability

7CVSS

7.2AI Score

0.0005EPSS

2023-11-14 06:15 PM

192

cve

CVE-2023-36406

Windows Hyper-V Information Disclosure Vulnerability

5.5CVSS

5.9AI Score

0.0005EPSS

2023-11-14 06:15 PM

121

cve

CVE-2023-36407

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS

8AI Score

0.002EPSS

2023-11-14 06:15 PM

cve

CVE-2023-36408

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS

7.9AI Score

0.0005EPSS

2023-11-14 06:15 PM

cve

CVE-2023-36423

Microsoft Remote Registry Service Remote Code Execution Vulnerability

8.8CVSS

8.9AI Score

0.002EPSS

2023-11-14 06:15 PM

125

cve

CVE-2023-36424

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS

8.4AI Score

0.002EPSS

2023-11-14 06:15 PM

142

cve

CVE-2023-36425

Windows Distributed File System (DFS) Remote Code Execution Vulnerability

8CVSS

8.2AI Score

0.008EPSS

2023-11-14 06:15 PM

123

cve

CVE-2023-36427

Windows Hyper-V Elevation of Privilege Vulnerability

7CVSS

7.2AI Score

0.002EPSS

2023-11-14 06:15 PM

112

cve

CVE-2023-36428

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

5.5CVSS

5.9AI Score

0.0005EPSS

2023-11-14 06:15 PM

118

cve

CVE-2023-36696

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS

8AI Score

0.0005EPSS

2023-12-12 06:15 PM

cve

CVE-2023-36705

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS

7.9AI Score

0.0005EPSS

2023-11-14 06:15 PM

226

cve

CVE-2023-36719

Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability

7.8CVSS

7.9AI Score

0.0005EPSS

2023-11-14 06:15 PM

221

cve

CVE-2023-38039

When curl retrieves an HTTP response, it stores the incoming headers so thatthey can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it wouldaccept in a response, allowing a malicious server to stream an endless seriesof headers and...

7.5CVSS

7.5AI Score

0.009EPSS

2023-09-15 04:15 AM

340

cve

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxyhandshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allowthat to resolve the address instead of it getting done by curl itself, themaximum length that host name can be is 255 bytes. If the host name is...

9.8CVSS

9.6AI Score

0.003EPSS

2023-10-18 04:15 AM

614

Total number of security vulnerabilities295