Windows 10 22H2 Security Vulnerabilities

CVE-2023-38172

Microsoft Message Queuing Denial of Service Vulnerability

CVE-2023-38184

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2023-38186

Windows Mobile Device Management Elevation of Privilege Vulnerability

CVE-2023-38254

Microsoft Message Queuing Denial of Service Vulnerability

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxyhandshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allowthat to resolve the address instead of it getting done by curl itself, themaximum length that host name can be is 255 bytes. If the host name is...

CVE-2023-41765

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41766

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

CVE-2023-41767

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41768

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41769

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41770

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41771

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41772

Win32k Elevation of Privilege Vulnerability

CVE-2023-41773

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-41774

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2024-20652

Windows HTML Platforms Security Feature Bypass Vulnerability

CVE-2024-20653

Microsoft Common Log File System Elevation of Privilege Vulnerability

CVE-2024-20654

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2024-20657

Windows Group Policy Elevation of Privilege Vulnerability

CVE-2024-20658

Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

CVE-2024-20660

Microsoft Message Queuing Information Disclosure Vulnerability

CVE-2024-20661

Microsoft Message Queuing Denial of Service Vulnerability

CVE-2024-20663

Windows Message Queuing Client (MSMQC) Information Disclosure

CVE-2024-20664

Microsoft Message Queuing Information Disclosure Vulnerability

CVE-2024-20665

BitLocker Security Feature Bypass Vulnerability

CVE-2024-20666

BitLocker Security Feature Bypass Vulnerability

CVE-2024-20669

Secure Boot Security Feature Bypass Vulnerability

CVE-2024-20674

Windows Kerberos Security Feature Bypass Vulnerability

CVE-2024-20678

Remote Procedure Call Runtime Remote Code Execution Vulnerability

CVE-2024-20680

Windows Message Queuing Client (MSMQC) Information Disclosure

CVE-2024-20681

Windows Subsystem for Linux Elevation of Privilege Vulnerability

CVE-2024-20682

Windows Cryptographic Services Remote Code Execution Vulnerability

CVE-2024-20683

Win32k Elevation of Privilege Vulnerability

CVE-2024-20687

Microsoft AllJoyn API Denial of Service Vulnerability

CVE-2024-20690

Windows Nearby Sharing Spoofing Vulnerability

CVE-2024-20691

Windows Themes Information Disclosure Vulnerability

CVE-2024-20692

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

CVE-2024-20693

Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-20694

Windows CoreMessaging Information Disclosure Vulnerability

CVE-2024-20696

Windows Libarchive Remote Code Execution Vulnerability

CVE-2024-20698

Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-20699

Windows Hyper-V Denial of Service Vulnerability

CVE-2024-20700

Windows Hyper-V Remote Code Execution Vulnerability

CVE-2024-21302

Summary:Microsoft was notified that an elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security (VBS), including a subset of Azure Virtual Machine SKUS. This vulnerability enables an attacker with administrator privileges to replace current versi...

CVE-2024-21304

Trusted Compute Base Elevation of Privilege Vulnerability

CVE-2024-21305

Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability

CVE-2024-21306

Microsoft Bluetooth Driver Spoofing Vulnerability

CVE-2024-21307

Remote Desktop Client Remote Code Execution Vulnerability

CVE-2024-21310

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability