Windows 11 21h2 Security Vulnerabilities and Issues — Page 2 of Windows 11 21h2 CVE List

Summary:As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this vulnerab...

6.7CVSS5.8AI score0.00598EPSS

CVE•added 2024/02/13 6:15 p.m.•528 views

CVE-2024-21412

Internet Shortcut Files Security Feature Bypass Vulnerability

8.1CVSS8.3AI score0.93777EPSS

CVE•added 2023/03/14 5:15 p.m.•507 views

CVE-2023-23392

HTTP Protocol Stack Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.05566EPSS

CVE•added 2023/09/12 5:15 p.m.•501 views

CVE-2023-38144

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01242EPSS

CVE•added 2023/07/11 6:15 p.m.•499 views

CVE-2023-32049

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS9.3AI score0.11974EPSS

CVE•added 2023/07/11 6:15 p.m.•484 views

CVE-2023-32046

Windows MSHTML Platform Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.797EPSS

CVE•added 2023/01/10 10:15 p.m.•481 views

CVE-2023-21752

Windows Backup Service Elevation of Privilege Vulnerability

7.1CVSS7AI score0.42532EPSS

CVE•added 2023/09/12 5:15 p.m.•470 views

CVE-2023-38161

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00071EPSS

CVE•added 2023/09/12 5:15 p.m.•464 views

CVE-2023-38146

Windows Themes Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.84782EPSS

CVE•added 2023/11/14 6:15 p.m.•462 views

CVE-2023-36025

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS9.5AI score0.90662EPSS

CVE•added 2022/03/09 5:15 p.m.•460 views

CVE-2022-24508

Win32 File Enumeration Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02271EPSS

CVE•added 2023/04/11 9:15 p.m.•460 views

CVE-2023-28229

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

7CVSS7AI score0.07065EPSS

CVE•added 2023/09/12 5:15 p.m.•460 views

CVE-2023-38149

Windows TCP/IP Denial of Service Vulnerability

7.5CVSS7.9AI score0.05411EPSS

CVE•added 2023/11/14 6:15 p.m.•456 views

CVE-2023-36033

Windows DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00197EPSS

CVE•added 2023/09/12 5:15 p.m.•453 views

CVE-2023-36804

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00071EPSS

CVE•added 2024/08/08 2:15 a.m.•453 views

CVE-2024-38202

SummaryMicrosoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security (VBS). However, an attack...

7.3CVSS8.2AI score0.03533EPSS

CVE•added 2023/09/12 5:15 p.m.•449 views

CVE-2023-38143

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01242EPSS

CVE•added 2023/09/12 5:15 p.m.•446 views

CVE-2023-38141

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00315EPSS

CVE•added 2023/09/15 4:15 a.m.•441 views

CVE-2023-38039

When curl retrieves an HTTP response, it stores the incoming headers so thatthey can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it wouldaccept in a response, allowing a malicious server to stream an endless seriesof headers and...

7.5CVSS7.5AI score0.14467EPSS

CVE•added 2023/09/12 5:15 p.m.•441 views

CVE-2023-38140

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.5AI score0.00361EPSS

CVE•added 2023/10/10 6:15 p.m.•439 views

CVE-2023-35349

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.01159EPSS

CVE•added 2023/09/12 5:15 p.m.•439 views

CVE-2023-38139

Windows Kernel Elevation of Privilege Vulnerability