Windows 11 22h2 Security Vulnerabilities and Issues — Page 22 of Windows 11 22h2 CVE List

Sensitive data storage in improperly locked memory in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over a network.

7.5CVSS7.1AI score0.00036EPSS

CVE•added 2023/07/11 6:15 p.m.•84 views

CVE-2023-35358

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00202EPSS

CVE•added 2024/07/09 5:15 p.m.•84 views

CVE-2024-37973

Secure Boot Security Feature Bypass Vulnerability

8.8CVSS8.5AI score0.00315EPSS

CVE•added 2024/07/09 5:15 p.m.•84 views

CVE-2024-38102

Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

6.5CVSS7.3AI score0.00444EPSS

CVE•added 2024/11/12 6:15 p.m.•84 views

CVE-2024-43449

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

6.8CVSS6.7AI score0.0037EPSS

CVE•added 2025/01/14 6:15 p.m.•84 views

CVE-2025-21210

Windows BitLocker Information Disclosure Vulnerability

4.2CVSS4.3AI score0.00077EPSS

CVE•added 2025/01/14 6:15 p.m.•84 views

CVE-2025-21228

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE•added 2025/01/14 6:15 p.m.•84 views

CVE-2025-21231

IP Helper Denial of Service Vulnerability

7.5CVSS7.5AI score0.01098EPSS

CVE•added 2025/03/11 5:16 p.m.•84 views

CVE-2025-24067

Heap-based buffer overflow in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

7.8CVSS7.4AI score0.00121EPSS

CVE•added 2025/03/11 5:16 p.m.•84 views

CVE-2025-24988

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack.

6.8CVSS6.2AI score0.00139EPSS

CVE•added 2025/05/13 5:15 p.m.•84 views

CVE-2025-29966

Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network.

8.8CVSS8.1AI score0.003EPSS

CVE•added 2023/07/11 6:15 p.m.•83 views

CVE-2023-35299

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00167EPSS

CVE•added 2023/07/11 6:15 p.m.•83 views

CVE-2023-35326

Windows CDP User Components Information Disclosure Vulnerability

5.5CVSS7AI score0.00108EPSS

CVE•added 2023/07/11 6:15 p.m.•83 views

CVE-2023-35336

Windows MSHTML Platform Security Feature Bypass Vulnerability

6.5CVSS7.2AI score0.00579EPSS

CVE•added 2023/07/11 6:15 p.m.•83 views

CVE-2023-35339

Windows CryptoAPI Denial of Service Vulnerability

7.5CVSS8.4AI score0.00762EPSS

CVE•added 2024/06/11 5:15 p.m.•83 views

CVE-2024-30068

Windows Kernel Elevation of Privilege Vulnerability

8.8CVSS9.1AI score0.00414EPSS

CVE•added 2024/07/09 5:15 p.m.•83 views

CVE-2024-37987

Secure Boot Security Feature Bypass Vulnerability

8CVSS8.4AI score0.02138EPSS

CVE•added 2024/07/09 5:15 p.m.•83 views

CVE-2024-38013

Microsoft Windows Server Backup Elevation of Privilege Vulnerability

6.7CVSS7.3AI score0.0012EPSS

CVE•added 2024/10/08 6:15 p.m.•83 views

CVE-2024-43517

Microsoft ActiveX Data Objects Remote Code Execution Vulnerability

8.8CVSS9.1AI score0.05878EPSS

CVE•added 2024/10/08 6:15 p.m.•83 views

CVE-2024-43532

Remote Registry Service Elevation of Privilege Vulnerability

8.8CVSS8.7AI score0.72334EPSS

CVE•added 2025/02/11 6:15 p.m.•83 views

CVE-2025-21212

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00144EPSS

CVE•added 2025/01/14 6:15 p.m.•83 views

CVE-2025-21244

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.0076EPSS

CVE•added 2025/04/08 6:15 p.m.•83 views

CVE-2025-26670

Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network.

8.1CVSS7.9AI score0.00073EPSS

CVE•added 2023/07/11 6:15 p.m.•82 views

CVE-2023-33173

Remote Procedure Call Runtime Denial of Service Vulnerability

7.5CVSS7.8AI score0.03672EPSS

CVE•added 2024/08/13 6:15 p.m.•82 views

CVE-2024-38142

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.0075EPSS

CVE•added 2024/12/12 2:4 a.m.•82 views

CVE-2024-49101

Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00296EPSS

CVE•added 2024/12/12 2:4 a.m.•82 views

CVE-2024-49121

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

7.5CVSS7.5AI score0.10566EPSS

CVE•added 2025/04/08 6:15 p.m.•82 views

CVE-2025-21197

Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content.

6.5CVSS6.7AI score0.00103EPSS

CVE•added 2025/01/14 6:15 p.m.•82 views

CVE-2025-21202

Windows Recovery Environment Agent Elevation of Privilege Vulnerability

6.1CVSS6.3AI score0.00137EPSS

CVE•added 2025/01/14 6:15 p.m.•82 views

CVE-2025-21290

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.01098EPSS

CVE•added 2025/03/11 5:16 p.m.•82 views

CVE-2025-24051

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.