Windows 11 22h2 Security Vulnerabilities and Issues — Page 25 of Windows 11 22h2 CVE List

Sensitive data storage in improperly locked memory in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over a network.

7.5CVSS7.1AI score0.00056EPSS

CVE•added 2023/07/11 6:15 p.m.•82 views

CVE-2023-35299

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00167EPSS

CVE•added 2023/07/11 6:15 p.m.•82 views

CVE-2023-35336

Windows MSHTML Platform Security Feature Bypass Vulnerability

6.5CVSS7.2AI score0.00579EPSS

CVE•added 2023/07/11 6:15 p.m.•82 views

CVE-2023-35339

Windows CryptoAPI Denial of Service Vulnerability

7.5CVSS8.4AI score0.00762EPSS

CVE•added 2024/07/09 5:15 p.m.•82 views

CVE-2024-37987

Secure Boot Security Feature Bypass Vulnerability

8CVSS8.4AI score0.02017EPSS

CVE•added 2024/07/09 5:15 p.m.•82 views

CVE-2024-38013

Microsoft Windows Server Backup Elevation of Privilege Vulnerability

6.7CVSS7.3AI score0.00275EPSS

CVE•added 2025/01/14 6:15 p.m.•82 views

CVE-2025-21210

Windows BitLocker Information Disclosure Vulnerability

4.2CVSS4.3AI score0.00068EPSS

CVE•added 2025/02/11 6:15 p.m.•82 views

CVE-2025-21212

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00134EPSS

CVE•added 2025/01/14 6:15 p.m.•82 views

CVE-2025-21228

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00133EPSS

CVE•added 2025/01/14 6:15 p.m.•82 views

CVE-2025-21231

IP Helper Denial of Service Vulnerability

7.5CVSS7.5AI score0.01023EPSS

CVE•added 2025/03/11 5:16 p.m.•82 views

CVE-2025-24067

Heap-based buffer overflow in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

7.8CVSS7.4AI score0.0009EPSS

CVE•added 2023/07/11 6:15 p.m.•81 views

CVE-2023-33173

Remote Procedure Call Runtime Denial of Service Vulnerability

7.5CVSS7.8AI score0.03672EPSS

CVE•added 2023/07/11 6:15 p.m.•81 views

CVE-2023-35326

Windows CDP User Components Information Disclosure Vulnerability

5.5CVSS7AI score0.00108EPSS

CVE•added 2024/06/11 5:15 p.m.•81 views

CVE-2024-30068

Windows Kernel Elevation of Privilege Vulnerability

8.8CVSS9.1AI score0.00314EPSS

CVE•added 2024/08/13 6:15 p.m.•81 views

CVE-2024-38142

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00588EPSS

CVE•added 2024/10/08 6:15 p.m.•81 views

CVE-2024-43517

Microsoft ActiveX Data Objects Remote Code Execution Vulnerability

8.8CVSS9.1AI score0.05059EPSS

CVE•added 2024/12/12 2:4 a.m.•81 views

CVE-2024-49101

Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.0023EPSS

CVE•added 2024/12/12 2:4 a.m.•81 views

CVE-2024-49121

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

7.5CVSS7.5AI score0.04793EPSS

CVE•added 2025/01/14 6:15 p.m.•81 views

CVE-2025-21244

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00674EPSS

CVE•added 2025/03/11 5:16 p.m.•81 views

CVE-2025-24051

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS7.8AI score0.00352EPSS

CVE•added 2025/04/08 6:15 p.m.•81 views

CVE-2025-26670

Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network.

8.1CVSS7.9AI score0.00112EPSS

CVE•added 2022/10/11 7:15 p.m.•80 views

CVE-2022-37993

Windows Group Policy Preference Client Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00255EPSS

CVE•added 2023/07/11 6:15 p.m.•80 views

CVE-2023-32037

Windows Layer-2 Bridge Network Driver Information Disclosure Vulnerability

6.5CVSS7.6AI score0.00169EPSS

CVE•added 2023/07/11 6:15 p.m.•80 views

CVE-2023-33168

Remote Procedure Call Runtime Denial of Service Vulnerability

7.5CVSS7.8AI score0.03672EPSS

CVE•added 2023/07/11 6:15 p.m.•80 views

CVE-2023-35320

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.0014EPSS

CVE•added 2023/07/11 6:15 p.m.•80 views

CVE-2023-35343

Windows Geolocation Service Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00324EPSS

CVE•added 2024/07/09 5:15 p.m.•80 views

CVE-2024-37975

Secure Boot Security Feature Bypass Vulnerability

8CVSS8.4AI score0.01418EPSS

CVE•added 2024/07/09 5:15 p.m.•80 views

CVE-2024-38011

Secure Boot Security Feature Bypass Vulnerability

8CVSS8.4AI score0.01306EPSS

CVE•added 2024/07/09 5:15 p.m.•80 views

CVE-2024-38032

Microsoft Xbox Remote Code Execution Vulnerability

7.1CVSS7.4AI score0.00952EPSS

CVE•added 2024/07/09 5:15 p.m.•80 views

CVE-2024-38050

Windows Workstation Service Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00598EPSS

CVE•added 2024/10/08 6:15 p.m.•80 views

CVE-2024-43509

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.00697EPSS

CVE•added 2024/10/08 6:15 p.m.•80 views

CVE-2024-43532

Remote Registry Service Elevation of Privilege Vulnerability

8.8CVSS8.7AI score0.71528EPSS

CVE•added 2024/11/12 6:15 p.m.•80 views

CVE-2024-43620

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01284EPSS

CVE•added 2025/04/08 6:15 p.m.•80 views

CVE-2025-21197

Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content.

6.5CVSS6.7AI score0.00126EPSS

CVE•added 2025/01/14 6:15 p.m.•80 views

CVE-2025-21202

Windows Recovery Environment Agent Elevation of Privilege Vulnerability

6.1CVSS6.3AI score0.00122EPSS

CVE•added 2025/01/14 6:15 p.m.•80 views

CVE-2025-21290

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.01023EPSS

CVE•added 2025/02/11 6:15 p.m.•80 views

CVE-2025-21359

Windows Kernel Security Feature Bypass Vulnerability