Lucene search
K
MicrosoftWindows 11 23h2

1657 matches found

CVE
CVE
added 2024/06/11 4:59 p.m.4294 views

CVE-2024-30078

Technical details about CVE-2024-30078 are not publicly available in the provided documents. No specifics on affected driver, root cause, or remediation are present; monitor for updates from vendor/security advisories.

8.8CVSS9.4AI score0.05158EPSS
CVE
CVE
added 2013/12/11 12:0 a.m.3241 views

CVE-2013-3900

CVE-2013-3900 describes a remote code execution in the WinVerifyTrust Authenticode verification for PE files. An attacker could modify a signed executable to execute code without invalidating the signature, potentially gaining full control of the system. Microsoft republished this CVE in the Secu...

8.8CVSS7.4AI score0.44647EPSS
In wild
CVE
CVE
added 2023/10/18 3:52 a.m.1134 views

CVE-2023-38545

CVE-2023-38545 is a heap-based buffer overflow in curl/libcurl during SOCKS5 proxy hostname handling. When a long host name (over 255 bytes) is passed for proxy resolution, curl may copy the full hostname into the target buffer due to a race in a slow handshake, enabling arbitrary code execution....

9.8CVSS9.4AI score0.78483EPSS
CVE
CVE
added 2025/01/14 6:4 p.m.1034 views

CVE-2025-21333

CVE-2025-21333 is a local elevation-of-privilege vulnerability in Windows Hyper‑V NT Kernel Integration VSP. The issue is a heap-based buffer overflow in the VSP component, enabling a local attacker with Low privilege and no user interaction to gain SYSTEM rights on the host. Public materials in ...

7.8CVSS7.7AI score0.09798EPSS
In wild
CVE
CVE
added 2024/08/13 5:29 p.m.1020 views

CVE-2024-38063

CVE-2024-38063 is a Windows IPv6/tcpip.sys vulnerability involving improper handling of IPv6 extension headers and fragmentation. Technical material in connected docs shows an integer underflow in the IPv6 fragment reassembly path (Ipv6pReassemblyTimeout) and a risky code path where IppSendErrorL...

9.8CVSS9.8AI score0.70564EPSS
CVE
CVE
added 2025/01/14 6:3 p.m.963 views

CVE-2025-21298

CVE-2025-21298 is a Windows OLE use-after-free memory corruption vulnerability in ole32.dll (UtOlePresStmToContentsStm) that enables remote code execution via specially crafted RTF, including zero-click scenarios when previews are shown in Outlook. The issue arises from a double-free of the CONTE...

9.8CVSS9.8AI score0.80912EPSS
CVE
CVE
added 2024/02/13 6:2 p.m.752 views

CVE-2024-21338

CVE-2024-21338 is a Windows kernel local privilege escalation caused by an exposed IOCTL with insufficient access control in the appid.sys component. The vulnerability enables local attackers with LOW privileges and no user interaction to escalate to kernel to access high-privilege operations (CV...

7.8CVSS8.1AI score0.51865EPSS
In wild
CVE
CVE
added 2025/04/08 5:23 p.m.750 views

CVE-2025-29824

CVE-2025-29824 is a Use-After-Free vulnerability in the Windows Common Log File System Driver (CLFS) kernel driver, caused by a race condition in W32PROCESS handling via WaitForInputIdle that enables local privilege escalation to SYSTEM. Microsoft patched this in April 2025 (KB5044284). Public ex...

7.8CVSS7.5AI score0.1806EPSS
In wild
CVE
CVE
added 2024/10/08 5:36 p.m.672 views

CVE-2024-43572

CVE-2024-43572 is a Microsoft Windows Management Console Remote Code Execution vulnerability. Connected sources confirm a patch was released in the October 2024 updates, and Microsoft/Elastic Security Labs notes mitigations such as blocking untrusted MSC files to prevent code execution via MMC. T...

7.8CVSS8.6AI score0.60954EPSS
In wild
CVE
CVE
added 2024/02/13 6:2 p.m.657 views

CVE-2024-21412

CVE-2024-21412 is a Windows SmartScreen security feature bypass that lets a downloaded file, marked by the Mark of the Web (MoTW), execute without SmartScreen prompts when dealing with Internet Shortcut files. Connected sources cite in-the-wild activity (Water Hydra) and exploitation via spearphi...

8.1CVSS8.3AI score0.95443EPSS
In wild
CVE
CVE
added 2024/08/08 1:59 a.m.599 views

CVE-2024-21302

Microsoft has fixed CVE-2024-21302 for Windows systems with Virtualization-Based Security (VBS). The elevation-of-privilege vulnerability allowed an administrator to replace current Windows system files with older versions, potentially reintroducing mitigated VBS vulnerabilities and exfiltrating ...

6.7CVSS5.8AI score0.01559EPSS
CVE
CVE
added 2024/04/09 5:0 p.m.589 views

CVE-2024-26256

CVE-2024-26256 is a Libarchive remote code execution vulnerability. Multiple connected sources confirm a flaw in the libarchive library (notably in the rar e8 filter) that can lead to arbitrary code execution when processing crafted RAR archives. Public mitigations are version-specific: Debian li...

7.8CVSS7.9AI score0.87784EPSS
CVE
CVE
added 2025/09/09 5:1 p.m.580 views

CVE-2025-53799

CVE-2025-53799 affects the Windows Imaging Component. The vulnerability arises from use of an uninitialized resource in Imaging Component code, enabling local attackers to disclose information. The NCSC entry confirms the impact as Access to sensitive data with a CVSS-like rating around 5.5 (Medi...

5.5CVSS6.1AI score0.0073EPSS
CVE
CVE
added 2024/05/14 4:57 p.m.572 views

CVE-2024-30051

CVE-2024-30051 is an Elevation of Privilege in the Windows Desktop Window Manager (DWM) core library dwmcore.dll. The root cause is a heap-based buffer overflow in CCommandBuffer::Initialize caused by a size miscalculation (integer division) that can overflow the heap during a heap spray, allowin...

7.8CVSS6.4AI score0.05687EPSS
In wild
CVE
CVE
added 2025/09/09 5:1 p.m.566 views

CVE-2025-53803

CVE-2025-53803 affects the Windows Kernel. Reported as: error message generation could disclose sensitive information to an authorized local attacker. According to the available connected sources, the vulnerability is categorized under Windows Kernel with a documented impact of accessing sensitiv...

5.5CVSS5.9AI score0.00606EPSS
CVE
CVE
added 2024/06/11 4:59 p.m.552 views

CVE-2024-30088

CVE-2024-30088 is a Windows Kernel TOCTOU race condition that can lead to local privilege escalation via AuthzBasepCopyoutInternalSecurityAttributes. Publicly discussed exploits and PoCs exist (Windows kernel LPE PoCs and Metasploit module), and CISA lists it as a known-exploited vulnerability; a...

7CVSS6.9AI score0.68202EPSS
In wild
CVE
CVE
added 2024/03/12 4:58 p.m.547 views

CVE-2024-26169

CVE-2024-26169 is a Windows Error Reporting Service Elevation of Privilege vulnerability (improper privilege management) that allows a local attacker with user permissions to gain SYSTEM privileges. Public exploits exist; the vulnerability has been added to CISA’s Known Exploited Vulnerabilities ...

7.8CVSS7.9AI score0.04014EPSS
In wild
CVE
CVE
added 2024/11/12 5:54 p.m.547 views

CVE-2024-38203

Technical details for CVE-2024-38203 are not publicly available in the supplied documents. No specifics on affected products, root cause, or remediation are provided here; monitor the feeds for updates from Microsoft and vulnerability trackers.

6.2CVSS5.8AI score0.00677EPSS
CVE
CVE
added 2023/11/14 5:57 p.m.546 views

CVE-2023-36025

CVE-2023-36025 is a Windows SmartScreen Security Feature Bypass vulnerability. Affected product context is Microsoft Windows (SmartScreen). Root cause and impact are described as bypass of SmartScreen with high severity (CVSS v3.1: 8.8, HIGH) affecting confidentiality, integrity, and availability...

8.8CVSS9.5AI score0.88196EPSS
In wild
CVE
CVE
added 2024/08/08 1:59 a.m.534 views

CVE-2024-38202

CVE-2024-38202 describes an elevation of privilege in Windows Update that could allow a user with basic privileges to reintroduce mitigated vulnerabilities or bypass some VBS protections. The vulnerability requires an attacker to coax an Administrator or delegated user into performing a system re...

7.3CVSS8.2AI score0.01678EPSS
CVE
CVE
added 2023/11/14 5:57 p.m.513 views

CVE-2023-36033

CVE-2023-36033 is a local elevation-of-privilege flaw in the Windows DWM Core Library. Reported exploits in the wild and public disclosures indicate that an attacker with low privileges and no user interaction could escalate to SYSTEM on affected Windows 10/11 and server platforms. The vulnerabil...

7.8CVSS8.6AI score0.11977EPSS
In wild
CVE
CVE
added 2024/12/10 5:49 p.m.512 views

CVE-2024-49138

Summary (CVE-2024-49138): A heap-based buffer overflow in the Windows Common Log File System Driver (CLFS.sys) enables local Elevation of Privilege on Windows 11/23h2 (and other supported builds). Public PoCs and exploits exist (GitHub PoC repos and exploits referenced in multiple sources), with ...

7.8CVSS7.5AI score0.25414EPSS
In wild
CVE
CVE
added 2023/09/15 3:21 a.m.504 views

CVE-2023-38039

CVE-2023-38039 affects curl; the vulnerability arises from unbounded header handling in HTTP responses, allowing an attacker to stream an endless header sequence and exhaust curl’s heap memory. The issue is caused by not enforcing a limit on the number/size of headers; impact is heap memory exhau...

7.5CVSS7.5AI score0.62246EPSS
CVE
CVE
added 2025/02/11 5:58 p.m.501 views

CVE-2025-21391

CVE-2025-21391 (Windows Storage Elevation of Privilege) describes a local privilege escalation in Windows Storage. The vulnerability allows an attacker with low privileges and no user interaction to elevate to SYSTEM by exploiting a link-following flaw in Windows Storage (root cause described as ...

7.1CVSS7.7AI score0.02143EPSS
In wild
CVE
CVE
added 2025/10/14 5:1 p.m.501 views

CVE-2025-59230

CVE-2025-59230 describes an improper access control flaw in the Windows Remote Access Connection Manager (RasMan). The vulnerability allows an authenticated local user to elevate privileges to SYSTEM by manipulating RasMan’s IPC handling/ACLs, as reported in multiple sources. Exploitation activit...

7.8CVSS6.5AI score0.02615EPSS
In wild
CVE
CVE
added 2025/11/11 5:59 p.m.500 views

CVE-2025-62215

CVE-2025-62215 is a Windows Kernel race condition that enables local privilege escalation to SYSTEM by exploiting a concurrency window over kernel object handles, causing a double-free. A PoC exploit repository demonstrates a multithreaded trigger and heap spraying to achieve token elevation. Pub...

7CVSS5.8AI score0.061EPSS
In wild
CVE
CVE
added 2024/09/10 4:53 p.m.492 views

CVE-2024-38014

CVE-2024-38014 is a Windows Installer privilege-escalation vulnerability (local, CVSSv3.1: 7.8) that could allow an attacker with low privileges to gain SYSTEM-level access. The issue targets the Windows Installer component and is described in sources as an improper privilege-management flaw. Pub...

7.8CVSS8.7AI score0.06008EPSS
In wild
CVE
CVE
added 2023/11/14 5:57 p.m.482 views

CVE-2023-36036

CVE-2023-36036 is a Windows Elevation of Privilege in the Windows Cloud Files Mini Filter Driver. The flaw is a local, privilege-escalation bug (privileges required: low) that can grant SYSTEM-level access and has high impact on confidentiality, integrity, and availability. Public analyses report...

7.8CVSS8.7AI score0.1654EPSS
In wild
CVE
CVE
added 2024/10/08 5:35 p.m.479 views

CVE-2024-43573

CVE-2024-43573 is a Windows MSHTML Platform Spoofing vulnerability. Public sources confirm it affects MSHTML in Windows and that patches were released (Microsoft Update Guide). There is evidence of exploitation in the wild for MSHTML-related spoofing vulnerabilities, including references noting a...

8.1CVSS7.4AI score0.44382EPSS
In wild
CVE
CVE
added 2025/03/11 4:59 p.m.475 views

CVE-2025-24071

CVE-2025-24071 affects Windows File Explorer via the .library-ms mechanism. When a user opens or extracts ZIP/RAR contents containing a crafted .library-ms, Explorer can trigger an SMB authentication to a remote server, leaking the user’s NTLM hash. No user interaction beyond extraction is requir...

6.5CVSS7.3AI score0.25068EPSS
CVE
CVE
added 2025/10/14 5:1 p.m.474 views

CVE-2025-55695

CVE-2025-55695 describes an out-of-bounds read vulnerability in the Windows WLAN Auto Config Service that enables an authorized local attacker to disclose information. The description in the initial document confirms the root cause (out-of-bounds read) and the impact (local information disclosure...

5.5CVSS6.1AI score0.00372EPSS
CVE
CVE
added 2025/10/14 5:0 p.m.467 views

CVE-2025-59294

CVE-2025-59294 affects Windows Taskbar Live. The description indicates exposure of sensitive information to an unauthorized actor under physical access, enabling information disclosure. Connected documents provide limited details: the exact vulnerable component context and remediation are not spe...

4.6CVSS5.8AI score0.00573EPSS
CVE
CVE
added 2025/10/14 5:0 p.m.462 views

CVE-2025-59211

CVE-2025-59211 concerns exposure of sensitive information to an unauthorized actor in Windows Push Notification Core, enabling an attacker with local access to disclose information. The initial entry identifies a local attack vector with a medium base score (CVSS 3.1: AV=L, AC=L, PR=L, UI=N, S=U,...

5.5CVSS6.1AI score0.00554EPSS
CVE
CVE
added 2025/11/11 5:59 p.m.462 views

CVE-2025-59513

Technical details about CVE-2025-59513 are not publicly available in the provided documents. Monitor for updates from Microsoft and the CVE entry for affected components, impact, and remediation.

5.5CVSS5AI score0.0044EPSS
CVE
CVE
added 2024/02/13 6:2 p.m.454 views

CVE-2024-21351

CVE-2024-21351 is a Windows SmartScreen Security Feature Bypass vulnerability. Public exploits exist; attackers could bypass SmartScreen and inject code, potentially gaining code execution, exposing data, or impacting availability. Relevant advisories note active exploitation and focus on applyin...

7.6CVSS8.5AI score0.30344EPSS
In wild
CVE
CVE
added 2025/10/14 5:0 p.m.451 views

CVE-2025-59204

CVE-2025-59204 concerns Windows Management Services and is triggered by use of an uninitialized resource, leading to local information disclosure. The impact is confidentiality loss with local attack vector (required local access, no user interaction). The connected documents confirm Windows secu...

5.5CVSS6.2AI score0.00468EPSS
CVE
CVE
added 2025/09/09 5:1 p.m.450 views

CVE-2025-54917

CVE-2025-54917 is a network-exploitable issue in Windows MapUrlToZone that enables circumvention of a security mechanism. The CVSS v3.1 base score is 4.3 (NETWORK, LOW attack complexity, NONE privileges, UI required) with a LOW confidentiality impact. The Connected documents indicate this CVE map...

4.3CVSS6.3AI score0.00842EPSS
CVE
CVE
added 2024/06/11 4:59 p.m.439 views

CVE-2024-35250

CVE-2024-35250 is a Windows kernel‑mode driver LPE in ks.sys (Kernel Streaming core) caused by an untrusted pointer dereference. PoCs and exploits exist (e.g., PoCs on GitHub; KS driver) with active demonstrations, and exploitation has been observed in public material. Microsoft addressed the iss...

7.8CVSS7.7AI score0.25222EPSS
In wildWeb
CVE
CVE
added 2024/11/12 5:54 p.m.438 views

CVE-2024-49039

CVE-2024-49039 is a Windows Task Scheduler privilege-escalation vulnerability. An authenticated local attacker can elevate privileges outside of AppContainer and access privileged RPC functions via the Task Scheduler, enabling local privilege escalation with high impact (CVE-2024-49039). There ar...

8.8CVSS8.6AI score0.13719EPSS
In wild
CVE
CVE
added 2024/03/12 4:57 p.m.436 views

CVE-2024-21429

The CVE-2024-21429 entry covers a remote code execution vulnerability in the Windows USB Hub Driver. According to the description, the issue affects the USB Hub Driver and could lead to arbitrary code execution with high impact on confidentiality, integrity, and availability. Exploitation details...

6.8CVSS7.2AI score0.00904EPSS
CVE
CVE
added 2026/01/13 5:56 p.m.436 views

CVE-2026-20862

CVE-2026-20862 is a Windows Management Services information disclosure vulnerability. The description in the initial document states that it allows an authorized attacker to disclose sensitive information locally. The connected Nessus/NCSC/ENISA entries confirm this is a local-impact issue tied t...

5.5CVSS6.1AI score0.00614EPSS
CVE
CVE
added 2024/02/13 6:2 p.m.432 views

CVE-2024-21340

Technical details for CVE-2024-21340 are not provided in the supplied documents. Monitor for updates.

4.6CVSS5.3AI score0.00752EPSS
CVE
CVE
added 2024/01/09 5:56 p.m.405 views

CVE-2024-20666

CVE-2024-20666 is a BitLocker security feature bypass related to the Windows Recovery Environment (WinRE). The connected MSRC/updates data confirm a BitLocker bypass vulnerability and note a Microsoft security update to mitigate it (KBs associated with January 2024 security updates, including Win...

6.6CVSS6.8AI score0.03078EPSS
In wild
CVE
CVE
added 2024/01/09 5:56 p.m.405 views

CVE-2024-20697

CVE-2024-20697 is a Windows libarchive remote code execution vulnerability. Concretely, the connected Nessus advisories from SUSE show that CVE-2024-20697 is fixed in libarchive across SUSE SLED15/SLES15/openSUSE 15 via advisories SUSE-SU-2024:2083-1 and SUSE-SU-2024:3940-1, with remediation guid...

7.3CVSS7.5AI score0.72163EPSS
CVE
CVE
added 2024/07/09 5:2 p.m.405 views

CVE-2024-38112

CVE-2024-38112 Windows MSHTML Platform Spoofing is a Windows/MSHTML vulnerability exploited in the wild by the Void Banshee group. The issue involves spoofing UI within the MSHTML/IE rendering path, enabling code execution when a user opens a crafted .url payload that references an embedded MHTML...

7.5CVSS8.8AI score0.84345EPSS
In wild
CVE
CVE
added 2024/11/12 5:53 p.m.400 views

CVE-2024-43451

CVE-2024-43451 is a Windows NTLMv2 hash disclosure spoofing vulnerability. Affected: Windows; root cause: NTLM hash leakage occurs when the shell processes .URL shortcuts, triggering NTLM authentication over SMB to an attacker-controlled server. Impact: attackers can obtain NTLMv2 hashes and perf...

6.5CVSS6.5AI score0.81817EPSS
In wild
CVE
CVE
added 2025/06/10 5:2 p.m.399 views

CVE-2025-33073

CVE-2025-33073 is a network-accessible elevation of privilege in the Windows SMB Client caused by improper access control in the SMB protocol stack. The initial description confirms privilege escalation with network access. Connected documents provide concrete exploit presence: PoCs and proof‑of‑...

8.8CVSS8.7AI score0.64987EPSS
In wild
CVE
CVE
added 2025/03/11 4:59 p.m.396 views

CVE-2025-26633

CVE-2025-26633 is a local-privilege-escalation in Microsoft Management Console (MMC) caused by improper neutralization in how MMC loads language-twin .msc files. A malicious “evil twin” .msc in a language directory can execute payloads with the user’s privileges when a user opens a legitimate MMC...

7CVSS6.8AI score0.31894EPSS
In wild
CVE
CVE
added 2026/06/09 5:6 p.m.396 views

CVE-2026-44815

CVE-2026-44815 is a stack-based buffer overflow in the Windows DHCP Client that enables remote code execution over the network. Affected component: Windows DHCP Client; root cause is a stack-based overflow. Consequences are remote code execution with high impact, as indicated by the CVSS vector (...

9.8CVSS6AI score0.011EPSS
CVE
CVE
added 2025/06/10 5:2 p.m.395 views

CVE-2025-33053

Summary of CVE-2025-33053 : A vulnerability in Windows WebDAV/Internet Shortcut handling allows remote code execution when a vulnerable host opens a crafted .url file that points to a WebDAV share. Exploitation relies on the WebClient service resolving UNC paths via WebDAV and may trigger arbitra...

8.8CVSS8.8AI score0.81558EPSS
In wildWeb
Total number of security vulnerabilities1657