Windows 11 23h2@* Security Vulnerabilities and Issues — Windows 11 23h2@* CVE List | Vulners.com

Lucene search

K

MicrosoftWindows 11 23h2*

1038 matches found

CVE•added 2024/06/11 5:15 p.m.•4156 views

CVE-2024-30078

Windows Wi-Fi Driver Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.2971EPSS

CVE•added 2023/10/18 4:15 a.m.•1048 views

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxyhandshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allowthat to resolve the address instead of it getting done by curl itself, themaximum length that host name can be is 255 bytes. If the host name is...

9.8CVSS9.4AI score0.23641EPSS

CVE•added 2025/01/14 6:15 p.m.•954 views

CVE-2025-21333

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.58455EPSS

CVE•added 2024/08/13 6:15 p.m.•935 views

CVE-2024-38063

Windows TCP/IP Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.88095EPSS

CVE•added 2025/01/14 6:15 p.m.•882 views

CVE-2025-21298

Windows OLE Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.70558EPSS

CVE•added 2024/10/08 6:15 p.m.•646 views

CVE-2024-43572

Microsoft Management Console Remote Code Execution Vulnerability

7.8CVSS8.6AI score0.52877EPSS

CVE•added 2023/05/09 6:15 p.m.•633 views

CVE-2023-24932

Secure Boot Security Feature Bypass Vulnerability

6.7CVSS6.9AI score0.00845EPSS

CVE•added 2025/04/08 6:16 p.m.•598 views

CVE-2025-29824

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.02001EPSS

CVE•added 2024/02/13 6:15 p.m.•592 views

CVE-2024-21338

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.78732EPSS

CVE•added 2024/02/13 6:15 p.m.•560 views

CVE-2024-21412

Internet Shortcut Files Security Feature Bypass Vulnerability

8.1CVSS8.3AI score0.93762EPSS

CVE•added 2024/08/08 2:15 a.m.•534 views

CVE-2024-21302

Summary:As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this vulnerab...

6.7CVSS5.8AI score0.00705EPSS

CVE•added 2023/11/14 6:15 p.m.•499 views

CVE-2023-36025

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS9.5AI score0.90393EPSS

CVE•added 2024/11/12 6:15 p.m.•494 views

CVE-2024-38203

Windows Package Library Manager Information Disclosure Vulnerability

6.2CVSS5.8AI score0.00176EPSS

CVE•added 2024/04/09 5:15 p.m.•489 views

CVE-2024-26256

Libarchive Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.52037EPSS

CVE•added 2023/11/14 6:15 p.m.•484 views

CVE-2023-36033

Windows DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00197EPSS

CVE•added 2024/12/12 2:4 a.m.•470 views

CVE-2024-49138

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.5AI score0.85455EPSS

CVE•added 2023/11/14 6:15 p.m.•462 views

CVE-2023-36036

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.00997EPSS

CVE•added 2024/09/10 5:15 p.m.•461 views

CVE-2024-38014

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.0957EPSS

CVE•added 2024/03/12 5:15 p.m.•457 views

CVE-2024-26169

Windows Error Reporting Service Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.26702EPSS

CVE•added 2024/08/08 2:15 a.m.•456 views

CVE-2024-38202

SummaryMicrosoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security (VBS). However, an attack...

7.3CVSS8.2AI score0.04136EPSS

CVE•added 2024/10/08 6:15 p.m.•456 views

CVE-2024-43573

Windows MSHTML Platform Spoofing Vulnerability

8.1CVSS7.4AI score0.08507EPSS

CVE•added 2023/09/15 4:15 a.m.•455 views

CVE-2023-38039

When curl retrieves an HTTP response, it stores the incoming headers so thatthey can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it wouldaccept in a response, allowing a malicious server to stream an endless seriesof headers and...

7.5CVSS7.5AI score0.11348EPSS

CVE•added 2025/02/11 6:15 p.m.•450 views

CVE-2025-21391

Windows Storage Elevation of Privilege Vulnerability

7.1CVSS7.7AI score0.05102EPSS

CVE•added 2024/02/13 6:15 p.m.•425 views

CVE-2024-21351

Windows SmartScreen Security Feature Bypass Vulnerability

7.6CVSS8.5AI score0.06234EPSS

CVE•added 2024/05/14 5:17 p.m.•413 views

CVE-2024-30051

Windows DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS6.4AI score0.50935EPSS

CVE•added 2024/03/12 5:15 p.m.•412 views

CVE-2024-21429

Windows USB Hub Driver Remote Code Execution Vulnerability

6.8CVSS7.2AI score0.00233EPSS

CVE•added 2024/02/13 6:15 p.m.•408 views

CVE-2024-21340

Windows Kernel Information Disclosure Vulnerability

4.6CVSS5.3AI score0.00131EPSS

CVE•added 2024/06/11 5:15 p.m.•407 views

CVE-2024-30088

Windows Kernel Elevation of Privilege Vulnerability

7CVSS6.9AI score0.8653EPSS

CVE•added 2024/11/12 6:15 p.m.•398 views

CVE-2024-49039

Windows Task Scheduler Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.4082EPSS

CVE•added 2024/01/09 6:15 p.m.•376 views

CVE-2024-20666

BitLocker Security Feature Bypass Vulnerability

6.6CVSS6.8AI score0.11655EPSS

CVE•added 2025/03/11 5:16 p.m.•374 views

CVE-2025-24071

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS7.3AI score0.51253EPSS

CVE•added 2025/05/13 5:15 p.m.•365 views

CVE-2025-29974

Integer underflow (wrap or wraparound) in Windows Kernel allows an unauthorized attacker to disclose information over an adjacent network.

5.7CVSS5.6AI score0.00087EPSS

CVE•added 2024/06/11 5:16 p.m.•362 views

CVE-2024-35250

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.44509EPSS

CVE•added 2024/01/09 6:15 p.m.•353 views

CVE-2024-20697

Windows libarchive Remote Code Execution Vulnerability

7.3CVSS7.5AI score0.49429EPSS

CVE•added 2024/11/12 6:15 p.m.•353 views

CVE-2024-43451

NTLM Hash Disclosure Spoofing Vulnerability

6.5CVSS6.5AI score0.89638EPSS

CVE•added 2025/02/11 6:15 p.m.•351 views

CVE-2025-21337

Windows NTFS Elevation of Privilege Vulnerability

3.3CVSS6AI score0.00083EPSS

CVE•added 2024/04/09 5:16 p.m.•344 views

CVE-2024-29988

SmartScreen Prompt Security Feature Bypass Vulnerability

8.8CVSS8.4AI score0.64766EPSS

CVE•added 2024/10/08 6:15 p.m.•343 views

CVE-2024-43583

Winlogon Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.08214EPSS

CVE•added 2024/03/12 5:15 p.m.•342 views

CVE-2024-26161

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01471EPSS

CVE•added 2025/02/11 6:15 p.m.•341 views

CVE-2025-21420

Windows Disk Cleanup Tool Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.31526EPSS

CVE•added 2024/10/08 6:15 p.m.•336 views

CVE-2024-30092

Windows Hyper-V Remote Code Execution Vulnerability

8CVSS8.3AI score0.00441EPSS

CVE•added 2024/07/09 5:15 p.m.•335 views

CVE-2024-38112

Windows MSHTML Platform Spoofing Vulnerability

7.5CVSS8.8AI score0.92309EPSS

CVE•added 2023/08/08 6:15 p.m.•334 views

CVE-2023-20588

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.

5.5CVSS6.9AI score0.03997EPSS

CVE•added 2024/09/10 5:15 p.m.•325 views

CVE-2024-43461

Windows MSHTML Platform Spoofing Vulnerability

8.8CVSS9.3AI score0.09813EPSS

CVE•added 2024/12/12 2:4 a.m.•323 views

CVE-2024-49112

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.84756EPSS

CVE•added 2025/01/14 6:15 p.m.•319 views

CVE-2025-21189

MapUrlToZone Security Feature Bypass Vulnerability

4.3CVSS4.6AI score0.00174EPSS

CVE•added 2025/03/11 5:16 p.m.•314 views

CVE-2025-26633

Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally.

7CVSS6.8AI score0.03244EPSS

CVE•added 2025/06/10 5:22 p.m.•314 views

CVE-2025-33053

External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network.

8.8CVSS8.8AI score0.2155EPSS

CVE•added 2023/11/14 6:15 p.m.•307 views

CVE-2023-36705

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00162EPSS

CVE•added 2025/02/11 6:15 p.m.•307 views

CVE-2025-21418

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.11464EPSS

Total number of security vulnerabilities1038