Windows 11 23h2@* Security Vulnerabilities and Issues — Windows 11 23h2@* CVE List

Lucene search

MicrosoftWindows 11 23h2*

50 matches found

CVE•added 2023/10/18 4:15 a.m.•1002 views

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxyhandshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allowthat to resolve the address instead of it getting done by curl itself, themaximum length that host name can be is 255 bytes. If the host name is...

9.8CVSS9.4AI score0.22672EPSS

CVE•added 2023/05/09 6:15 p.m.•600 views

CVE-2023-24932

Secure Boot Security Feature Bypass Vulnerability

6.7CVSS6.9AI score0.00727EPSS

CVE•added 2023/11/14 6:15 p.m.•464 views

CVE-2023-36025

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS9.5AI score0.90662EPSS

CVE•added 2023/11/14 6:15 p.m.•458 views

CVE-2023-36033

Windows DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00197EPSS

CVE•added 2023/09/15 4:15 a.m.•441 views

CVE-2023-38039

When curl retrieves an HTTP response, it stores the incoming headers so thatthey can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it wouldaccept in a response, allowing a malicious server to stream an endless seriesof headers and...

7.5CVSS7.5AI score0.14467EPSS

CVE•added 2023/11/14 6:15 p.m.•436 views

CVE-2023-36036

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.00997EPSS

CVE•added 2023/08/08 6:15 p.m.•328 views

CVE-2023-20588

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.

5.5CVSS6.9AI score0.03997EPSS

CVE•added 2023/11/14 6:15 p.m.•306 views

CVE-2023-36705

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00162EPSS

CVE•added 2023/11/14 6:15 p.m.•273 views

CVE-2023-36719

Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability

7.8CVSS8.5AI score0.00134EPSS

CVE•added 2023/11/28 7:15 a.m.•262 views

CVE-2023-24023

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.

6.8CVSS6.8AI score0.00157EPSS

CVE•added 2023/11/14 6:15 p.m.•256 views

CVE-2023-36405

Windows Kernel Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00119EPSS

CVE•added 2023/11/14 6:15 p.m.•238 views

CVE-2023-36424

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.17769EPSS

CVE•added 2023/11/14 6:15 p.m.•236 views

CVE-2023-36397

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.03225EPSS

CVE•added 2023/11/14 6:15 p.m.•226 views

CVE-2023-36402

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.00166EPSS

CVE•added 2023/11/14 6:15 p.m.•208 views

CVE-2023-36028

Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.00536EPSS

CVE•added 2023/11/14 6:15 p.m.•204 views

CVE-2023-36017

Windows Scripting Engine Memory Corruption Vulnerability

8.8CVSS8.9AI score0.02717EPSS

CVE•added 2023/11/14 6:15 p.m.•204 views

CVE-2023-36425

Windows Distributed File System (DFS) Remote Code Execution Vulnerability

8CVSS8.9AI score0.00207EPSS

CVE•added 2023/11/14 6:15 p.m.•185 views

CVE-2023-36398

Windows NTFS Information Disclosure Vulnerability

6.5CVSS7.6AI score0.00081EPSS

CVE•added 2023/11/14 6:15 p.m.•183 views

CVE-2023-36047

Windows Authentication Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00343EPSS

CVE•added 2023/11/14 6:15 p.m.•183 views

CVE-2023-36393

Windows User Interface Application Core Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00408EPSS

CVE•added 2023/11/14 6:15 p.m.•181 views

CVE-2023-36428

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

5.5CVSS7AI score0.00127EPSS

CVE•added 2023/11/14 6:15 p.m.•177 views

CVE-2023-36423

Microsoft Remote Registry Service Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.00574EPSS

CVE•added 2023/11/14 6:15 p.m.•173 views

CVE-2023-36400

Windows HMAC Key Derivation Elevation of Privilege Vulnerability

8.8CVSS9.1AI score0.01558EPSS

CVE•added 2023/11/14 6:15 p.m.•170 views

CVE-2023-36401

Microsoft Remote Registry Service Remote Code Execution Vulnerability

7.2CVSS8.3AI score0.00319EPSS

CVE•added 2023/11/14 6:15 p.m.•166 views

CVE-2023-36403

Windows Kernel Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00242EPSS

CVE•added 2023/11/14 6:15 p.m.•165 views

CVE-2023-36406

Windows Hyper-V Information Disclosure Vulnerability

5.5CVSS6.1AI score0.00184EPSS

CVE•added 2023/12/12 6:15 p.m.•159 views

CVE-2023-35628

Windows MSHTML Platform Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.17104EPSS

CVE•added 2023/11/14 6:15 p.m.•159 views

CVE-2023-36404

Windows Kernel Information Disclosure Vulnerability

5.5CVSS7AI score0.00301EPSS

CVE•added 2023/11/14 6:15 p.m.•159 views

CVE-2023-36427

Windows Hyper-V Elevation of Privilege Vulnerability

7CVSS8.1AI score0.04872EPSS

CVE•added 2023/11/14 6:15 p.m.•149 views

CVE-2023-36408

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00131EPSS

CVE•added 2023/11/14 6:15 p.m.•141 views

CVE-2023-36407

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.10652EPSS

CVE•added 2023/12/12 6:15 p.m.•120 views

CVE-2023-35630

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02182EPSS

CVE•added 2023/12/12 6:15 p.m.•117 views

CVE-2023-21740

Windows Media Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.00353EPSS

CVE•added 2023/12/12 6:15 p.m.•106 views

CVE-2023-35639

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00904EPSS

CVE•added 2023/12/12 6:15 p.m.•106 views

CVE-2023-36006

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9AI score0.00209EPSS

CVE•added 2023/11/14 6:15 p.m.•106 views

CVE-2023-36046

Windows Authentication Denial of Service Vulnerability

7.1CVSS6.9AI score0.0021EPSS

CVE•added 2023/12/12 6:15 p.m.•100 views

CVE-2023-36003

XAML Diagnostics Elevation of Privilege Vulnerability

7.3CVSS7.4AI score0.32512EPSS

CVE•added 2023/11/14 6:15 p.m.•96 views

CVE-2023-36396

Windows Compressed Folder Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.0049EPSS

CVE•added 2023/12/12 6:15 p.m.•94 views

CVE-2023-36004

Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability

7.5CVSS7.9AI score0.00177EPSS

CVE•added 2023/11/14 6:15 p.m.•90 views

CVE-2023-36399

Windows Storage Elevation of Privilege Vulnerability

7.1CVSS8.1AI score0.01113EPSS

CVE•added 2023/12/12 6:15 p.m.•87 views

CVE-2023-35642

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00491EPSS

CVE•added 2023/12/12 6:15 p.m.•79 views

CVE-2023-35641

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.04439EPSS

CVE•added 2023/12/12 6:15 p.m.•76 views

CVE-2023-36011

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00102EPSS

CVE•added 2023/12/12 6:15 p.m.•73 views

CVE-2023-35644

Windows Sysmain Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.05457EPSS

CVE•added 2023/12/12 6:15 p.m.•66 views

CVE-2023-36005

Windows Telephony Server Elevation of Privilege Vulnerability

8.1CVSS8AI score0.08837EPSS

CVE•added 2023/12/12 6:15 p.m.•66 views

CVE-2023-36696

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00108EPSS

CVE•added 2023/12/12 6:15 p.m.•64 views

CVE-2023-36391

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.01647EPSS

CVE•added 2023/12/12 6:15 p.m.•63 views

CVE-2023-35631

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.0157EPSS

CVE•added 2023/12/12 6:15 p.m.•61 views

CVE-2023-35635

Windows Kernel Denial of Service Vulnerability

5.5CVSS5.7AI score0.00613EPSS

CVE•added 2023/12/12 6:15 p.m.•49 views

CVE-2023-35634

Windows Bluetooth Driver Remote Code Execution Vulnerability

8.8CVSS8.4AI score0.00189EPSS