Windows 11 23h2 Security Vulnerabilities and Issues — Windows 11 23h2 CVE List

SummaryMicrosoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security (VBS). However, an attack...

7.3CVSS8.2AI score0.03533EPSS

CVE•added 2024/04/09 5:15 p.m.•445 views

CVE-2024-26256

Libarchive Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.4082EPSS

CVE•added 2023/09/15 4:15 a.m.•441 views

CVE-2023-38039

When curl retrieves an HTTP response, it stores the incoming headers so thatthey can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it wouldaccept in a response, allowing a malicious server to stream an endless seriesof headers and...

7.5CVSS7.5AI score0.14467EPSS

CVE•added 2024/12/12 2:4 a.m.•435 views

CVE-2024-49138

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.5AI score0.8442EPSS

CVE•added 2023/11/14 6:15 p.m.•432 views

CVE-2023-36036

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.01128EPSS

CVE•added 2024/09/10 5:15 p.m.•429 views

CVE-2024-38014

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.10523EPSS

CVE•added 2024/03/12 5:15 p.m.•425 views

CVE-2024-26169

Windows Error Reporting Service Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.26389EPSS

CVE•added 2025/02/11 6:15 p.m.•418 views

CVE-2025-21391

Windows Storage Elevation of Privilege Vulnerability

7.1CVSS7.7AI score0.04197EPSS

CVE•added 2024/02/13 6:15 p.m.•395 views

CVE-2024-21351

Windows SmartScreen Security Feature Bypass Vulnerability

7.6CVSS8.5AI score0.05135EPSS

CVE•added 2024/05/14 5:17 p.m.•378 views

CVE-2024-30051

Windows DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS6.4AI score0.52423EPSS

CVE•added 2024/06/11 5:15 p.m.•362 views

CVE-2024-30088

Windows Kernel Elevation of Privilege Vulnerability

7CVSS6.9AI score0.85311EPSS

CVE•added 2024/10/08 6:15 p.m.•339 views

CVE-2024-43583

Winlogon Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.07813EPSS

CVE•added 2024/06/11 5:16 p.m.•319 views

CVE-2024-35250

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.41893EPSS

CVE•added 2025/02/11 6:15 p.m.•317 views

CVE-2025-21420

Windows Disk Cleanup Tool Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.31526EPSS

CVE•added 2024/01/09 6:15 p.m.•308 views

CVE-2024-20697

Windows libarchive Remote Code Execution Vulnerability

7.3CVSS7.5AI score0.46383EPSS

CVE•added 2023/11/14 6:15 p.m.•306 views

CVE-2023-36705

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00162EPSS

CVE•added 2024/07/09 5:15 p.m.•303 views

CVE-2024-38112

Windows MSHTML Platform Spoofing Vulnerability

7.5CVSS8.8AI score0.90957EPSS

CVE•added 2025/02/11 6:15 p.m.•275 views

CVE-2025-21418

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.11464EPSS

CVE•added 2025/03/11 5:16 p.m.•274 views

CVE-2025-26633

Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally.

7CVSS6.8AI score0.07394EPSS

CVE•added 2023/11/14 6:15 p.m.•273 views

CVE-2023-36719

Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability

7.8CVSS8.5AI score0.00134EPSS

CVE•added 2024/03/12 5:15 p.m.•268 views

CVE-2024-21438

Microsoft AllJoyn API Denial of Service Vulnerability

7.5CVSS7.6AI score0.0244EPSS

CVE•added 2025/01/14 6:15 p.m.•264 views

CVE-2025-21335

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.05766EPSS

CVE•added 2024/04/09 5:15 p.m.•263 views

CVE-2024-26229

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.85132EPSS

CVE•added 2025/01/14 6:15 p.m.•263 views

CVE-2025-21334

Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.04579EPSS

CVE•added 2023/11/14 6:15 p.m.•256 views

CVE-2023-36405

Windows Kernel Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00119EPSS

CVE•added 2024/08/13 6:15 p.m.•247 views

CVE-2024-38193

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.68971EPSS

CVE•added 2024/03/12 5:15 p.m.•246 views

CVE-2024-21437

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.05247EPSS

CVE•added 2024/03/12 5:15 p.m.•242 views

CVE-2024-21433

Windows Print Spooler Elevation of Privilege Vulnerability

7CVSS8AI score0.01498EPSS

CVE•added 2024/08/13 6:15 p.m.•240 views

CVE-2024-38178

Scripting Engine Memory Corruption Vulnerability

7.5CVSS7.4AI score0.18494EPSS

CVE•added 2023/11/14 6:15 p.m.•238 views

CVE-2023-36424

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.17769EPSS

CVE•added 2024/07/09 5:15 p.m.•235 views

CVE-2024-38080

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.1477EPSS

CVE•added 2024/03/12 5:15 p.m.•234 views

CVE-2024-21445

Windows USB Print Driver Elevation of Privilege Vulnerability

7CVSS7.6AI score0.00109EPSS

CVE•added 2024/03/12 5:15 p.m.•233 views

CVE-2024-26190

Microsoft QUIC Denial of Service Vulnerability

7.5CVSS7.4AI score0.00612EPSS

CVE•added 2025/02/11 6:15 p.m.•233 views

CVE-2025-21181

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.8AI score0.05747EPSS

CVE•added 2024/03/12 5:15 p.m.•232 views

CVE-2024-26173

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00368EPSS

CVE•added 2024/03/12 5:15 p.m.•231 views

CVE-2024-21446

NTFS Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00117EPSS

CVE•added 2024/02/13 6:15 p.m.•225 views

CVE-2024-21343

Windows Network Address Translation (NAT) Denial of Service Vulnerability

7.5CVSS7.7AI score0.01145EPSS

CVE•added 2024/10/08 6:15 p.m.•224 views

CVE-2024-20659

Windows Hyper-V Security Feature Bypass Vulnerability

7.1CVSS7.7AI score0.00566EPSS

CVE•added 2024/09/10 5:15 p.m.•224 views

CVE-2024-30073

Windows Security Zone Mapping Security Feature Bypass Vulnerability

7.8CVSS8.6AI score0.00389EPSS

CVE•added 2025/03/11 5:16 p.m.•224 views

CVE-2025-24985

Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00925EPSS

CVE•added 2024/02/13 6:15 p.m.•223 views

CVE-2024-21347

Microsoft ODBC Driver Remote Code Execution Vulnerability

7.5CVSS7.9AI score0.00966EPSS

CVE•added 2024/02/13 6:15 p.m.•223 views

CVE-2024-21406

Windows Printing Service Spoofing Vulnerability

7.5CVSS7.7AI score0.01257EPSS

CVE•added 2024/03/12 5:15 p.m.•223 views

CVE-2024-21442

Windows USB Print Driver Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00568EPSS

CVE•added 2024/08/13 6:15 p.m.•223 views

CVE-2024-38106

Windows Kernel Elevation of Privilege Vulnerability

7CVSS6.9AI score0.00367EPSS

CVE•added 2024/03/12 5:15 p.m.•222 views

CVE-2024-21431

Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability

7.8CVSS8.1AI score0.00431EPSS

Total number of security vulnerabilities445