Windows 11 24h2@* Security Vulnerabilities and Issues — Page 2 of Windows 11 24h2@* CVE List

Access of resource using incompatible type ('type confusion') in Microsoft Scripting Engine allows an unauthorized attacker to execute code over a network.

7.5CVSS7.5AI score0.20545EPSS

CVE•added 2025/02/11 6:15 p.m.•162 views

CVE-2025-21351

Windows Active Directory Domain Services API Denial of Service Vulnerability

7.5CVSS7.9AI score0.06049EPSS

CVE•added 2025/05/13 5:16 p.m.•160 views

CVE-2025-30400

Use after free in Windows DWM allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.0426EPSS

CVE•added 2025/01/14 6:15 p.m.•159 views

CVE-2025-21341

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00132EPSS

CVE•added 2024/10/08 6:15 p.m.•158 views

CVE-2024-43560

Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.00785EPSS

CVE•added 2024/12/12 2:4 a.m.•158 views

CVE-2024-49082

Windows File Explorer Information Disclosure Vulnerability

6.8CVSS6.4AI score0.0011EPSS

CVE•added 2025/01/14 6:15 p.m.•154 views

CVE-2025-21327

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00132EPSS

CVE•added 2025/05/13 5:16 p.m.•152 views

CVE-2025-32709

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7.8CVSS8AI score0.04268EPSS

CVE•added 2024/10/08 6:15 p.m.•151 views

CVE-2024-43585

Code Integrity Guard Security Feature Bypass Vulnerability

5.5CVSS6.9AI score0.00171EPSS

CVE•added 2025/03/11 5:16 p.m.•150 views

CVE-2025-24076

Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.

7.3CVSS7.2AI score0.02762EPSS

CVE•added 2024/08/13 6:15 p.m.•148 views

CVE-2024-38199

Windows Line Printer Daemon (LPD) Service Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.11126EPSS

CVE•added 2024/11/12 6:15 p.m.•148 views

CVE-2024-43625

Microsoft Windows VMSwitch Elevation of Privilege Vulnerability

8.1CVSS7.9AI score0.00126EPSS

CVE•added 2024/10/08 6:15 p.m.•144 views

CVE-2024-43533

Remote Desktop Client Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.04126EPSS

CVE•added 2025/05/13 5:16 p.m.•144 views

CVE-2025-32706

Improper input validation in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.1367EPSS

CVE•added 2024/12/12 2:4 a.m.•141 views

CVE-2024-49132

Windows Remote Desktop Services Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00252EPSS

CVE•added 2025/05/13 5:16 p.m.•140 views

CVE-2025-32701

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.04825EPSS

CVE•added 2025/01/14 6:15 p.m.•138 views

CVE-2025-21245

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00461EPSS

CVE•added 2024/08/13 6:15 p.m.•136 views

CVE-2024-38144

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

8.8CVSS8.8AI score0.77429EPSS

CVE•added 2024/10/08 6:15 p.m.•136 views

CVE-2024-43552

Windows Shell Remote Code Execution Vulnerability

7.3CVSS8AI score0.00519EPSS

CVE•added 2024/08/13 6:15 p.m.•135 views

CVE-2024-38131

Clipboard Virtual Channel Extension Remote Code Execution Vulnerability

8.8CVSS9AI score0.01107EPSS

CVE•added 2024/10/08 6:15 p.m.•133 views

CVE-2024-43519

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9AI score0.06328EPSS

CVE•added 2025/01/17 1:15 a.m.•133 views

CVE-2025-21325

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.0056EPSS

CVE•added 2024/11/12 6:15 p.m.•131 views

CVE-2024-49046

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00163EPSS

CVE•added 2024/07/09 5:15 p.m.•130 views

CVE-2024-30098

Windows Cryptographic Services Security Feature Bypass Vulnerability

7.5CVSS7.9AI score0.03325EPSS

CVE•added 2025/01/14 6:15 p.m.•130 views

CVE-2025-21310

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00133EPSS

CVE•added 2025/01/14 6:16 p.m.•130 views

CVE-2025-21417

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.02401EPSS

CVE•added 2024/12/12 2:4 a.m.•128 views

CVE-2024-49080

Windows IP Routing Management Snapin Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.02408EPSS

CVE•added 2025/01/14 6:15 p.m.•128 views

CVE-2025-21211

Secure Boot Security Feature Bypass Vulnerability

6.8CVSS6.6AI score0.00155EPSS

CVE•added 2025/01/14 6:15 p.m.•128 views

CVE-2025-21260

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00133EPSS

CVE•added 2025/01/14 6:15 p.m.•128 views

CVE-2025-21273

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00626EPSS

CVE•added 2024/10/08 6:15 p.m.•127 views

CVE-2024-43508

Windows Graphics Component Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00198EPSS

CVE•added 2024/10/08 6:15 p.m.•127 views

CVE-2024-43562

Windows Network Address Translation (NAT) Denial of Service Vulnerability

7.5CVSS7.9AI score0.13772EPSS

CVE•added 2024/08/13 6:15 p.m.•126 views

CVE-2024-38152

Windows OLE Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.01111EPSS

CVE•added 2025/01/14 6:15 p.m.•126 views

CVE-2025-21311

Windows NTLM V1 Elevation of Privilege Vulnerability

9.8CVSS9.5AI score0.06575EPSS

CVE•added 2024/08/13 6:15 p.m.•125 views

CVE-2024-38132

Windows Network Address Translation (NAT) Denial of Service Vulnerability

7.5CVSS7.5AI score0.20346EPSS

CVE•added 2024/10/08 6:15 p.m.•125 views

CVE-2024-43561

Windows Mobile Broadband Driver Denial of Service Vulnerability

6.5CVSS7.3AI score0.00312EPSS

CVE•added 2024/12/12 2:4 a.m.•125 views

CVE-2024-49105

Remote Desktop Client Remote Code Execution Vulnerability

8.4CVSS8.6AI score0.01164EPSS

CVE•added 2024/12/12 2:4 a.m.•124 views

CVE-2024-49102

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.02689EPSS

CVE•added 2024/10/08 6:15 p.m.•123 views

CVE-2024-43520

Windows Kernel Denial of Service Vulnerability

5CVSS6.5AI score0.00205EPSS

CVE•added 2024/08/13 6:15 p.m.•122 views

CVE-2024-38140

Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.11372EPSS

CVE•added 2025/04/08 6:15 p.m.•122 views

CVE-2025-21204

Improper link resolution before file access ('link following') in Windows Update Stack allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00597EPSS

CVE•added 2025/01/14 6:15 p.m.•122 views

CVE-2025-21329

MapUrlToZone Security Feature Bypass Vulnerability

4.3CVSS4.6AI score0.00103EPSS

Total number of security vulnerabilities624