Windows 11 24h2 Security Vulnerabilities and Issues — Windows 11 24h2 CVE List | Vulners.com

Lucene search

K

MicrosoftWindows 11 24h2

127 matches found

CVE•added 2013/12/11 12:55 a.m.•3070 views

CVE-2013-3900

Why is Microsoft republishing a CVE from 2013?We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the format i...

8.8CVSS7.4AI score0.72892EPSS

CVE•added 2024/10/08 6:15 p.m.•425 views

CVE-2024-43573

Windows MSHTML Platform Spoofing Vulnerability

8.1CVSS7.4AI score0.08507EPSS

CVE•added 2024/11/12 6:15 p.m.•359 views

CVE-2024-49039

Windows Task Scheduler Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.37414EPSS

CVE•added 2024/10/08 6:15 p.m.•335 views

CVE-2024-30092

Windows Hyper-V Remote Code Execution Vulnerability

8CVSS8.3AI score0.00481EPSS

CVE•added 2024/09/10 5:15 p.m.•295 views

CVE-2024-43461

Windows MSHTML Platform Spoofing Vulnerability

8.8CVSS9.3AI score0.07059EPSS

CVE•added 2024/10/08 6:15 p.m.•275 views

CVE-2024-43584

Windows Scripting Engine Security Feature Bypass Vulnerability

8.4CVSS7.8AI score0.00307EPSS

CVE•added 2025/06/10 5:22 p.m.•264 views

CVE-2025-33053

External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network.

8.8CVSS8.8AI score0.17938EPSS

CVE•added 2025/01/14 6:16 p.m.•224 views

CVE-2025-21413

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.02401EPSS

CVE•added 2025/01/14 6:15 p.m.•211 views

CVE-2025-21293

Active Directory Domain Services Elevation of Privilege Vulnerability

8.8CVSS8.8AI score0.77433EPSS

CVE•added 2025/06/10 5:23 p.m.•206 views

CVE-2025-33073

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

8.8CVSS8.7AI score0.00326EPSS

CVE•added 2025/01/14 6:15 p.m.•174 views

CVE-2025-21302

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00461EPSS

CVE•added 2024/11/12 6:15 p.m.•148 views

CVE-2024-43625

Microsoft Windows VMSwitch Elevation of Privilege Vulnerability

8.1CVSS7.9AI score0.00126EPSS

CVE•added 2024/10/08 6:15 p.m.•144 views

CVE-2024-43533

Remote Desktop Client Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.04126EPSS

CVE•added 2024/12/12 2:4 a.m.•141 views

CVE-2024-49132

Windows Remote Desktop Services Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00252EPSS

CVE•added 2025/01/14 6:15 p.m.•138 views

CVE-2025-21245

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00461EPSS

CVE•added 2024/08/13 6:15 p.m.•136 views

CVE-2024-38144

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

8.8CVSS8.8AI score0.77429EPSS

CVE•added 2024/08/13 6:15 p.m.•135 views

CVE-2024-38131

Clipboard Virtual Channel Extension Remote Code Execution Vulnerability

8.8CVSS9AI score0.01107EPSS

CVE•added 2024/10/08 6:15 p.m.•133 views

CVE-2024-43519

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9AI score0.06328EPSS

CVE•added 2025/01/14 6:16 p.m.•130 views

CVE-2025-21417

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.02401EPSS

CVE•added 2024/12/12 2:4 a.m.•128 views

CVE-2024-49080

Windows IP Routing Management Snapin Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.02408EPSS

CVE•added 2025/01/14 6:15 p.m.•128 views

CVE-2025-21273

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00626EPSS

CVE•added 2024/12/12 2:4 a.m.•125 views

CVE-2024-49105

Remote Desktop Client Remote Code Execution Vulnerability

8.4CVSS8.6AI score0.01164EPSS

CVE•added 2024/12/12 2:4 a.m.•124 views

CVE-2024-49102

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.02689EPSS

CVE•added 2024/12/12 2:4 a.m.•116 views

CVE-2024-49122

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00419EPSS

CVE•added 2024/08/13 6:15 p.m.•115 views

CVE-2024-38115

Windows IP Routing Management Snapin Remote Code Execution Vulnerability

8.8CVSS9AI score0.05878EPSS

CVE•added 2025/01/14 6:15 p.m.•113 views

CVE-2025-21303

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00461EPSS

CVE•added 2025/01/14 6:15 p.m.•111 views

CVE-2025-21286

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.01274EPSS

CVE•added 2025/01/14 6:15 p.m.•111 views

CVE-2025-21332

MapUrlToZone Security Feature Bypass Vulnerability

8.8CVSS4.6AI score0.00115EPSS

CVE•added 2024/09/10 5:15 p.m.•109 views

CVE-2024-38259

Microsoft Management Console Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.05181EPSS

CVE•added 2025/02/11 6:15 p.m.•109 views

CVE-2025-21376

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00461EPSS

CVE•added 2024/06/11 5:15 p.m.•107 views

CVE-2024-30077

Windows OLE Remote Code Execution Vulnerability

8CVSS8.9AI score0.05477EPSS

CVE•added 2025/02/11 6:15 p.m.•106 views

CVE-2025-21369

Microsoft Digest Authentication Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00512EPSS

CVE•added 2024/08/13 6:15 p.m.•103 views

CVE-2024-38180

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS8.7AI score0.05553EPSS

CVE•added 2024/10/08 6:15 p.m.•101 views

CVE-2024-43599

Remote Desktop Client Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.04126EPSS

CVE•added 2024/10/08 6:15 p.m.•100 views

CVE-2024-43582

Remote Desktop Protocol Server Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.18507EPSS

CVE•added 2024/12/12 2:4 a.m.•100 views

CVE-2024-49118

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00257EPSS

CVE•added 2024/12/12 2:4 a.m.•99 views

CVE-2024-49124

Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00202EPSS

CVE•added 2025/01/14 6:15 p.m.•98 views

CVE-2025-21241

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00626EPSS

CVE•added 2025/01/14 6:15 p.m.•98 views

CVE-2025-21295

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.01027EPSS

CVE•added 2024/11/12 6:15 p.m.•97 views

CVE-2024-43627

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01284EPSS

CVE•added 2025/02/11 6:15 p.m.•96 views

CVE-2025-21368

Microsoft Digest Authentication Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00469EPSS

CVE•added 2025/03/11 5:16 p.m.•96 views

CVE-2025-26645

Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

8.8CVSS8.8AI score0.00608EPSS

CVE•added 2024/11/12 6:15 p.m.•95 views

CVE-2024-43628

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01382EPSS

CVE•added 2024/11/12 6:15 p.m.•95 views

CVE-2024-43635

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01382EPSS

CVE•added 2025/02/11 6:15 p.m.•95 views

CVE-2025-21190

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00367EPSS

CVE•added 2025/03/11 5:16 p.m.•95 views

CVE-2025-24035

Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.

8.1CVSS8.2AI score0.00284EPSS

CVE•added 2024/12/12 2:4 a.m.•94 views

CVE-2024-49117

Windows Hyper-V Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.00299EPSS

CVE•added 2024/12/12 2:4 a.m.•94 views

CVE-2024-49126

Windows Local Security Authority Subsystem Service (LSASS) Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.00334EPSS

CVE•added 2025/04/08 6:15 p.m.•94 views

CVE-2025-21222

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

8.8CVSS8AI score0.00083EPSS

CVE•added 2025/04/08 6:15 p.m.•94 views

CVE-2025-26678

Improper access control in Windows Defender Application Control (WDAC) allows an unauthorized attacker to bypass a security feature locally.

8.4CVSS7.2AI score0.00064EPSS

Total number of security vulnerabilities127