Windows 11 23h2
by Microsoft
Source repositories
CVEs (2,235)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-36033 | 0.12 | — | 0.12 | KEV | Nov 14, 2023 | Windows DWM Core Library Elevation of Privilege Vulnerability | ||
| CVE-2023-36036 | 0.12 | — | 0.17 | KEV | Nov 14, 2023 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability | ||
| CVE-2023-36563 | 0.12 | — | 0.21 | KEV | Oct 10, 2023 | Microsoft WordPad Information Disclosure Vulnerability | ||
| CVE-2023-21823 | 0.12 | — | 0.06 | KEV | Feb 14, 2023 | Windows Graphics Component Remote Code Execution Vulnerability | ||
| CVE-2022-41125 | 0.12 | — | 0.03 | KEV | Nov 9, 2022 | Windows CNG Key Isolation Service Elevation of Privilege Vulnerability | ||
| CVE-2022-41033 | 0.12 | — | 0.02 | KEV | Oct 11, 2022 | Windows COM+ Event System Service Elevation of Privilege Vulnerability | ||
| CVE-2022-38028 | 0.12 | — | 0.15 | KEV | Oct 11, 2022 | Windows Print Spooler Elevation of Privilege Vulnerability | ||
| CVE-2023-38146 | 0.10 | — | 0.39 | Sep 12, 2023 | Windows Themes Remote Code Execution Vulnerability | |||
| CVE-2023-21554 | 0.10 | — | 0.95 | Apr 11, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | |||
| CVE-2025-24071 | 0.09 | — | 0.25 | Mar 11, 2025 | Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network. | |||
| CVE-2025-21293 | 0.09 | — | 0.18 | Jan 14, 2025 | Active Directory Domain Services Elevation of Privilege Vulnerability | |||
| CVE-2023-21768 | 0.09 | — | 0.65 | Jan 10, 2023 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | |||
| CVE-2024-30085 | 0.08 | — | 0.15 | Jun 11, 2024 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability | |||
| CVE-2024-49113 | 0.07 | — | 0.84 | Dec 10, 2024 | Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability | |||
| CVE-2024-49112 | 0.07 | — | 0.71 | Dec 10, 2024 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | |||
| CVE-2024-38063 | 0.07 | — | 0.71 | Aug 13, 2024 | Windows TCP/IP Remote Code Execution Vulnerability | |||
| CVE-2024-26229 | 0.07 | — | 0.09 | Apr 9, 2024 | Windows CSC Service Elevation of Privilege Vulnerability | |||
| CVE-2025-21298 | 0.06 | — | 0.81 | Jan 14, 2025 | Windows OLE Remote Code Execution Vulnerability | |||
| CVE-2024-38144 | 0.06 | — | 0.32 | Aug 13, 2024 | Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability | |||
| CVE-2023-21752 | 0.06 | — | 0.05 | Jan 10, 2023 | Windows Backup Service Elevation of Privilege Vulnerability |
- risk 0.12cvss —epss 0.12
Windows DWM Core Library Elevation of Privilege Vulnerability
- risk 0.12cvss —epss 0.17
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
- risk 0.12cvss —epss 0.21
Microsoft WordPad Information Disclosure Vulnerability
- risk 0.12cvss —epss 0.06
Windows Graphics Component Remote Code Execution Vulnerability
- risk 0.12cvss —epss 0.03
Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
- risk 0.12cvss —epss 0.02
Windows COM+ Event System Service Elevation of Privilege Vulnerability
- risk 0.12cvss —epss 0.15
Windows Print Spooler Elevation of Privilege Vulnerability
- CVE-2023-38146Sep 12, 2023risk 0.10cvss —epss 0.39
Windows Themes Remote Code Execution Vulnerability
- CVE-2023-21554Apr 11, 2023risk 0.10cvss —epss 0.95
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- CVE-2025-24071Mar 11, 2025risk 0.09cvss —epss 0.25
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.
- CVE-2025-21293Jan 14, 2025risk 0.09cvss —epss 0.18
Active Directory Domain Services Elevation of Privilege Vulnerability
- CVE-2023-21768Jan 10, 2023risk 0.09cvss —epss 0.65
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
- CVE-2024-30085Jun 11, 2024risk 0.08cvss —epss 0.15
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
- CVE-2024-49113Dec 10, 2024risk 0.07cvss —epss 0.84
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
- CVE-2024-49112Dec 10, 2024risk 0.07cvss —epss 0.71
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
- CVE-2024-38063Aug 13, 2024risk 0.07cvss —epss 0.71
Windows TCP/IP Remote Code Execution Vulnerability
- CVE-2024-26229Apr 9, 2024risk 0.07cvss —epss 0.09
Windows CSC Service Elevation of Privilege Vulnerability
- CVE-2025-21298Jan 14, 2025risk 0.06cvss —epss 0.81
Windows OLE Remote Code Execution Vulnerability
- CVE-2024-38144Aug 13, 2024risk 0.06cvss —epss 0.32
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
- CVE-2023-21752Jan 10, 2023risk 0.06cvss —epss 0.05
Windows Backup Service Elevation of Privilege Vulnerability
Page 18 of 112