Windows 11 23h2
by Microsoft
Source repositories
CVEs (2,235)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-24866 | Med | 0.42 | 6.5 | 0.02 | Mar 14, 2023 | Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability | ||
| CVE-2023-24865 | Med | 0.42 | 6.5 | 0.02 | Mar 14, 2023 | Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability | ||
| CVE-2023-24863 | Med | 0.42 | 6.5 | 0.01 | Mar 14, 2023 | Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability | ||
| CVE-2023-24857 | Med | 0.42 | 6.5 | 0.01 | Mar 14, 2023 | Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability | ||
| CVE-2023-23411 | Med | 0.42 | 6.5 | 0.01 | Mar 14, 2023 | Windows Hyper-V Denial of Service Vulnerability | ||
| CVE-2022-44707 | Med | 0.42 | 6.5 | 0.03 | Dec 13, 2022 | Windows Kernel Denial of Service Vulnerability | ||
| CVE-2022-44679 | Med | 0.42 | 6.5 | 0.01 | Dec 13, 2022 | Windows Graphics Component Information Disclosure Vulnerability | ||
| CVE-2022-41097 | Med | 0.42 | 6.5 | 0.01 | Nov 9, 2022 | Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability | ||
| CVE-2022-41086 | Med | 0.42 | 6.4 | 0.00 | Nov 9, 2022 | Windows Group Policy Elevation of Privilege Vulnerability | ||
| CVE-2022-38015 | Med | 0.42 | 6.5 | 0.01 | Nov 9, 2022 | Windows Hyper-V Denial of Service Vulnerability | ||
| CVE-2022-38033 | Med | 0.42 | 6.5 | 0.02 | Oct 11, 2022 | Windows Server Remotely Accessible Registry Keys Information Disclosure Vulnerability | ||
| CVE-2022-37977 | Med | 0.42 | 6.5 | 0.02 | Oct 11, 2022 | Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability | ||
| CVE-2022-35770 | Med | 0.42 | 6.5 | 0.01 | Oct 11, 2022 | Windows NTLM Spoofing Vulnerability | ||
| CVE-2026-40380 | Med | 0.40 | 6.2 | 0.00 | May 12, 2026 | Heap-based buffer overflow in Volume Manager Extension Driver allows an authorized attacker to execute code with a physical attack. | ||
| CVE-2026-32088 | Med | 0.40 | 6.1 | 0.00 | Apr 14, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Biometric Service allows an unauthorized attacker to bypass a security feature with a physical attack. | ||
| CVE-2026-32072 | Med | 0.40 | 6.2 | 0.00 | Apr 14, 2026 | Improper authentication in Windows Active Directory allows an unauthorized attacker to perform spoofing locally. | ||
| CVE-2026-26169 | Med | 0.40 | 6.1 | 0.02 | Apr 14, 2026 | Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information locally. | ||
| CVE-2024-21316 | Med | 0.40 | 6.1 | 0.01 | Jan 9, 2024 | Windows Server Key Distribution Service Security Feature Bypass | ||
| CVE-2023-35341 | Med | 0.40 | 6.2 | 0.01 | Jul 11, 2023 | Microsoft DirectMusic Information Disclosure Vulnerability | ||
| CVE-2023-28269 | Med | 0.40 | 6.2 | 0.01 | Apr 11, 2023 | Windows Boot Manager Security Feature Bypass Vulnerability |
- risk 0.42cvss 6.5epss 0.02
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
- risk 0.42cvss 6.5epss 0.02
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
- risk 0.42cvss 6.5epss 0.01
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
- risk 0.42cvss 6.5epss 0.01
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
- risk 0.42cvss 6.5epss 0.01
Windows Hyper-V Denial of Service Vulnerability
- risk 0.42cvss 6.5epss 0.03
Windows Kernel Denial of Service Vulnerability
- risk 0.42cvss 6.5epss 0.01
Windows Graphics Component Information Disclosure Vulnerability
- risk 0.42cvss 6.5epss 0.01
Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability
- risk 0.42cvss 6.4epss 0.00
Windows Group Policy Elevation of Privilege Vulnerability
- risk 0.42cvss 6.5epss 0.01
Windows Hyper-V Denial of Service Vulnerability
- risk 0.42cvss 6.5epss 0.02
Windows Server Remotely Accessible Registry Keys Information Disclosure Vulnerability
- risk 0.42cvss 6.5epss 0.02
Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability
- risk 0.42cvss 6.5epss 0.01
Windows NTLM Spoofing Vulnerability
- risk 0.40cvss 6.2epss 0.00
Heap-based buffer overflow in Volume Manager Extension Driver allows an authorized attacker to execute code with a physical attack.
- risk 0.40cvss 6.1epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Biometric Service allows an unauthorized attacker to bypass a security feature with a physical attack.
- risk 0.40cvss 6.2epss 0.00
Improper authentication in Windows Active Directory allows an unauthorized attacker to perform spoofing locally.
- risk 0.40cvss 6.1epss 0.02
Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information locally.
- risk 0.40cvss 6.1epss 0.01
Windows Server Key Distribution Service Security Feature Bypass
- risk 0.40cvss 6.2epss 0.01
Microsoft DirectMusic Information Disclosure Vulnerability
- risk 0.40cvss 6.2epss 0.01
Windows Boot Manager Security Feature Bypass Vulnerability
Page 41 of 112