VYPR

Windows 11 23h2

by Microsoft

Source repositories

CVEs (2,235)

  • CVE-2025-27491Apr 8, 2025
    risk 0.00cvss epss 0.01

    Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network.

  • CVE-2025-27492Apr 8, 2025
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Secure Channel allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27487Apr 8, 2025
    risk 0.00cvss epss 0.01

    Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network.

  • CVE-2025-27481Apr 8, 2025
    risk 0.00cvss epss 0.01

    Stack-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

  • CVE-2025-27484Apr 8, 2025
    risk 0.00cvss epss 0.01

    Sensitive data storage in improperly locked memory in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over a network.

  • CVE-2025-27467Apr 8, 2025
    risk 0.00cvss epss 0.01

    Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.

  • CVE-2025-26679Apr 8, 2025
    risk 0.00cvss epss 0.01

    Use after free in RPC Endpoint Mapper Service allows an authorized attacker to elevate privileges locally.

  • CVE-2025-26678Apr 8, 2025
    risk 0.00cvss epss 0.00

    Improper access control in Windows Defender Application Control (WDAC) allows an unauthorized attacker to bypass a security feature locally.

  • CVE-2025-26675Apr 8, 2025
    risk 0.00cvss epss 0.01

    Out-of-bounds read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.

  • CVE-2025-26672Apr 8, 2025
    risk 0.00cvss epss 0.02

    Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

  • CVE-2025-26674Apr 8, 2025
    risk 0.00cvss epss 0.01

    Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.

  • CVE-2025-26670Apr 8, 2025
    risk 0.00cvss epss 0.08

    Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network.

  • CVE-2025-26649Apr 8, 2025
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Secure Channel allows an authorized attacker to elevate privileges locally.

  • CVE-2025-26648Apr 8, 2025
    risk 0.00cvss epss 0.00

    Sensitive data storage in improperly locked memory in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2025-26644Apr 8, 2025
    risk 0.00cvss epss 0.01

    Automated recognition mechanism with inadequate detection or handling of adversarial input perturbations in Windows Hello allows an unauthorized attacker to perform spoofing locally.

  • CVE-2025-26640Apr 8, 2025
    risk 0.00cvss epss 0.00

    Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.

  • CVE-2025-26637Apr 8, 2025
    risk 0.00cvss epss 0.01

    Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.

  • CVE-2025-26635Apr 8, 2025
    risk 0.00cvss epss 0.01

    Weak authentication in Windows Hello allows an authorized attacker to bypass a security feature over a network.

  • CVE-2025-26639Apr 8, 2025
    risk 0.00cvss epss 0.00

    Integer overflow or wraparound in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.

  • CVE-2025-24058Apr 8, 2025
    risk 0.00cvss epss 0.01

    Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

Page 82 of 112