VYPR

Windows 11 24h2

by Microsoft

CVEs (1,332)

  • CVE-2025-53804Sep 9, 2025
    risk 0.00cvss epss 0.01

    Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information locally.

  • CVE-2025-53803Sep 9, 2025
    risk 0.00cvss epss 0.01

    Generation of error message containing sensitive information in Windows Kernel allows an authorized attacker to disclose information locally.

  • CVE-2025-53802Sep 9, 2025
    risk 0.00cvss epss 0.00

    Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.

  • CVE-2025-53800Sep 9, 2025
    risk 0.00cvss epss 0.00

    No cwe for this issue in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

  • CVE-2025-55236Sep 9, 2025
    risk 0.00cvss epss 0.00

    Time-of-check time-of-use (toctou) race condition in Graphics Kernel allows an authorized attacker to execute code locally.

  • CVE-2025-55228Sep 9, 2025
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally.

  • CVE-2025-55226Sep 9, 2025
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to execute code locally.

  • CVE-2025-55223Sep 9, 2025
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2025-54919Sep 9, 2025
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to execute code locally.

  • CVE-2025-54918Sep 9, 2025
    risk 0.00cvss epss 0.19

    Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network.

  • CVE-2025-54916Sep 9, 2025
    risk 0.00cvss epss 0.02

    Stack-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally.

  • CVE-2025-54913Sep 9, 2025
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows UI XAML Maps MapControlSettings allows an authorized attacker to elevate privileges locally.

  • CVE-2025-54895Sep 9, 2025
    risk 0.00cvss epss 0.00

    Integer overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized attacker to elevate privileges locally.

  • CVE-2025-54894Sep 9, 2025
    risk 0.00cvss epss 0.00

    Local Security Authority Subsystem Service Elevation of Privilege Vulnerability

  • CVE-2025-54111Sep 9, 2025
    risk 0.00cvss epss 0.00

    Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges locally.

  • CVE-2025-54110Sep 9, 2025
    risk 0.00cvss epss 0.04

    Integer overflow or wraparound in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2025-54102Sep 9, 2025
    risk 0.00cvss epss 0.00

    Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.

  • CVE-2025-54099Sep 9, 2025
    risk 0.00cvss epss 0.00

    Stack-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

  • CVE-2025-49734Sep 9, 2025
    risk 0.00cvss epss 0.00

    Improper restriction of communication channel to intended endpoints in Windows PowerShell allows an authorized attacker to elevate privileges locally.

  • CVE-2025-55229Aug 21, 2025
    risk 0.00cvss epss 0.00

    Improper verification of cryptographic signature in Windows Certificates allows an unauthorized attacker to perform spoofing over a network.

Page 38 of 67