Windows 11 25h2
by Microsoft
CVEs (597)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-23673 | 0.00 | — | 0.00 | Mar 10, 2026 | Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-23672 | 0.00 | — | 0.00 | Mar 10, 2026 | Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability | |||
| CVE-2026-23671 | 0.00 | — | 0.00 | Mar 10, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-23669 | 0.00 | — | 0.01 | Mar 10, 2026 | Use after free in RPC Runtime allows an authorized attacker to execute code over a network. | |||
| CVE-2026-23667 | 0.00 | — | 0.00 | Mar 10, 2026 | Use after free in Broadcast DVR allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-20846 | 0.00 | — | 0.01 | Feb 10, 2026 | Buffer over-read in Windows GDI+ allows an unauthorized attacker to deny service over a network. | |||
| CVE-2026-21231 | 0.00 | — | 0.02 | Feb 10, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Kernel allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21232 | 0.00 | — | 0.00 | Feb 10, 2026 | Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21237 | 0.00 | — | 0.00 | Feb 10, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21238 | 0.00 | — | 0.03 | Feb 10, 2026 | Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21239 | 0.00 | — | 0.00 | Feb 10, 2026 | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21241 | 0.00 | — | 0.02 | Feb 10, 2026 | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21240 | 0.00 | — | 0.00 | Feb 10, 2026 | Time-of-check time-of-use (toctou) race condition in Windows HTTP.sys allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21245 | 0.00 | — | 0.00 | Feb 10, 2026 | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21249 | 0.00 | — | 0.11 | Feb 10, 2026 | External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing locally. | |||
| CVE-2026-21253 | 0.00 | — | 0.01 | Feb 10, 2026 | Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21255 | 0.00 | — | 0.00 | Feb 10, 2026 | Improper access control in Windows Hyper-V allows an authorized attacker to bypass a security feature locally. | |||
| CVE-2026-21508 | 0.00 | — | 0.00 | Feb 10, 2026 | Improper authentication in Windows Storage allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21236 | 0.00 | — | 0.00 | Feb 10, 2026 | Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | |||
| CVE-2026-21234 | 0.00 | — | 0.00 | Feb 10, 2026 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally. |
- CVE-2026-23673Mar 10, 2026risk 0.00cvss —epss 0.00
Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.
- CVE-2026-23672Mar 10, 2026risk 0.00cvss —epss 0.00
Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability
- CVE-2026-23671Mar 10, 2026risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to elevate privileges locally.
- CVE-2026-23669Mar 10, 2026risk 0.00cvss —epss 0.01
Use after free in RPC Runtime allows an authorized attacker to execute code over a network.
- CVE-2026-23667Mar 10, 2026risk 0.00cvss —epss 0.00
Use after free in Broadcast DVR allows an authorized attacker to elevate privileges locally.
- CVE-2026-20846Feb 10, 2026risk 0.00cvss —epss 0.01
Buffer over-read in Windows GDI+ allows an unauthorized attacker to deny service over a network.
- CVE-2026-21231Feb 10, 2026risk 0.00cvss —epss 0.02
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Kernel allows an authorized attacker to elevate privileges locally.
- CVE-2026-21232Feb 10, 2026risk 0.00cvss —epss 0.00
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally.
- CVE-2026-21237Feb 10, 2026risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.
- CVE-2026-21238Feb 10, 2026risk 0.00cvss —epss 0.03
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- CVE-2026-21239Feb 10, 2026risk 0.00cvss —epss 0.00
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
- CVE-2026-21241Feb 10, 2026risk 0.00cvss —epss 0.02
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- CVE-2026-21240Feb 10, 2026risk 0.00cvss —epss 0.00
Time-of-check time-of-use (toctou) race condition in Windows HTTP.sys allows an authorized attacker to elevate privileges locally.
- CVE-2026-21245Feb 10, 2026risk 0.00cvss —epss 0.00
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
- CVE-2026-21249Feb 10, 2026risk 0.00cvss —epss 0.11
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing locally.
- CVE-2026-21253Feb 10, 2026risk 0.00cvss —epss 0.01
Use after free in Mailslot File System allows an authorized attacker to elevate privileges locally.
- CVE-2026-21255Feb 10, 2026risk 0.00cvss —epss 0.00
Improper access control in Windows Hyper-V allows an authorized attacker to bypass a security feature locally.
- CVE-2026-21508Feb 10, 2026risk 0.00cvss —epss 0.00
Improper authentication in Windows Storage allows an authorized attacker to elevate privileges locally.
- CVE-2026-21236Feb 10, 2026risk 0.00cvss —epss 0.00
Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- CVE-2026-21234Feb 10, 2026risk 0.00cvss —epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.
Page 17 of 30