Microsoft Windows 11 21H2 vulnerabilities
799 known vulnerabilities affecting microsoft/windows_11_21h2.
Total CVEs
799
CISA KEV
55
actively exploited
Public exploits
12
Exploited in wild
55
Severity breakdown
CRITICAL29HIGH557MEDIUM213
Vulnerabilities
Page 1 of 40
CVE-2022-40733MEDIUMCVSS 5.0v10.0.22000.5932024-12-18
CVE-2022-40733 [MEDIUM] CWE-476 CVE-2022-40733: An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys drive
An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot. An unprivileged user can run specially-crafted code
nvd
CVE-2022-40732MEDIUMCVSS 5.0v10.0.22000.5932024-12-18
CVE-2022-40732 [MEDIUM] CWE-476 CVE-2022-40732: An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys drive
An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot. An unprivileged user can run specially-crafted code
nvd
CVE-2024-43556HIGHCVSS 7.8fixed in 10.0.22000.32602024-10-08
CVE-2024-43556 [HIGH] CWE-416 CVE-2024-43556: Windows Graphics Component Elevation of Privilege Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
nvd
CVE-2024-43574HIGHCVSS 8.3fixed in 10.0.22000.32602024-10-08
CVE-2024-43574 [HIGH] CWE-416 CVE-2024-43574: Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability
Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability
nvd
CVE-2024-43535HIGHCVSS 7.0fixed in 10.0.22000.32602024-10-08
CVE-2024-43535 [HIGH] CWE-416 CVE-2024-43535: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
nvd
CVE-2024-43518HIGHCVSS 8.8fixed in 10.0.22000.32602024-10-08
CVE-2024-43518 [HIGH] CWE-122 CVE-2024-43518: Windows Telephony Server Remote Code Execution Vulnerability
Windows Telephony Server Remote Code Execution Vulnerability
nvd
CVE-2024-43528HIGHCVSS 7.8fixed in 10.0.22000.32602024-10-08
CVE-2024-43528 [HIGH] CWE-122 CVE-2024-43528: Windows Secure Kernel Mode Elevation of Privilege Vulnerability
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
nvd
CVE-2024-43599HIGHCVSS 8.8fixed in 10.0.22000.32602024-10-08
CVE-2024-43599 [HIGH] CWE-416 CVE-2024-43599: Remote Desktop Client Remote Code Execution Vulnerability
Remote Desktop Client Remote Code Execution Vulnerability
nvd
CVE-2024-43615HIGHCVSS 7.1fixed in 10.0.22000.32602024-10-08
CVE-2024-43615 [HIGH] CWE-73 CVE-2024-43615: Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
Microsoft OpenSSH for Windows Remote Code Execution Vulnerability
nvd
CVE-2024-43501HIGHCVSS 7.8fixed in 10.0.22000.32602024-10-08
CVE-2024-43501 [HIGH] CWE-59 CVE-2024-43501: Windows Common Log File System Driver Elevation of Privilege Vulnerability
Windows Common Log File System Driver Elevation of Privilege Vulnerability
nvd
CVE-2024-43517HIGHCVSS 8.8fixed in 10.0.22000.32602024-10-08
CVE-2024-43517 [HIGH] CWE-122 CVE-2024-43517: Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
nvd
CVE-2024-43565HIGHCVSS 7.5fixed in 10.0.22000.32602024-10-08
CVE-2024-43565 [HIGH] CWE-125 CVE-2024-43565: Windows Network Address Translation (NAT) Denial of Service Vulnerability
Windows Network Address Translation (NAT) Denial of Service Vulnerability
nvd
CVE-2024-43514HIGHCVSS 7.8fixed in 10.0.22000.32602024-10-08
CVE-2024-43514 [HIGH] CWE-415 CVE-2024-43514: Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability
Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability
nvd
CVE-2024-43562HIGHCVSS 7.5fixed in 10.0.22000.32602024-10-08
CVE-2024-43562 [HIGH] CWE-125 CVE-2024-43562: Windows Network Address Translation (NAT) Denial of Service Vulnerability
Windows Network Address Translation (NAT) Denial of Service Vulnerability
nvd
CVE-2024-43516HIGHCVSS 7.8fixed in 10.0.22000.32602024-10-08
CVE-2024-43516 [HIGH] CWE-822 CVE-2024-43516: Windows Secure Kernel Mode Elevation of Privilege Vulnerability
Windows Secure Kernel Mode Elevation of Privilege Vulnerability
nvd
CVE-2024-43529HIGHCVSS 7.3fixed in 10.0.22000.32602024-10-08
CVE-2024-43529 [HIGH] CWE-822 CVE-2024-43529: Windows Print Spooler Elevation of Privilege Vulnerability
Windows Print Spooler Elevation of Privilege Vulnerability
nvd
CVE-2024-43511HIGHCVSS 7.0fixed in 10.0.22000.32602024-10-08
CVE-2024-43511 [HIGH] CWE-367 CVE-2024-43511: Windows Kernel Elevation of Privilege Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
nvd
CVE-2024-43532HIGHCVSS 8.8fixed in 10.0.22000.32602024-10-08
CVE-2024-43532 [HIGH] CWE-636 CVE-2024-43532: Remote Registry Service Elevation of Privilege Vulnerability
Remote Registry Service Elevation of Privilege Vulnerability
nvd
CVE-2024-43509HIGHCVSS 7.8fixed in 10.0.22000.32602024-10-08
CVE-2024-43509 [HIGH] CWE-416 CVE-2024-43509: Windows Graphics Component Elevation of Privilege Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
nvd
CVE-2024-43582HIGHCVSS 8.1fixed in 10.0.22000.32602024-10-08
CVE-2024-43582 [HIGH] CWE-416 CVE-2024-43582: Remote Desktop Protocol Server Remote Code Execution Vulnerability
Remote Desktop Protocol Server Remote Code Execution Vulnerability
nvd
1 / 40Next →