Microsoft Windows 11 21H2 vulnerabilities

799 known vulnerabilities affecting microsoft/windows_11_21h2.

Total CVEs

799

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL34HIGH572MEDIUM192LOW1

Vulnerabilities

Page 18 of 40

CVE-2024-20652HIGHCVSS 8.1fixed in 10.0.22000.27132024-01-09

CVE-2024-20652 [HIGH] CWE-73 CVE-2024-20652: Windows HTML Platforms Security Feature Bypass Vulnerability Windows HTML Platforms Security Feature Bypass Vulnerability

nvd

CVE-2024-20687HIGHCVSS 7.5fixed in 10.0.22000.27132024-01-09

CVE-2024-20687 [HIGH] CWE-125 CVE-2024-20687: Microsoft AllJoyn API Denial of Service Vulnerability Microsoft AllJoyn API Denial of Service Vulnerability

nvd

CVE-2024-21309HIGHCVSS 7.8fixed in 10.0.22000.27132024-01-09

CVE-2024-21309 [HIGH] CWE-191 CVE-2024-21309: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-21307HIGHCVSS 7.5fixed in 10.0.22000.27132024-01-09

CVE-2024-21307 [HIGH] CWE-416 CVE-2024-21307: Remote Desktop Client Remote Code Execution Vulnerability Remote Desktop Client Remote Code Execution Vulnerability

nvd

CVE-2024-20661HIGHCVSS 7.5fixed in 10.0.22000.27132024-01-09

CVE-2024-20661 [HIGH] CWE-476 CVE-2024-20661: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2024-20664MEDIUMCVSS 6.5fixed in 10.0.22000.27132024-01-09

CVE-2024-20664 [MEDIUM] CWE-822 CVE-2024-20664: Microsoft Message Queuing Information Disclosure Vulnerability Microsoft Message Queuing Information Disclosure Vulnerability

nvd

CVE-2024-21314MEDIUMCVSS 6.5fixed in 10.0.22000.27132024-01-09

CVE-2024-21314 [MEDIUM] CWE-125 CVE-2024-21314: Microsoft Message Queuing Information Disclosure Vulnerability Microsoft Message Queuing Information Disclosure Vulnerability

nvd

CVE-2024-21316MEDIUMCVSS 6.1fixed in 10.0.22000.27132024-01-09

CVE-2024-21316 [MEDIUM] CWE-20 CVE-2024-21316: Windows Server Key Distribution Service Security Feature Bypass Windows Server Key Distribution Service Security Feature Bypass

nvd

CVE-2024-20692MEDIUMCVSS 5.7fixed in 10.0.22000.27132024-01-09

CVE-2024-20692 [MEDIUM] CWE-326 CVE-2024-20692: Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

nvd

CVE-2024-20691MEDIUMCVSS 4.7fixed in 10.0.22000.27132024-01-09

CVE-2024-20691 [MEDIUM] CWE-125 CVE-2024-20691: Windows Themes Information Disclosure Vulnerability Windows Themes Information Disclosure Vulnerability

nvd

CVE-2024-21305MEDIUMCVSS 4.4fixed in 10.0.22000.27132024-01-09

CVE-2024-21305 [MEDIUM] CWE-732 CVE-2024-21305: Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability

nvd

CVE-2024-20694MEDIUMCVSS 5.5fixed in 10.0.22000.27132024-01-09

CVE-2024-20694 [MEDIUM] CWE-908 CVE-2024-20694: Windows CoreMessaging Information Disclosure Vulnerability Windows CoreMessaging Information Disclosure Vulnerability

nvd

CVE-2024-20660MEDIUMCVSS 6.5fixed in 10.0.22000.27132024-01-09

CVE-2024-20660 [MEDIUM] CWE-125 CVE-2024-20660: Microsoft Message Queuing Information Disclosure Vulnerability Microsoft Message Queuing Information Disclosure Vulnerability

nvd

CVE-2024-20663MEDIUMCVSS 6.5fixed in 10.0.22000.27132024-01-09

CVE-2024-20663 [MEDIUM] CWE-822 CVE-2024-20663: Windows Message Queuing Client (MSMQC) Information Disclosure Windows Message Queuing Client (MSMQC) Information Disclosure

nvd

CVE-2024-21313MEDIUMCVSS 5.3fixed in 10.0.22000.27132024-01-09

CVE-2024-21313 [MEDIUM] CWE-209 CVE-2024-21313: Windows TCP/IP Information Disclosure Vulnerability Windows TCP/IP Information Disclosure Vulnerability

nvd

CVE-2024-20680MEDIUMCVSS 6.5fixed in 10.0.22000.27132024-01-09

CVE-2024-20680 [MEDIUM] CWE-822 CVE-2024-20680: Windows Message Queuing Client (MSMQC) Information Disclosure Windows Message Queuing Client (MSMQC) Information Disclosure

nvd

CVE-2024-21311MEDIUMCVSS 5.5fixed in 10.0.22000.27132024-01-09

CVE-2024-21311 [MEDIUM] CWE-125 CVE-2024-21311: Windows Cryptographic Services Information Disclosure Vulnerability Windows Cryptographic Services Information Disclosure Vulnerability

nvd

CVE-2022-44684MEDIUMCVSS 6.5fixed in 10.0.22000.13352023-12-20

CVE-2022-44684 [MEDIUM] CVE-2022-44684: Windows Local Session Manager (LSM) Denial of Service Vulnerability Windows Local Session Manager (LSM) Denial of Service Vulnerability

nvd

CVE-2023-35641HIGHCVSS 8.8fixed in 10.0.22000.26522023-12-12

CVE-2023-35641 [HIGH] CWE-682 CVE-2023-35641: Internet Connection Sharing (ICS) Remote Code Execution Vulnerability Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

nvd

CVE-2023-35644HIGHCVSS 7.8fixed in 10.0.22000.26522023-12-12

CVE-2023-35644 [HIGH] CWE-190 CVE-2023-35644: Windows Sysmain Service Elevation of Privilege Vulnerability Windows Sysmain Service Elevation of Privilege Vulnerability

nvd

← Previous18 / 40Next →