Microsoft Windows 11 21H2 vulnerabilities

799 known vulnerabilities affecting microsoft/windows_11_21h2.

Total CVEs

799

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL34HIGH572MEDIUM192LOW1

Vulnerabilities

Page 26 of 40

CVE-2023-36914MEDIUMCVSS 5.5v10.0.22000.22952023-08-08

CVE-2023-36914 [MEDIUM] CVE-2023-36914: Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability Windows Smart Card Resource Management Server Security Feature Bypass Vulnerability

nvd

CVE-2023-20588MEDIUMCVSS 5.5fixed in 10.0.22000.26522023-08-08

CVE-2023-20588 [MEDIUM] CWE-369 CVE-2023-20588: A division-by-zero error on some AMD processors can potentially return speculative data resulting i A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.

nvd

CVE-2023-35377MEDIUMCVSS 6.5fixed in 10.0.22000.22952023-08-08

CVE-2023-35377 [MEDIUM] CWE-20 CVE-2023-35377: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2023-36889MEDIUMCVSS 5.5fixed in 10.0.22000.22952023-08-08

CVE-2023-36889 [MEDIUM] CWE-284 CVE-2023-36889: Windows Group Policy Security Feature Bypass Vulnerability Windows Group Policy Security Feature Bypass Vulnerability

nvd

CVE-2023-36909MEDIUMCVSS 6.5fixed in 10.0.22000.22952023-08-08

CVE-2023-36909 [MEDIUM] CWE-191 CVE-2023-36909: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2023-35384MEDIUMCVSS 6.5fixed in 10.0.22000.22952023-08-08

CVE-2023-35384 [MEDIUM] CWE-73 CVE-2023-35384: Windows HTML Platforms Security Feature Bypass Vulnerability Windows HTML Platforms Security Feature Bypass Vulnerability

nvd

CVE-2023-35376MEDIUMCVSS 6.5fixed in 10.0.22000.22952023-08-08

CVE-2023-35376 [MEDIUM] CWE-20 CVE-2023-35376: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2023-36908MEDIUMCVSS 6.5fixed in 10.0.22000.22952023-08-08

CVE-2023-36908 [MEDIUM] CWE-200 CVE-2023-36908: Windows Hyper-V Information Disclosure Vulnerability Windows Hyper-V Information Disclosure Vulnerability

nvd

CVE-2023-20569MEDIUMCVSS 4.7fixed in 10.0.22000.22952023-08-08

CVE-2023-20569 [MEDIUM] CWE-203 CVE-2023-20569: A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the retur A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure.

nvd

CVE-2023-32056CRITICALCVSS 9.8fixed in 10.0.22000.21762023-07-11

CVE-2023-32056 [CRITICAL] CWE-59 CVE-2023-32056: Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability

nvd

CVE-2023-35366CRITICALCVSS 9.8fixed in 10.0.22000.21762023-07-11

CVE-2023-35366 [CRITICAL] CWE-20 CVE-2023-35366: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

nvd

CVE-2023-35367CRITICALCVSS 9.8fixed in 10.0.22000.21762023-07-11

CVE-2023-35367 [CRITICAL] CWE-20 CVE-2023-35367: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

nvd

CVE-2023-33154CRITICALCVSS 9.8fixed in 10.0.22000.21762023-07-11

CVE-2023-33154 [CRITICAL] CWE-367 CVE-2023-33154: Windows Partition Management Driver Elevation of Privilege Vulnerability Windows Partition Management Driver Elevation of Privilege Vulnerability

nvd

CVE-2023-35365CRITICALCVSS 9.8fixed in 10.0.22000.21762023-07-11

CVE-2023-35365 [CRITICAL] CWE-20 CVE-2023-35365: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

nvd

CVE-2023-32057CRITICALCVSS 9.8fixed in 10.0.22000.21762023-07-11

CVE-2023-32057 [CRITICAL] CWE-20 CVE-2023-32057: Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

nvd

CVE-2023-35343HIGHCVSS 7.8fixed in 10.0.22000.21762023-07-11

CVE-2023-35343 [HIGH] CWE-426 CVE-2023-35343: Windows Geolocation Service Remote Code Execution Vulnerability Windows Geolocation Service Remote Code Execution Vulnerability

nvd

CVE-2023-35313HIGHCVSS 7.8fixed in 10.0.22000.21762023-07-11

CVE-2023-35313 [HIGH] CWE-416 CVE-2023-35313: Windows Online Certificate Status Protocol (OCSP) SnapIn Remote Code Execution Vulnerability Windows Online Certificate Status Protocol (OCSP) SnapIn Remote Code Execution Vulnerability

nvd

CVE-2023-33173HIGHCVSS 7.5fixed in 10.0.22000.21762023-07-11

CVE-2023-33173 [HIGH] CWE-126 CVE-2023-33173: Remote Procedure Call Runtime Denial of Service Vulnerability Remote Procedure Call Runtime Denial of Service Vulnerability

nvd

CVE-2023-32042HIGHCVSS 7.5fixed in 10.0.22000.21762023-07-11

CVE-2023-32042 [HIGH] CWE-908 CVE-2023-32042: OLE Automation Information Disclosure Vulnerability OLE Automation Information Disclosure Vulnerability

nvd

CVE-2023-35304HIGHCVSS 7.8fixed in 10.0.22000.21762023-07-11

CVE-2023-35304 [HIGH] CWE-122 CVE-2023-35304: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

← Previous26 / 40Next →