Microsoft Windows 11 22H2 vulnerabilities

1,431 known vulnerabilities affecting microsoft/windows_11_22h2.

Total CVEs

1,431

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL39HIGH1000MEDIUM387LOW5

Vulnerabilities

Page 24 of 72

CVE-2025-21181HIGHCVSS 7.5fixed in 10.0.22621.48902025-02-11

CVE-2025-21181 [HIGH] CWE-400 CVE-2025-21181: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2025-21391HIGHCVSS 7.1KEVfixed in 10.0.22621.48902025-02-11

CVE-2025-21391 [HIGH] CWE-59 CVE-2025-21391: Windows Storage Elevation of Privilege Vulnerability Windows Storage Elevation of Privilege Vulnerability

nvd

CVE-2025-21418HIGHCVSS 7.8KEVfixed in 10.0.22621.48902025-02-11

CVE-2025-21418 [HIGH] CWE-122 CVE-2025-21418: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

nvd

CVE-2025-21420HIGHCVSS 7.8fixed in 10.0.22621.48902025-02-11

CVE-2025-21420 [HIGH] CWE-59 CVE-2025-21420: Windows Disk Cleanup Tool Elevation of Privilege Vulnerability Windows Disk Cleanup Tool Elevation of Privilege Vulnerability

nvd

CVE-2025-21184HIGHCVSS 7.0fixed in 10.0.22621.48902025-02-11

CVE-2025-21184 [HIGH] CWE-122 CVE-2025-21184: Windows Core Messaging Elevation of Privileges Vulnerability Windows Core Messaging Elevation of Privileges Vulnerability

nvd

CVE-2025-21201HIGHCVSS 8.8fixed in 10.0.22621.48902025-02-11

CVE-2025-21201 [HIGH] CWE-415 CVE-2025-21201: Windows Telephony Server Remote Code Execution Vulnerability Windows Telephony Server Remote Code Execution Vulnerability

nvd

CVE-2025-21351HIGHCVSS 7.5fixed in 10.0.22621.48902025-02-11

CVE-2025-21351 [HIGH] CWE-400 CVE-2025-21351: Windows Active Directory Domain Services API Denial of Service Vulnerability Windows Active Directory Domain Services API Denial of Service Vulnerability

nvd

CVE-2025-21200HIGHCVSS 8.8fixed in 10.0.22621.48902025-02-11

CVE-2025-21200 [HIGH] CWE-122 CVE-2025-21200: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21371HIGHCVSS 8.8fixed in 10.0.22621.48902025-02-11

CVE-2025-21371 [HIGH] CWE-122 CVE-2025-21371: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21347MEDIUMCVSS 6.0fixed in 10.0.22621.48902025-02-11

CVE-2025-21347 [MEDIUM] CWE-59 CVE-2025-21347: Windows Deployment Services Denial of Service Vulnerability Windows Deployment Services Denial of Service Vulnerability

nvd

CVE-2025-21212MEDIUMCVSS 6.5fixed in 10.0.22621.48902025-02-11

CVE-2025-21212 [MEDIUM] CWE-125 CVE-2025-21212: Internet Connection Sharing (ICS) Denial of Service Vulnerability Internet Connection Sharing (ICS) Denial of Service Vulnerability

nvd

CVE-2025-21216MEDIUMCVSS 6.5fixed in 10.0.22621.48902025-02-11

CVE-2025-21216 [MEDIUM] CWE-125 CVE-2025-21216: Internet Connection Sharing (ICS) Denial of Service Vulnerability Internet Connection Sharing (ICS) Denial of Service Vulnerability

nvd

CVE-2025-21349MEDIUMCVSS 6.8fixed in 10.0.22621.48902025-02-11

CVE-2025-21349 [MEDIUM] CWE-287 CVE-2025-21349: Windows Remote Desktop Configuration Service Tampering Vulnerability Windows Remote Desktop Configuration Service Tampering Vulnerability

nvd

CVE-2025-21254MEDIUMCVSS 6.5fixed in 10.0.22621.48902025-02-11

CVE-2025-21254 [MEDIUM] CWE-125 CVE-2025-21254: Internet Connection Sharing (ICS) Denial of Service Vulnerability Internet Connection Sharing (ICS) Denial of Service Vulnerability

nvd

CVE-2025-21352MEDIUMCVSS 6.5fixed in 10.0.22621.48902025-02-11

CVE-2025-21352 [MEDIUM] CWE-400 CVE-2025-21352: Internet Connection Sharing (ICS) Denial of Service Vulnerability Internet Connection Sharing (ICS) Denial of Service Vulnerability

nvd

CVE-2025-21325HIGHCVSS 7.8fixed in 10.0.22621.47512025-01-17

CVE-2025-21325 [HIGH] CWE-732 CVE-2025-21325: Windows Secure Kernel Mode Elevation of Privilege Vulnerability Windows Secure Kernel Mode Elevation of Privilege Vulnerability

nvd

CVE-2025-21307CRITICALCVSS 9.8fixed in 10.0.22621.47512025-01-14

CVE-2025-21307 [CRITICAL] CWE-416 CVE-2025-21307: Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability

nvd

CVE-2025-21291HIGHCVSS 8.8fixed in 10.0.22621.47512025-01-14

CVE-2025-21291 [HIGH] CWE-415 CVE-2025-21291: Windows Direct Show Remote Code Execution Vulnerability Windows Direct Show Remote Code Execution Vulnerability

nvd

CVE-2025-21239HIGHCVSS 8.8fixed in 10.0.22621.47512025-01-14

CVE-2025-21239 [HIGH] CWE-122 CVE-2025-21239: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21293HIGHCVSS 8.8PoCfixed in 10.0.22621.47512025-01-14

CVE-2025-21293 [HIGH] CWE-284 CVE-2025-21293: Active Directory Domain Services Elevation of Privilege Vulnerability Active Directory Domain Services Elevation of Privilege Vulnerability

nvd

← Previous24 / 72Next →