Microsoft Windows 11 22H2 vulnerabilities

1,431 known vulnerabilities affecting microsoft/windows_11_22h2.

Total CVEs
1,431
CISA KEV
67
actively exploited
Public exploits
28
Exploited in wild
44
Severity breakdown
CRITICAL39HIGH1000MEDIUM387LOW5

Vulnerabilities

Page 72 of 72
CVE-2023-21694MEDIUMCVSS 6.8fixed in 10.0.22621.12652023-02-14
CVE-2023-21694 [MEDIUM] CWE-122 CVE-2023-21694: Windows Fax Service Remote Code Execution Vulnerability Windows Fax Service Remote Code Execution Vulnerability
nvd
CVE-2023-21674HIGHCVSS 8.8KEVfixed in 10.0.22621.11052023-01-10
CVE-2023-21674 [HIGH] CWE-416 CVE-2023-21674: Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability
nvd
CVE-2023-21739HIGHCVSS 7.0fixed in 10.0.22621.11052023-01-10
CVE-2023-21739 [HIGH] CWE-591 CVE-2023-21739: Windows Bluetooth Driver Elevation of Privilege Vulnerability Windows Bluetooth Driver Elevation of Privilege Vulnerability
nvd
CVE-2022-41128HIGHCVSS 8.8KEVfixed in 10.0.22621.8192022-11-09
CVE-2022-41128 [HIGH] CWE-787 CVE-2022-41128: Windows Scripting Languages Remote Code Execution Vulnerability Windows Scripting Languages Remote Code Execution Vulnerability
nvd
CVE-2022-41073HIGHCVSS 7.8KEVfixed in 10.0.22621.8192022-11-09
CVE-2022-41073 [HIGH] CWE-787 CVE-2022-41073: Windows Print Spooler Elevation of Privilege Vulnerability Windows Print Spooler Elevation of Privilege Vulnerability
nvd
CVE-2022-41125HIGHCVSS 7.8KEVfixed in 10.0.22621.8192022-11-09
CVE-2022-41125 [HIGH] CWE-787 CVE-2022-41125: Windows CNG Key Isolation Service Elevation of Privilege Vulnerability Windows CNG Key Isolation Service Elevation of Privilege Vulnerability
nvd
CVE-2022-41049MEDIUMCVSS 5.4KEVfixed in 10.0.22621.8192022-11-09
CVE-2022-41049 [MEDIUM] CVE-2022-41049: Windows Mark of the Web Security Feature Bypass Vulnerability Windows Mark of the Web Security Feature Bypass Vulnerability
nvd
CVE-2022-41091MEDIUMCVSS 5.4KEVfixed in 10.0.22621.8192022-11-09
CVE-2022-41091 [MEDIUM] CWE-863 CVE-2022-41091: Windows Mark of the Web Security Feature Bypass Vulnerability Windows Mark of the Web Security Feature Bypass Vulnerability
nvd
CVE-2022-38028HIGHCVSS 7.8KEVfixed in 10.0.22621.6742022-10-11
CVE-2022-38028 [HIGH] CVE-2022-38028: Windows Print Spooler Elevation of Privilege Vulnerability Windows Print Spooler Elevation of Privilege Vulnerability
nvd
CVE-2022-41033HIGHCVSS 7.8KEVfixed in 10.0.22621.6742022-10-11
CVE-2022-41033 [HIGH] CWE-843 CVE-2022-41033: Windows COM+ Event System Service Elevation of Privilege Vulnerability Windows COM+ Event System Service Elevation of Privilege Vulnerability
nvd
CVE-2021-34527HIGHCVSS 8.8KEVPoCfixed in 10.0.22621.6742021-07-02
CVE-2021-34527 [HIGH] CVE-2021-34527: <p>A remote code execution vulnerability exists when the Windows Print Spooler service improperly pe A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. UPDAT
nvd
← Previous72 / 72