Microsoft Windows 11 24H2 vulnerabilities

1,030 known vulnerabilities affecting microsoft/windows_11_24h2.

Total CVEs
1,030
CISA KEV
38
actively exploited
Public exploits
18
Exploited in wild
8
Severity breakdown
CRITICAL14HIGH716MEDIUM296LOW4

Vulnerabilities

Page 52 of 52
CVE-2024-38153HIGHCVSS 7.8fixed in 10.0.26100.14572024-08-13
CVE-2024-38153 [HIGH] CWE-367 CVE-2024-38153: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability
nvd
CVE-2024-38118MEDIUMCVSS 5.5fixed in 10.0.26100.14572024-08-13
CVE-2024-38118 [MEDIUM] CWE-908 CVE-2024-38118: Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability
nvd
CVE-2024-38161MEDIUMCVSS 6.8fixed in 10.0.26100.14572024-08-13
CVE-2024-38161 [MEDIUM] CWE-122 CVE-2024-38161: Windows Mobile Broadband Driver Remote Code Execution Vulnerability Windows Mobile Broadband Driver Remote Code Execution Vulnerability
nvd
CVE-2024-38155MEDIUMCVSS 5.5fixed in 10.0.26100.14572024-08-13
CVE-2024-38155 [MEDIUM] CWE-125 CVE-2024-38155: Security Center Broker Information Disclosure Vulnerability Security Center Broker Information Disclosure Vulnerability
nvd
CVE-2024-38122MEDIUMCVSS 5.5fixed in 10.0.26100.14572024-08-13
CVE-2024-38122 [MEDIUM] CWE-908 CVE-2024-38122: Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability
nvd
CVE-2024-38223MEDIUMCVSS 6.8fixed in 10.0.26100.14572024-08-13
CVE-2024-38223 [MEDIUM] CWE-284 CVE-2024-38223: Windows Initial Machine Configuration Elevation of Privilege Vulnerability Windows Initial Machine Configuration Elevation of Privilege Vulnerability
nvd
CVE-2024-38143MEDIUMCVSS 4.2fixed in 10.0.26100.14572024-08-13
CVE-2024-38143 [MEDIUM] CWE-306 CVE-2024-38143: Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability
nvd
CVE-2024-38123MEDIUMCVSS 4.4fixed in 10.0.26100.14572024-08-13
CVE-2024-38123 [MEDIUM] CWE-125 CVE-2024-38123: Windows Bluetooth Driver Information Disclosure Vulnerability Windows Bluetooth Driver Information Disclosure Vulnerability
nvd
CVE-2024-38151MEDIUMCVSS 5.5fixed in 10.0.26100.14572024-08-13
CVE-2024-38151 [MEDIUM] CWE-125 CVE-2024-38151: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability
nvd
CVE-2024-21302MEDIUMCVSS 6.7fixed in 10.0.26100.14572024-08-08
CVE-2024-21302 [MEDIUM] CWE-284 CVE-2024-21302: Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See K Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this vulnerability. An elevation of privilege vulnerability exis
nvd
← Previous52 / 52