Microsoft Windows 11 Version 21H2 vulnerabilities

1,560 known vulnerabilities affecting microsoft/windows_11_version_21h2.

Total CVEs

1,560

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL51HIGH1137MEDIUM368LOW4

Vulnerabilities

Page 24 of 78

CVE-2023-35631HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.26522023-12-12

CVE-2023-35631 [HIGH] Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability

cvelistv5

CVE-2023-21740HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.26522023-12-12

CVE-2023-21740 [HIGH] CWE-122 Windows Media Remote Code Execution Vulnerability Windows Media Remote Code Execution Vulnerability Windows Media Remote Code Execution Vulnerability

cvelistv5

CVE-2023-36003HIGHCVSS 7.3≥ 10.0.0, < 10.0.22000.26522023-12-12

CVE-2023-36003 [HIGH] CWE-426 CVE-2023-36003: XAML Diagnostics Elevation of Privilege Vulnerability XAML Diagnostics Elevation of Privilege Vulnerability

nvd

CVE-2023-36696HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.26522023-12-12

CVE-2023-36696 [HIGH] CWE-125 CVE-2023-36696: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

nvd

CVE-2023-36005HIGHCVSS 8.1≥ 10.0.0, < 10.0.22000.26522023-12-12

CVE-2023-36005 [HIGH] CWE-591 CVE-2023-36005: Windows Telephony Server Elevation of Privilege Vulnerability Windows Telephony Server Elevation of Privilege Vulnerability

nvd

CVE-2023-36004HIGHCVSS 7.5≥ 10.0.0, < 10.0.22000.26522023-12-12

CVE-2023-36004 [HIGH] CWE-287 CVE-2023-36004: Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability

nvd

CVE-2023-35642MEDIUMCVSS 6.5≥ 10.0.0, < 10.0.22000.26522023-12-12

CVE-2023-35642 [MEDIUM] CWE-682 CVE-2023-35642: Internet Connection Sharing (ICS) Denial of Service Vulnerability Internet Connection Sharing (ICS) Denial of Service Vulnerability

nvd

CVE-2023-36028CRITICALCVSS 9.8≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36028 [CRITICAL] CWE-122 CVE-2023-36028: Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

nvd

CVE-2023-36397CRITICALCVSS 9.8≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36397 [CRITICAL] CWE-126 CVE-2023-36397: Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

nvd

CVE-2023-36407HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36407 [HIGH] CWE-20 CVE-2023-36407: Windows Hyper-V Elevation of Privilege Vulnerability Windows Hyper-V Elevation of Privilege Vulnerability

nvd

CVE-2023-36046HIGHCVSS 7.1≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36046 [HIGH] CWE-59 CVE-2023-36046: Windows Authentication Denial of Service Vulnerability Windows Authentication Denial of Service Vulnerability

nvd

CVE-2023-36401HIGHCVSS 7.2≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36401 [HIGH] CWE-190 CVE-2023-36401: Microsoft Remote Registry Service Remote Code Execution Vulnerability Microsoft Remote Registry Service Remote Code Execution Vulnerability

nvd

CVE-2023-36405HIGHCVSS 7.0≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36405 [HIGH] CWE-362 CVE-2023-36405: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2023-36394HIGHCVSS 7.0≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36394 [HIGH] CWE-59 CVE-2023-36394: Windows Search Service Elevation of Privilege Vulnerability Windows Search Service Elevation of Privilege Vulnerability

nvd

CVE-2023-36705HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36705 [HIGH] CWE-59 CVE-2023-36705: Windows Installer Elevation of Privilege Vulnerability Windows Installer Elevation of Privilege Vulnerability

nvd

CVE-2023-36427HIGHCVSS 7.0≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36427 [HIGH] CVE-2023-36427: Windows Hyper-V Elevation of Privilege Vulnerability Windows Hyper-V Elevation of Privilege Vulnerability

nvd

CVE-2023-36025HIGHCVSS 8.8KEV≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36025 [HIGH] CVE-2023-36025: Windows SmartScreen Security Feature Bypass Vulnerability Windows SmartScreen Security Feature Bypass Vulnerability

nvd

CVE-2023-36393HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36393 [HIGH] CWE-426 CVE-2023-36393: Windows User Interface Application Core Remote Code Execution Vulnerability Windows User Interface Application Core Remote Code Execution Vulnerability

nvd

CVE-2023-36719HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36719 [HIGH] CWE-20 CVE-2023-36719: Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability

nvd

CVE-2023-36403HIGHCVSS 7.0≥ 10.0.0, < 10.0.22000.26002023-11-14

CVE-2023-36403 [HIGH] CWE-591 CVE-2023-36403: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

← Previous24 / 78Next →