Microsoft Windows 11 Version 21H2 vulnerabilities

1,560 known vulnerabilities affecting microsoft/windows_11_version_21h2.

Total CVEs

1,560

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL51HIGH1137MEDIUM368LOW4

Vulnerabilities

Page 8 of 78

CVE-2024-21302MEDIUMCVSS 6.7≥ 10.0.22000.0, < 10.0.19044.57372024-08-08

CVE-2024-21302 [MEDIUM] CWE-284 CVE-2024-21302: Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See K Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this vulnerability. An elevation of privilege vulnerability exis

cvelistv5nvd

CVE-2024-21417HIGHCVSS 8.8≥ 10.0.0, < 10.0.22000.30792024-07-10

CVE-2024-21417 [HIGH] CWE-862 CVE-2024-21417: Windows Text Services Framework Elevation of Privilege Vulnerability Windows Text Services Framework Elevation of Privilege Vulnerability

cvelistv5nvd

CVE-2024-38085HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38085 [HIGH] CWE-416 CVE-2024-38085: Windows Graphics Component Elevation of Privilege Vulnerability Windows Graphics Component Elevation of Privilege Vulnerability

cvelistv5nvd

CVE-2024-38022HIGHCVSS 7.0≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38022 [HIGH] CWE-59 CVE-2024-38022: Windows Image Acquisition Elevation of Privilege Vulnerability Windows Image Acquisition Elevation of Privilege Vulnerability

cvelistv5nvd

CVE-2024-38019HIGHCVSS 7.2≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38019 [HIGH] CWE-190 CVE-2024-38019: Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2024-38028HIGHCVSS 7.2≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38028 [HIGH] CWE-125 CVE-2024-38028: Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2024-38034HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38034 [HIGH] CWE-190 CVE-2024-38034: Windows Filtering Platform Elevation of Privilege Vulnerability Windows Filtering Platform Elevation of Privilege Vulnerability

cvelistv5nvd

CVE-2024-37969HIGHCVSS 8.0≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-37969 [HIGH] CWE-822 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-38068HIGHCVSS 7.5≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38068 [HIGH] CWE-400 CVE-2024-38068: Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability

cvelistv5nvd

CVE-2024-38052HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38052 [HIGH] CWE-20 CVE-2024-38052: Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

cvelistv5nvd

CVE-2024-38064HIGHCVSS 7.5≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38064 [HIGH] CWE-908 CVE-2024-38064: Windows TCP/IP Information Disclosure Vulnerability Windows TCP/IP Information Disclosure Vulnerability

cvelistv5nvd

CVE-2024-38033HIGHCVSS 7.3≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38033 [HIGH] CWE-20 PowerShell Elevation of Privilege Vulnerability PowerShell Elevation of Privilege Vulnerability PowerShell Elevation of Privilege Vulnerability

cvelistv5

CVE-2024-38070HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38070 [HIGH] CWE-693 CVE-2024-38070: Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability Windows LockDown Policy (WLDP) Security Feature Bypass Vulnerability

cvelistv5nvd

CVE-2024-38032HIGHCVSS 7.1≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38032 [HIGH] CWE-122 CVE-2024-38032: Microsoft Xbox Remote Code Execution Vulnerability Microsoft Xbox Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2024-38049HIGHCVSS 8.1≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38049 [HIGH] CWE-73 CVE-2024-38049: Windows Distributed Transaction Coordinator Remote Code Execution Vulnerability Windows Distributed Transaction Coordinator Remote Code Execution Vulnerability

cvelistv5nvd

CVE-2024-38079HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38079 [HIGH] CWE-122 CVE-2024-38079: Windows Graphics Component Elevation of Privilege Vulnerability Windows Graphics Component Elevation of Privilege Vulnerability

cvelistv5nvd

CVE-2024-38054HIGHCVSS 7.8≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38054 [HIGH] CWE-122 CVE-2024-38054: Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

cvelistv5nvd

CVE-2024-37974HIGHCVSS 8.0≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-37974 [HIGH] CWE-191 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-30081HIGHCVSS 7.1≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-30081 [HIGH] CWE-200 Windows NTLM Spoofing Vulnerability Windows NTLM Spoofing Vulnerability Windows NTLM Spoofing Vulnerability

cvelistv5

CVE-2024-38080HIGHCVSS 7.8KEV≥ 10.0.0, < 10.0.22000.30792024-07-09

CVE-2024-38080 [HIGH] CWE-190 CVE-2024-38080: Windows Hyper-V Elevation of Privilege Vulnerability Windows Hyper-V Elevation of Privilege Vulnerability

cvelistv5nvd

← Previous8 / 78Next →