Microsoft Windows 11 Version 22H2 vulnerabilities
1,775 known vulnerabilities affecting microsoft/windows_11_version_22h2.
Total CVEs
1,775
CISA KEV
72
actively exploited
Public exploits
32
Exploited in wild
54
Severity breakdown
CRITICAL42HIGH1246MEDIUM479LOW8
Vulnerabilities
Page 20 of 89
CVE-2025-27490HIGHCVSS 7.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-27490 [HIGH] CWE-122 CVE-2025-27490: Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate pri
Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
cvelistv5nvd
CVE-2025-24060HIGHCVSS 7.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-24060 [HIGH] CWE-20 CVE-2025-24060: Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privi
Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
cvelistv5nvd
CVE-2025-26673HIGHCVSS 7.5≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-26673 [HIGH] CWE-400 CVE-2025-26673: Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.
cvelistv5nvd
CVE-2025-27477HIGHCVSS 8.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-27477 [HIGH] CWE-122 CVE-2025-27477: Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute c
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
cvelistv5nvd
CVE-2025-26641HIGHCVSS 7.5≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-26641 [HIGH] CWE-400 CVE-2025-26641: Uncontrolled resource consumption in Windows Cryptographic Services allows an unauthorized attacker
Uncontrolled resource consumption in Windows Cryptographic Services allows an unauthorized attacker to deny service over a network.
cvelistv5nvd
CVE-2025-27481HIGHCVSS 8.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-27481 [HIGH] CWE-121 CVE-2025-27481: Stack-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute
Stack-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
cvelistv5nvd
CVE-2025-29810HIGHCVSS 7.5≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-29810 [HIGH] CWE-284 CVE-2025-29810: Improper access control in Active Directory Domain Services allows an authorized attacker to elevate
Improper access control in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network.
cvelistv5nvd
CVE-2025-21205HIGHCVSS 8.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-21205 [HIGH] CWE-122 CVE-2025-21205: Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute c
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
cvelistv5nvd
CVE-2025-27476HIGHCVSS 7.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-27476 [HIGH] CWE-416 CVE-2025-27476: Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
cvelistv5nvd
CVE-2025-24073HIGHCVSS 7.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-24073 [HIGH] CWE-20 CVE-2025-24073: Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privi
Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.
cvelistv5nvd
CVE-2025-26668HIGHCVSS 7.5≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-26668 [HIGH] CWE-122 CVE-2025-26668: Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorize
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
cvelistv5nvd
CVE-2025-26640HIGHCVSS 7.0≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-26640 [HIGH] CWE-415 CVE-2025-26640: Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
cvelistv5nvd
CVE-2025-27731HIGHCVSS 7.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-27731 [HIGH] CWE-20 CVE-2025-27731: Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges
Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.
cvelistv5nvd
CVE-2025-27475HIGHCVSS 7.0≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-27475 [HIGH] CWE-591 CVE-2025-27475: Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized atta
Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally.
cvelistv5nvd
CVE-2025-26686HIGHCVSS 7.5≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-26686 [HIGH] CWE-591 CVE-2025-26686: Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker
Sensitive data storage in improperly locked memory in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
cvelistv5nvd
CVE-2025-27467HIGHCVSS 7.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-27467 [HIGH] CWE-416 CVE-2025-27467: Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
cvelistv5nvd
CVE-2025-26639HIGHCVSS 7.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-26639 [HIGH] CWE-122 CVE-2025-26639: Integer overflow or wraparound in Windows USB Print Driver allows an authorized attacker to elevate
Integer overflow or wraparound in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.
cvelistv5nvd
CVE-2025-27473HIGHCVSS 7.5≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-27473 [HIGH] CWE-400 CVE-2025-27473: Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny servic
Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.
cvelistv5nvd
CVE-2025-27730HIGHCVSS 7.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-27730 [HIGH] CWE-415 CVE-2025-27730: Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.
cvelistv5nvd
CVE-2025-26669HIGHCVSS 8.8≥ 10.0.22621.0, < 10.0.22621.51892025-04-08
CVE-2025-26669 [HIGH] CWE-125 CVE-2025-26669: Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attack
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
cvelistv5nvd