Microsoft Windows 11 Version 22H3 vulnerabilities

1,502 known vulnerabilities affecting microsoft/windows_11_version_22h3.

Total CVEs

1,502

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL18HIGH1048MEDIUM429LOW7

Vulnerabilities

Page 57 of 76

CVE-2024-38196HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38196 [HIGH] CWE-20 CVE-2024-38196: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-38148HIGHCVSS 7.5≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38148 [HIGH] CWE-125 CVE-2024-38148: Windows Secure Channel Denial of Service Vulnerability Windows Secure Channel Denial of Service Vulnerability

nvd

CVE-2024-38127HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38127 [HIGH] CWE-126 CVE-2024-38127: Windows Hyper-V Elevation of Privilege Vulnerability Windows Hyper-V Elevation of Privilege Vulnerability

nvd

CVE-2024-38133HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38133 [HIGH] CWE-138 CVE-2024-38133: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2024-38198HIGHCVSS 7.5≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38198 [HIGH] CWE-345 CVE-2024-38198: Windows Print Spooler Elevation of Privilege Vulnerability Windows Print Spooler Elevation of Privilege Vulnerability

nvd

CVE-2024-38114HIGHCVSS 8.8≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38114 [HIGH] CWE-122 CVE-2024-38114: Windows IP Routing Management Snapin Remote Code Execution Vulnerability Windows IP Routing Management Snapin Remote Code Execution Vulnerability

nvd

CVE-2024-38146HIGHCVSS 7.5≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38146 [HIGH] CWE-476 CVE-2024-38146: Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

nvd

CVE-2024-38193HIGHCVSS 7.8KEVPoC≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38193 [HIGH] CWE-416 CVE-2024-38193: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

nvd

CVE-2024-38153HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38153 [HIGH] CWE-367 CVE-2024-38153: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2024-38118MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38118 [MEDIUM] CWE-908 CVE-2024-38118: Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

nvd

CVE-2024-38213MEDIUMCVSS 6.5KEV≥ 10.0.22631.0, < 10.0.22631.37372024-08-13

CVE-2024-38213 [MEDIUM] CWE-693 CVE-2024-38213: Windows Mark of the Web Security Feature Bypass Vulnerability Windows Mark of the Web Security Feature Bypass Vulnerability

nvd

CVE-2024-38161MEDIUMCVSS 6.8≥ 10.0.22631.0, < 10.0.22631.38802024-08-13

CVE-2024-38161 [MEDIUM] CWE-122 CVE-2024-38161: Windows Mobile Broadband Driver Remote Code Execution Vulnerability Windows Mobile Broadband Driver Remote Code Execution Vulnerability

nvd

CVE-2024-38155MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38155 [MEDIUM] CWE-125 CVE-2024-38155: Security Center Broker Information Disclosure Vulnerability Security Center Broker Information Disclosure Vulnerability

nvd

CVE-2024-38122MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38122 [MEDIUM] CWE-908 CVE-2024-38122: Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

nvd

CVE-2024-38223MEDIUMCVSS 6.8≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38223 [MEDIUM] CWE-284 CVE-2024-38223: Windows Initial Machine Configuration Elevation of Privilege Vulnerability Windows Initial Machine Configuration Elevation of Privilege Vulnerability

nvd

CVE-2024-38143MEDIUMCVSS 4.2≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38143 [MEDIUM] CWE-306 CVE-2024-38143: Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability

nvd

CVE-2024-38151MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38151 [MEDIUM] CWE-125 CVE-2024-38151: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

nvd

CVE-2024-38165MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.38802024-08-13

CVE-2024-38165 [MEDIUM] CWE-73 Windows Compressed Folder Tampering Vulnerability Windows Compressed Folder Tampering Vulnerability Windows Compressed Folder Tampering Vulnerability

cvelistv5

CVE-2024-38202HIGHCVSS 7.3≥ 10.0.22631.0, < 10.0.22631.43172024-08-08

CVE-2024-38202 [HIGH] CWE-284 CVE-2024-38202: Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security (VBS). However, an attacker attempting to exploit this vulnerability requires

nvd

CVE-2024-21302MEDIUMCVSS 6.7≥ 10.0.22631.0, < 10.0.22631.51892024-08-08

CVE-2024-21302 [MEDIUM] CWE-284 CVE-2024-21302: Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See K Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this vulnerability. An elevation of privilege vulnerability exis

nvd

← Previous57 / 76Next →