cbcvebase.

Microsoft Windows 11 Version 23H2 vulnerabilities

1,661 known vulnerabilities affecting microsoft/windows_11_version_23h2.

Total CVEs
1,661
CISA KEV
59
actively exploited
Public exploits
42
Exploited in wild
71
Severity breakdown
CRITICAL25HIGH1170MEDIUM458LOW8

Vulnerabilities

Page 22 of 84
CVE-2025-60704P3HIGHCVSS 7.5≥ 10.0.22631.0, < 10.0.22631.61992025-11-11
CVE-2025-60704 [HIGH] CWE-325 CVE-2025-60704: Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network.
nvd
CVE-2024-38125P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.40372024-08-13
CVE-2024-38125 [HIGH] CWE-197 CVE-2024-38125: Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
nvd
CVE-2024-38241P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.41692024-09-10
CVE-2024-38241 [HIGH] CWE-20 CVE-2024-38241: Kernel Streaming Service Driver Elevation of Privilege Vulnerability Kernel Streaming Service Driver Elevation of Privilege Vulnerability
nvd
CVE-2024-43623P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.44602024-11-12
CVE-2024-43623 [HIGH] CWE-190 CVE-2024-43623: Windows NT OS Kernel Elevation of Privilege Vulnerability Windows NT OS Kernel Elevation of Privilege Vulnerability
nvd
CVE-2024-26211P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.35932024-04-09
CVE-2024-26211 [HIGH] CWE-122 CVE-2024-26211: Windows Remote Access Connection Manager Elevation of Privilege Vulnerability Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
nvd
CVE-2024-49105P3HIGHCVSS 8.4≥ 10.0.22631.0, < 10.0.22631.46022024-12-12
CVE-2024-49105 [HIGH] CWE-284 CVE-2024-49105: Remote Desktop Client Remote Code Execution Vulnerability Remote Desktop Client Remote Code Execution Vulnerability
nvd
CVE-2025-30388P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.53352025-05-13
CVE-2025-30388 [HIGH] CWE-122 CVE-2025-30388: Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.
nvd
CVE-2025-49687P3HIGHCVSS 8.8≥ 10.0.22631.0, < 10.0.22631.56242025-07-08
CVE-2025-49687 [HIGH] CWE-125 CVE-2025-49687: Out-of-bounds read in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate p Out-of-bounds read in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally.
nvd
CVE-2024-21307P3HIGHCVSS 7.5≥ 10.0.22631.0, < 10.0.22631.30072024-01-09
CVE-2024-21307 [HIGH] CWE-416 CVE-2024-21307: Remote Desktop Client Remote Code Execution Vulnerability Remote Desktop Client Remote Code Execution Vulnerability
nvd
CVE-2025-50168P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.57682025-08-12
CVE-2025-50168 [HIGH] CWE-122 CVE-2025-50168: Access of resource using incompatible type ('type confusion') in Windows Win32K - ICOMP allows an au Access of resource using incompatible type ('type confusion') in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-24067P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.50392025-03-11
CVE-2025-24067 [HIGH] CWE-122 CVE-2025-24067: Heap-based buffer overflow in Microsoft Streaming Service allows an authorized attacker to elevate p Heap-based buffer overflow in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-24066P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.50392025-03-11
CVE-2025-24066 [HIGH] CWE-122 CVE-2025-24066: Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to elevate p Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-26666P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.51892025-04-08
CVE-2025-26666 [HIGH] CWE-122 CVE-2025-26666: Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally. Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.
nvd
CVE-2025-26674P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.51892025-04-08
CVE-2025-26674 [HIGH] CWE-122 CVE-2025-26674: Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally. Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.
nvd
CVE-2025-60714P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.61992025-11-11
CVE-2025-60714 [HIGH] CWE-122 CVE-2025-60714: Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally. Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally.
nvd
CVE-2025-24063P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.53352025-05-13
CVE-2025-24063 [HIGH] CWE-122 CVE-2025-24063: Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges loc Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-27490P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.51892025-04-08
CVE-2025-27490 [HIGH] CWE-122 CVE-2025-27490: Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate pri Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-35421P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12
CVE-2026-35421 [HIGH] CWE-122 CVE-2026-35421: Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally. Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally.
nvd
CVE-2024-30098P3HIGHCVSS 7.5≥ 10.0.22631.0, < 10.0.22631.60602024-07-09
CVE-2024-30098 [HIGH] CWE-327 CVE-2024-30098: Windows Cryptographic Services Security Feature Bypass Vulnerability Windows Cryptographic Services Security Feature Bypass Vulnerability
nvd
CVE-2026-20920P3HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.64912026-01-13
CVE-2026-20920 [HIGH] CWE-416 CVE-2026-20920: Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
nvd
← Previous22 / 84Next →
Microsoft Windows 11 Version 23H2 vulnerabilities | cvebase