Microsoft Windows 11 Version 23H2 vulnerabilities

1,506 known vulnerabilities affecting microsoft/windows_11_version_23h2.

Total CVEs

1,506

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL18HIGH1051MEDIUM430LOW7

Vulnerabilities

Page 45 of 76

CVE-2025-21274MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21274 [MEDIUM] CWE-59 CVE-2025-21274: Windows Event Tracing Denial of Service Vulnerability Windows Event Tracing Denial of Service Vulnerability

nvd

CVE-2025-21284MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21284 [MEDIUM] CWE-20 CVE-2025-21284: Windows Virtual Trusted Platform Module Denial of Service Vulnerability Windows Virtual Trusted Platform Module Denial of Service Vulnerability

nvd

CVE-2025-21374MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21374 [MEDIUM] CWE-125 CVE-2025-21374: Windows CSC Service Information Disclosure Vulnerability Windows CSC Service Information Disclosure Vulnerability

nvd

CVE-2025-21320MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21320 [MEDIUM] CWE-532 CVE-2025-21320: Windows Kernel Memory Information Disclosure Vulnerability Windows Kernel Memory Information Disclosure Vulnerability

nvd

CVE-2025-21228MEDIUMCVSS 6.6≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21228 [MEDIUM] CWE-125 CVE-2025-21228: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21280MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21280 [MEDIUM] CWE-20 CVE-2025-21280: Windows Virtual Trusted Platform Module Denial of Service Vulnerability Windows Virtual Trusted Platform Module Denial of Service Vulnerability

nvd

CVE-2025-21314MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21314 [MEDIUM] CWE-451 Windows SmartScreen Spoofing Vulnerability Windows SmartScreen Spoofing Vulnerability Windows SmartScreen Spoofing Vulnerability

cvelistv5

CVE-2025-21213MEDIUMCVSS 4.6≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21213 [MEDIUM] CWE-284 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2025-21258MEDIUMCVSS 6.6≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21258 [MEDIUM] CWE-125 CVE-2025-21258: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21232MEDIUMCVSS 6.6≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21232 [MEDIUM] CWE-125 CVE-2025-21232: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21255MEDIUMCVSS 6.6≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21255 [MEDIUM] CWE-125 CVE-2025-21255: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21324MEDIUMCVSS 6.6≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21324 [MEDIUM] CWE-125 CVE-2025-21324: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21318MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21318 [MEDIUM] CWE-532 CVE-2025-21318: Windows Kernel Memory Information Disclosure Vulnerability Windows Kernel Memory Information Disclosure Vulnerability

nvd

CVE-2025-21323MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21323 [MEDIUM] CWE-532 CVE-2025-21323: Windows Kernel Memory Information Disclosure Vulnerability Windows Kernel Memory Information Disclosure Vulnerability

nvd

CVE-2025-21308MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21308 [MEDIUM] CWE-200 Windows Themes Spoofing Vulnerability Windows Themes Spoofing Vulnerability Windows Themes Spoofing Vulnerability

cvelistv5

CVE-2025-21327MEDIUMCVSS 6.6≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21327 [MEDIUM] CWE-125 CVE-2025-21327: Windows Digital Media Elevation of Privilege Vulnerability Windows Digital Media Elevation of Privilege Vulnerability

nvd

CVE-2025-21278MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21278 [MEDIUM] CWE-362 CVE-2025-21278: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

nvd

CVE-2025-21329MEDIUMCVSS 4.3≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21329 [MEDIUM] CWE-41 CVE-2025-21329: MapUrlToZone Security Feature Bypass Vulnerability MapUrlToZone Security Feature Bypass Vulnerability

nvd

CVE-2025-21257MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21257 [MEDIUM] CWE-125 CVE-2025-21257: Windows WLAN AutoConfig Service Information Disclosure Vulnerability Windows WLAN AutoConfig Service Information Disclosure Vulnerability

nvd

CVE-2025-21336MEDIUMCVSS 5.6≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21336 [MEDIUM] CWE-203 CVE-2025-21336: Windows Cryptographic Information Disclosure Vulnerability Windows Cryptographic Information Disclosure Vulnerability

nvd

← Previous45 / 76Next →