Microsoft Windows 11 Version 23H2 vulnerabilities

CVE-2024-30031 [HIGH] CWE-416 CVE-2024-30031: Windows CNG Key Isolation Service Elevation of Privilege Vulnerability Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

CVE-2026-20816 [HIGH] CWE-367 CVE-2026-20816: Time-of-check time-of-use (toctou) race condition in Windows Installer allows an authorized attacker Time-of-check time-of-use (toctou) race condition in Windows Installer allows an authorized attacker to elevate privileges locally.

CVE-2025-58720 [HIGH] CWE-1240 CVE-2025-58720: Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allow Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally.

CVE-2025-29833 [HIGH] CWE-367 CVE-2025-29833: Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an unauthori Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an unauthorized attacker to execute code locally.

CVE-2025-24994 [HIGH] CWE-284 CVE-2025-24994: Improper access control in Windows Cross Device Service allows an authorized attacker to elevate pri Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.

CVE-2024-43495 [HIGH] CWE-190 CVE-2024-43495: Windows libarchive Remote Code Execution Vulnerability Windows libarchive Remote Code Execution Vulnerability

CVE-2025-60719 [HIGH] CWE-822 CVE-2025-60719: Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2025-62213 [HIGH] CWE-416 CVE-2025-62213: Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

CVE-2025-21197 [MEDIUM] CWE-284 CVE-2025-21197: Improper access control in Windows NTFS allows an authorized attacker to disclose file path informat Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content.

CVE-2025-49682 [HIGH] CWE-416 CVE-2025-49682: Use after free in Windows Media allows an authorized attacker to elevate privileges locally. Use after free in Windows Media allows an authorized attacker to elevate privileges locally.

CVE-2025-49727 [HIGH] CWE-122 CVE-2025-49727: Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privile Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

CVE-2026-41108 [HIGH] CWE-122 CVE-2026-41108: Heap-based buffer overflow in Microsoft Windows DNS allows an authorized attacker to elevate privile Heap-based buffer overflow in Microsoft Windows DNS allows an authorized attacker to elevate privileges locally.

CVE-2025-58725 [HIGH] CWE-122 CVE-2025-58725: Heap-based buffer overflow in Windows COM allows an authorized attacker to elevate privileges locall Heap-based buffer overflow in Windows COM allows an authorized attacker to elevate privileges locally.

CVE-2026-20876 [MEDIUM] CWE-122 CVE-2026-20876: Heap-based buffer overflow in Windows Virtualization-Based Security (VBS) Enclave allows an authoriz Heap-based buffer overflow in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally.

CVE-2024-26254 [HIGH] CWE-822 CVE-2024-26254: Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability Microsoft Virtual Machine Bus (VMBus) Denial of Service Vulnerability

CVE-2023-36399 [HIGH] CWE-59 CVE-2023-36399: Windows Storage Elevation of Privilege Vulnerability Windows Storage Elevation of Privilege Vulnerability

CVE-2024-26232 [HIGH] CWE-843 CVE-2024-26232: Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

CVE-2025-27491 [HIGH] CWE-416 CVE-2025-27491: Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network. Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network.

CVE-2026-40414 [HIGH] CWE-476 CVE-2026-40414: Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an a Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an adjacent network.

CVE-2025-32721 [HIGH] CWE-59 CVE-2025-32721: Improper link resolution before file access ('link following') in Windows Recovery Driver allows an Improper link resolution before file access ('link following') in Windows Recovery Driver allows an authorized attacker to elevate privileges locally.