cbcvebase.

Microsoft Windows 11 Version 23H2 vulnerabilities

1,661 known vulnerabilities affecting microsoft/windows_11_version_23h2.

Total CVEs
1,661
CISA KEV
59
actively exploited
Public exploits
42
Exploited in wild
71
Severity breakdown
CRITICAL25HIGH1170MEDIUM458LOW8

Vulnerabilities

Page 50 of 84
CVE-2026-40413P3HIGHCVSS 7.4≥ 10.0.22631.0, < 10.0.22631.70792026-05-12
CVE-2026-40413 [HIGH] CWE-476 CVE-2026-40413: Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an a Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an adjacent network.
cvelistv5nvd
CVE-2025-48821P3HIGHCVSS 7.1≥ 10.0.22631.0, < 10.0.22631.56242025-07-08
CVE-2025-48821 [HIGH] CWE-416 CVE-2025-48821: Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker t Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over an adjacent network.
nvd
CVE-2026-41097P3MEDIUMCVSS 6.7≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12
CVE-2026-41097 [MEDIUM] CWE-1329 CVE-2026-41097: Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
nvd
CVE-2025-27478P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.51892025-04-08
CVE-2025-27478 [HIGH] CWE-122 CVE-2025-27478: Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker t Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-54115P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.59092025-09-09
CVE-2025-54115 [HIGH] CWE-362 CVE-2025-54115: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-20863P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.64912026-01-13
CVE-2026-20863 [HIGH] CWE-415 CVE-2026-20863: Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally. Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-54112P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.59092025-09-09
CVE-2025-54112 [HIGH] CWE-416 CVE-2025-54112: Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges l Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-25179P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.67832026-03-10
CVE-2026-25179 [HIGH] CWE-1287 CVE-2026-25179: Improper validation of specified type of input in Windows Ancillary Function Driver for WinSock allo Improper validation of specified type of input in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-53142P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.57682025-08-12
CVE-2025-53142 [HIGH] CWE-416 CVE-2025-53142: Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privilege Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-32070P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.69362026-04-14
CVE-2026-32070 [HIGH] CWE-416 CVE-2026-32070: Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate pri Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-20814P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.64912026-01-13
CVE-2026-20814 [HIGH] CWE-362 CVE-2026-20814: Concurrent execution using shared resource with improper synchronization ('race condition') in Graph Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-20826P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.64912026-01-13
CVE-2026-20826 [HIGH] CWE-362 CVE-2026-20826: Concurrent execution using shared resource with improper synchronization ('race condition') in Table Concurrent execution using shared resource with improper synchronization ('race condition') in Tablet Windows User Interface (TWINUI) Subsystem allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-53134P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.57682025-08-12
CVE-2025-53134 [HIGH] CWE-200 CVE-2025-53134: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-34342P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12
CVE-2026-34342 [HIGH] CWE-362 CVE-2026-34342: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Print Spooler Components allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-20836P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.64912026-01-13
CVE-2026-20836 [HIGH] CWE-362 CVE-2026-20836: Concurrent execution using shared resource with improper synchronization ('race condition') in Graph Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-55223P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.59092025-09-09
CVE-2025-55223 [HIGH] CWE-362 CVE-2025-55223: Concurrent execution using shared resource with improper synchronization ('race condition') in Graph Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-25178P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.67832026-03-10
CVE-2026-25178 [HIGH] CWE-416 CVE-2026-25178: Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-54114P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.59092025-09-09
CVE-2025-54114 [HIGH] CWE-362 CVE-2025-54114: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-21237P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.66492026-02-10
CVE-2026-21237 [HIGH] CWE-362 CVE-2026-21237: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-21234P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.66492026-02-10
CVE-2026-21234 [HIGH] CWE-362 CVE-2026-21234: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.
nvd
← Previous50 / 84Next →
Microsoft Windows 11 Version 23H2 vulnerabilities | cvebase