Microsoft Windows 11 Version 23H2 vulnerabilities

1,661 known vulnerabilities affecting microsoft/windows_11_version_23h2.

Total CVEs

1,661

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL25HIGH1170MEDIUM458LOW8

Vulnerabilities

SortPage 55 of 84

CVE-2026-42825P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12

CVE-2026-42825 [HIGH] CWE-416 CVE-2026-42825: Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges loca Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-26672P3MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.51892025-04-08

CVE-2025-26672 [MEDIUM] CWE-126 CVE-2025-26672: Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

nvd

CVE-2026-35418P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12

CVE-2026-35418 [HIGH] CWE-367 CVE-2026-35418: Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate pr Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-32083P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-32083 [HIGH] CWE-362 CVE-2026-32083: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-32082P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-32082 [HIGH] CWE-362 CVE-2026-32082: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-34345P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12

CVE-2026-34345 [HIGH] CWE-362 CVE-2026-34345: Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver f Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-45640P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.72192026-06-09

CVE-2026-45640 [HIGH] CWE-416 CVE-2026-45640: Use after free in Windows Bluetooth Port Driver allows an authorized attacker to elevate privileges Use after free in Windows Bluetooth Port Driver allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-27927P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-27927 [HIGH] CWE-362 CVE-2026-27927: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Projected File System allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-26174P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-26174 [HIGH] CWE-362 CVE-2026-26174: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Server Update Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-42836P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.72192026-06-09

CVE-2026-42836 [HIGH] CWE-362 CVE-2026-42836: Concurrent execution using shared resource with improper synchronization ('race condition') in Funct Concurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-58727P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.60602025-10-14

CVE-2025-58727 [HIGH] CWE-362 CVE-2025-58727: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-27926P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-27926 [HIGH] CWE-362 CVE-2026-27926: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-33099P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-33099 [HIGH] CWE-416 CVE-2026-33099: Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-33100P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-33100 [HIGH] CWE-416 CVE-2026-33100: Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-59193P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.60602025-10-14

CVE-2025-59193 [HIGH] CWE-362 CVE-2025-59193: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-26169P3MEDIUMCVSS 6.1≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-26169 [MEDIUM] CWE-126 CVE-2026-26169: Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information loca Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information locally.

nvd

CVE-2026-32068P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-32068 [HIGH] CWE-362 CVE-2026-32068: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-34337P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12

CVE-2026-34337 [HIGH] CWE-362 CVE-2026-34337: Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate pr Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-32091P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-32091 [HIGH] CWE-362 CVE-2026-32091: Concurrent execution using shared resource with improper synchronization ('race condition') in Micro Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.

nvd

CVE-2026-34334P3HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12

CVE-2026-34334 [HIGH] CWE-362 CVE-2026-34334: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally.

nvd

← Previous55 / 84Next →