Microsoft Windows 11 Version 23H2 vulnerabilities

1,661 known vulnerabilities affecting microsoft/windows_11_version_23h2.

Total CVEs

1,661

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL25HIGH1170MEDIUM458LOW8

Vulnerabilities

SortPage 60 of 84

CVE-2025-49678P4HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.56242025-07-08

CVE-2025-49678 [HIGH] CWE-362 CVE-2025-49678: Null pointer dereference in Windows NTFS allows an authorized attacker to elevate privileges locally Null pointer dereference in Windows NTFS allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-33057P3MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.54722025-06-10

CVE-2025-33057 [MEDIUM] CWE-476 CVE-2025-33057: Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network.

nvd

CVE-2025-59261P4HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.60602025-10-14

CVE-2025-59261 [HIGH] CWE-367 CVE-2025-59261: Time-of-check time-of-use (toctou) race condition in Microsoft Graphics Component allows an authoriz Time-of-check time-of-use (toctou) race condition in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-50507P4MEDIUMCVSS 6.8≥ 10.0.22631.0, < 10.0.22631.72192026-06-09

CVE-2026-50507 [MEDIUM] CWE-306 CVE-2026-50507: Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a securi Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.

nvd

CVE-2024-37976P4MEDIUMCVSS 6.7≥ 10.0.22631.0, < 10.0.22631.43172024-10-08

CVE-2024-37976 [MEDIUM] CWE-190 CVE-2024-37976: Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability

nvd

CVE-2024-37983P4MEDIUMCVSS 6.7≥ 10.0.22631.0, < 10.0.22631.43172024-10-08

CVE-2024-37983 [MEDIUM] CWE-822 CVE-2024-37983: Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability

nvd

CVE-2025-26681P4MEDIUMCVSS 6.7≥ 10.0.22631.0, < 10.0.22631.51892025-04-08

CVE-2025-26681 [MEDIUM] CWE-416 CVE-2025-26681: Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-48807P4MEDIUMCVSS 6.7≥ 10.0.22631.0, < 10.0.22631.59092025-08-12

CVE-2025-48807 [MEDIUM] CWE-923 CVE-2025-48807: Improper restriction of communication channel to intended endpoints in Windows Hyper-V allows an aut Improper restriction of communication channel to intended endpoints in Windows Hyper-V allows an authorized attacker to execute code locally.

nvd

CVE-2026-32170P4MEDIUMCVSS 6.7≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12

CVE-2026-32170 [MEDIUM] CWE-415 CVE-2026-32170: Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally. Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-21530P4MEDIUMCVSS 6.7≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12

CVE-2026-21530 [MEDIUM] CWE-415 CVE-2026-21530: Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally. Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.

nvd

CVE-2026-21265P4MEDIUMCVSS 6.4≥ 10.0.22631.0, < 10.0.22631.64912026-01-13

CVE-2026-21265 [MEDIUM] CWE-1329 CVE-2026-21265: Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. These original certificate Windows Secure Boot stores Microsoft certificates in the UEFI KEK and DB. These original certificates are approaching expiration, and devices containing affected certificate versions must update them to maintain Secure Boot functionality and avoid compromising security by losing security fixes related to Windows boot manager or Secure Boot. The ope

nvd

CVE-2025-48823P4MEDIUMCVSS 5.9≥ 10.0.22631.0, < 10.0.22631.56242025-07-08

CVE-2025-48823 [MEDIUM] CWE-310 CVE-2025-48823: Cryptographic issues in Windows Cryptographic Services allows an unauthorized attacker to disclose i Cryptographic issues in Windows Cryptographic Services allows an unauthorized attacker to disclose information over a network.

nvd

CVE-2025-21419P4HIGHCVSS 7.1≥ 10.0.22631.0, < 10.0.22631.48902025-02-11

CVE-2025-21419 [HIGH] CWE-59 CVE-2025-21419: Windows Setup Files Cleanup Elevation of Privilege Vulnerability Windows Setup Files Cleanup Elevation of Privilege Vulnerability

nvd

CVE-2024-21432P4HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.32962024-03-12

CVE-2024-21432 [HIGH] CWE-59 CVE-2024-21432: Windows Update Stack Elevation of Privilege Vulnerability Windows Update Stack Elevation of Privilege Vulnerability

nvd

CVE-2024-20657P4HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.30072024-01-09

CVE-2024-20657 [HIGH] CWE-284 CVE-2024-20657: Windows Group Policy Elevation of Privilege Vulnerability Windows Group Policy Elevation of Privilege Vulnerability

nvd

CVE-2024-38248P4HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.41692024-09-10

CVE-2024-38248 [HIGH] CWE-416 CVE-2024-38248: Windows Storage Elevation of Privilege Vulnerability Windows Storage Elevation of Privilege Vulnerability

nvd

CVE-2024-21445P4HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.32962024-03-12

CVE-2024-21445 [HIGH] CWE-415 CVE-2024-21445: Windows USB Print Driver Elevation of Privilege Vulnerability Windows USB Print Driver Elevation of Privilege Vulnerability

nvd

CVE-2025-21414P4HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.48902025-02-11

CVE-2025-21414 [HIGH] CWE-122 CVE-2025-21414: Windows Core Messaging Elevation of Privileges Vulnerability Windows Core Messaging Elevation of Privileges Vulnerability

nvd

CVE-2025-21184P4HIGHCVSS 7.0≥ 10.0.22631.0, < 10.0.22631.48902025-02-11

CVE-2025-21184 [HIGH] CWE-122 CVE-2025-21184: Windows Core Messaging Elevation of Privileges Vulnerability Windows Core Messaging Elevation of Privileges Vulnerability

nvd

CVE-2025-21349P4MEDIUMCVSS 6.8≥ 10.0.22631.0, < 10.0.22631.48902025-02-11

CVE-2025-21349 [MEDIUM] CWE-287 CVE-2025-21349: Windows Remote Desktop Configuration Service Tampering Vulnerability Windows Remote Desktop Configuration Service Tampering Vulnerability

nvd

← Previous60 / 84Next →