cbcvebase.

Microsoft Windows 11 Version 23H2 vulnerabilities

1,661 known vulnerabilities affecting microsoft/windows_11_version_23h2.

Total CVEs
1,661
CISA KEV
59
actively exploited
Public exploits
42
Exploited in wild
71
Severity breakdown
CRITICAL25HIGH1170MEDIUM458LOW8

Vulnerabilities

Page 75 of 84
CVE-2024-43546P4MEDIUMCVSS 5.6≥ 10.0.22631.0, < 10.0.22631.43172024-10-08
CVE-2024-43546 [MEDIUM] CWE-203 CVE-2024-43546: Windows Cryptographic Information Disclosure Vulnerability Windows Cryptographic Information Disclosure Vulnerability
nvd
CVE-2024-30008P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.35932024-05-14
CVE-2024-30008 [MEDIUM] CWE-191 CVE-2024-30008: Windows DWM Core Library Information Disclosure Vulnerability Windows DWM Core Library Information Disclosure Vulnerability
nvd
CVE-2024-30016P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.35932024-05-14
CVE-2024-30016 [MEDIUM] CWE-125 CVE-2024-30016: Windows Cryptographic Services Information Disclosure Vulnerability Windows Cryptographic Services Information Disclosure Vulnerability
nvd
CVE-2023-36428P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.27152023-11-14
CVE-2023-36428 [MEDIUM] CWE-125 CVE-2023-36428: Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
nvd
CVE-2025-21257P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14
CVE-2025-21257 [MEDIUM] CWE-125 CVE-2025-21257: Windows WLAN AutoConfig Service Information Disclosure Vulnerability Windows WLAN AutoConfig Service Information Disclosure Vulnerability
nvd
CVE-2024-43500P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08
CVE-2024-43500 [MEDIUM] CWE-126 CVE-2024-43500: Windows Resilient File System (ReFS) Information Disclosure Vulnerability Windows Resilient File System (ReFS) Information Disclosure Vulnerability
nvd
CVE-2024-21305P4MEDIUMCVSS 4.4≥ 10.0.22631.0, < 10.0.22631.30072024-01-09
CVE-2024-21305 [MEDIUM] CWE-732 CVE-2024-21305: Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability
nvd
CVE-2025-48813P4MEDIUMCVSS 4.7≥ 10.0.22631.0, < 10.0.22631.60602025-10-14
CVE-2025-48813 [MEDIUM] CWE-324 CVE-2025-48813: Use of a key past its expiration date in Virtual Secure Mode allows an authorized attacker to perfor Use of a key past its expiration date in Virtual Secure Mode allows an authorized attacker to perform spoofing locally.
nvd
CVE-2026-20962P4MEDIUMCVSS 4.4≥ 10.0.22631.0, < 10.0.22631.64912026-01-13
CVE-2026-20962 [MEDIUM] CWE-908 CVE-2026-20962: Use of uninitialized resource in Dynamic Root of Trust for Measurement (DRTM) allows an authorized a Use of uninitialized resource in Dynamic Root of Trust for Measurement (DRTM) allows an authorized attacker to disclose information locally.
nvd
CVE-2026-27906P4MEDIUMCVSS 4.4≥ 10.0.22631.0, < 10.0.22631.69362026-04-14
CVE-2026-27906 [MEDIUM] CWE-20 CVE-2026-27906: Improper input validation in Windows Hello allows an authorized attacker to bypass a security featur Improper input validation in Windows Hello allows an authorized attacker to bypass a security feature locally.
nvd
CVE-2024-38027P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.38802024-07-09
CVE-2024-38027 [MEDIUM] CWE-400 CVE-2024-38027: Windows Line Printer Daemon Service Denial of Service Vulnerability Windows Line Printer Daemon Service Denial of Service Vulnerability
nvd
CVE-2026-32209P4MEDIUMCVSS 4.4≥ 10.0.22631.0, < 10.0.22631.7079≥ 10.0.22631.0, < 10.0.22631.72192026-05-12
CVE-2026-32209 [MEDIUM] CWE-284 CVE-2026-32209: Improper access control in Windows Filtering Platform (WFP) allows an authorized attacker to bypass Improper access control in Windows Filtering Platform (WFP) allows an authorized attacker to bypass a security feature locally.
nvd
CVE-2024-38234P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.41692024-09-10
CVE-2024-38234 [MEDIUM] CWE-20 CVE-2024-38234: Windows Networking Denial of Service Vulnerability Windows Networking Denial of Service Vulnerability
nvd
CVE-2024-43555P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08
CVE-2024-43555 [MEDIUM] CWE-125 CVE-2024-43555: Windows Mobile Broadband Driver Denial of Service Vulnerability Windows Mobile Broadband Driver Denial of Service Vulnerability
nvd
CVE-2024-43561P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08
CVE-2024-43561 [MEDIUM] CWE-20 CVE-2024-43561: Windows Mobile Broadband Driver Denial of Service Vulnerability Windows Mobile Broadband Driver Denial of Service Vulnerability
nvd
CVE-2024-43558P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08
CVE-2024-43558 [MEDIUM] CWE-20 CVE-2024-43558: Windows Mobile Broadband Driver Denial of Service Vulnerability Windows Mobile Broadband Driver Denial of Service Vulnerability
nvd
CVE-2024-43557P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08
CVE-2024-43557 [MEDIUM] CWE-20 CVE-2024-43557: Windows Mobile Broadband Driver Denial of Service Vulnerability Windows Mobile Broadband Driver Denial of Service Vulnerability
nvd
CVE-2024-43559P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08
CVE-2024-43559 [MEDIUM] CWE-476 CVE-2024-43559: Windows Mobile Broadband Driver Denial of Service Vulnerability Windows Mobile Broadband Driver Denial of Service Vulnerability
nvd
CVE-2024-43538P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08
CVE-2024-43538 [MEDIUM] CWE-20 CVE-2024-43538: Windows Mobile Broadband Driver Denial of Service Vulnerability Windows Mobile Broadband Driver Denial of Service Vulnerability
nvd
CVE-2024-43542P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08
CVE-2024-43542 [MEDIUM] CWE-20 CVE-2024-43542: Windows Mobile Broadband Driver Denial of Service Vulnerability Windows Mobile Broadband Driver Denial of Service Vulnerability
nvd
← Previous75 / 84Next →
Microsoft Windows 11 Version 23H2 vulnerabilities | cvebase