~/products/microsoft/windows_11_version_23h2

pipeline liveDigest Docs

Microsoft Windows 11 Version 23H2 vulnerabilities

1,661 known vulnerabilities affecting microsoft/windows_11_version_23h2.

Total CVEs

1,661

CISA KEV

59

actively exploited

Public exploits

42

Exploited in wild

71

Severity breakdown

CRITICAL25HIGH1170MEDIUM458LOW8

Vulnerabilities

SortPage 76 of 84

CVE-2024-43537P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08

CVE-2024-43537 [MEDIUM] CWE-125 CVE-2024-43537: Windows Mobile Broadband Driver Denial of Service Vulnerability Windows Mobile Broadband Driver Denial of Service Vulnerability

CVE-2024-43540P4MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08

CVE-2024-43540 [MEDIUM] CWE-20 CVE-2024-43540: Windows Mobile Broadband Driver Denial of Service Vulnerability Windows Mobile Broadband Driver Denial of Service Vulnerability

CVE-2025-21347P4MEDIUMCVSS 6.0≥ 10.0.22631.0, < 10.0.22631.48902025-02-11

CVE-2025-21347 [MEDIUM] CWE-59 CVE-2025-21347: Windows Deployment Services Denial of Service Vulnerability Windows Deployment Services Denial of Service Vulnerability

CVE-2024-26177P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.32962024-03-12

CVE-2024-26177 [MEDIUM] CWE-200 CVE-2024-26177: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

CVE-2024-26174P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.32962024-03-12

CVE-2024-26174 [MEDIUM] CWE-125 CVE-2024-26174: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

CVE-2024-20694P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.30072024-01-09

CVE-2024-20694 [MEDIUM] CWE-908 CVE-2024-20694: Windows CoreMessaging Information Disclosure Vulnerability Windows CoreMessaging Information Disclosure Vulnerability

CVE-2024-21311P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.30072024-01-09

CVE-2024-21311 [MEDIUM] CWE-125 CVE-2024-21311: Windows Cryptographic Services Information Disclosure Vulnerability Windows Cryptographic Services Information Disclosure Vulnerability

CVE-2023-36404P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.27152023-11-14

CVE-2023-36404 [MEDIUM] CWE-284 CVE-2023-36404: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

CVE-2024-38151P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38151 [MEDIUM] CWE-125 CVE-2024-38151: Windows Kernel Information Disclosure Vulnerability Windows Kernel Information Disclosure Vulnerability

CVE-2024-43508P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.43172024-10-08

CVE-2024-43508 [MEDIUM] CWE-125 CVE-2024-43508: Windows Graphics Component Information Disclosure Vulnerability Windows Graphics Component Information Disclosure Vulnerability

CVE-2025-21374P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21374 [MEDIUM] CWE-125 CVE-2025-21374: Windows CSC Service Information Disclosure Vulnerability Windows CSC Service Information Disclosure Vulnerability

CVE-2026-20928P4MEDIUMCVSS 4.6≥ 10.0.22631.0, < 10.0.22631.69362026-04-14

CVE-2026-20928 [MEDIUM] CWE-212 CVE-2026-20928: Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack.

CVE-2023-36406P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.27152023-11-14

CVE-2023-36406 [MEDIUM] CWE-20 CVE-2023-36406: Windows Hyper-V Information Disclosure Vulnerability Windows Hyper-V Information Disclosure Vulnerability

CVE-2025-59198P4MEDIUMCVSS 5.0≥ 10.0.22631.0, < 10.0.22631.60602025-10-14

CVE-2025-59198 [MEDIUM] CWE-20 CVE-2025-59198: Improper input validation in Microsoft Windows Search Component allows an authorized attacker to den Improper input validation in Microsoft Windows Search Component allows an authorized attacker to deny service locally.

CVE-2024-38143P4MEDIUMCVSS 4.2≥ 10.0.22631.0, < 10.0.22631.40372024-08-13

CVE-2024-38143 [MEDIUM] CWE-306 CVE-2024-38143: Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability

CVE-2026-20828P4MEDIUMCVSS 4.6≥ 10.0.22631.0, < 10.0.22631.64912026-01-13

CVE-2026-20828 [MEDIUM] CWE-125 CVE-2026-20828: Out-of-bounds read in Windows Internet Connection Sharing (ICS) allows an unauthorized attacker to d Out-of-bounds read in Windows Internet Connection Sharing (ICS) allows an unauthorized attacker to disclose information with a physical attack.

CVE-2025-59294P4MEDIUMCVSS 4.6≥ 10.0.22631.0, < 10.0.22631.60602025-10-14

CVE-2025-59294 [MEDIUM] CWE-200 CVE-2025-59294: Exposure of sensitive information to an unauthorized actor in Windows Taskbar Live allows an unautho Exposure of sensitive information to an unauthorized actor in Windows Taskbar Live allows an unauthorized attacker to disclose information with a physical attack.

CVE-2025-21278P4MEDIUMCVSS 5.5≥ 10.0.22631.0, < 10.0.22631.47512025-01-14

CVE-2025-21278 [MEDIUM] CWE-362 CVE-2025-21278: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

CVE-2024-30071P4MEDIUMCVSS 4.7≥ 10.0.22631.0, < 10.0.22631.38802024-07-09

CVE-2024-30071 [MEDIUM] CWE-126 CVE-2024-30071: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

CVE-2024-30069P4MEDIUMCVSS 4.7≥ 10.0.22631.0, < 10.0.22631.37372024-06-11

CVE-2024-30069 [MEDIUM] CWE-126 CVE-2024-30069: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

← Previous76 / 84Next →

Microsoft Windows 11 Version 23H2 vulnerabilities | cvebase