cbcvebase.

Microsoft Windows 11 Version 23H2 vulnerabilities

1,661 known vulnerabilities affecting microsoft/windows_11_version_23h2.

Total CVEs
1,661
CISA KEV
59
actively exploited
Public exploits
42
Exploited in wild
71
Severity breakdown
CRITICAL25HIGH1170MEDIUM458LOW8

Vulnerabilities

Page 78 of 84
CVE-2025-29839P4MEDIUMCVSS 4.0≥ 10.0.22631.0, < 10.0.22631.53352025-05-13
CVE-2025-29839 [MEDIUM] CWE-125 CVE-2025-29839: Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information lo Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally.
nvd
CVE-2026-45642P4LOWCVSS 3.9≥ 10.0.22631.0, < 10.0.22631.72192026-06-09
CVE-2026-45642 [LOW] CWE-20 CVE-2026-45642: Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Servi Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Service allows an authorized attacker to perform spoofing with a physical attack.
nvd
CVE-2025-59280P4LOWCVSS 3.1≥ 10.0.22631.0, < 10.0.22631.60602025-10-14
CVE-2025-59280 [LOW] CWE-287 CVE-2025-59280: Improper authentication in Windows SMB Client allows an unauthorized attacker to perform tampering o Improper authentication in Windows SMB Client allows an unauthorized attacker to perform tampering over a network.
nvd
CVE-2025-21210P4MEDIUMCVSS 4.2≥ 10.0.22631.0, < 10.0.22631.47512025-01-14
CVE-2025-21210 [MEDIUM] CWE-636 CVE-2025-21210: Windows BitLocker Information Disclosure Vulnerability Windows BitLocker Information Disclosure Vulnerability
nvd
CVE-2025-21214P4MEDIUMCVSS 4.2≥ 10.0.22631.0, < 10.0.22631.47512025-01-14
CVE-2025-21214 [MEDIUM] CWE-200 CVE-2025-21214: Windows BitLocker Information Disclosure Vulnerability Windows BitLocker Information Disclosure Vulnerability
nvd
CVE-2025-55695P4LOWCVSS 3.3≥ 10.0.22631.0, < 10.0.22631.60602025-10-14
CVE-2025-55695 [LOW] CWE-125 CVE-2025-55695: Out-of-bounds read in Windows WLAN Auto Config Service allows an authorized attacker to disclose inf Out-of-bounds read in Windows WLAN Auto Config Service allows an authorized attacker to disclose information locally.
nvd
CVE-2024-43642HIGHCVSS 7.5≥ 10.0.22631.0, < 10.0.22631.44602024-11-12
CVE-2024-43642 [HIGH] CWE-416 Windows SMB Denial of Service Vulnerability Windows SMB Denial of Service Vulnerability Windows SMB Denial of Service Vulnerability
cvelistv5
CVE-2024-38030MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.38802024-07-09
CVE-2024-38030 [MEDIUM] CWE-200 Windows Themes Spoofing Vulnerability Windows Themes Spoofing Vulnerability Windows Themes Spoofing Vulnerability
cvelistv5
CVE-2024-26217P4LOWCVSS 3.3≥ 10.0.22631.0, < 10.0.22631.35932024-04-09
CVE-2024-26217 [LOW] CWE-125 CVE-2024-26217: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability
nvd
CVE-2024-26185MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.32962024-03-12
CVE-2024-26185 [MEDIUM] CWE-73 Windows Compressed Folder Tampering Vulnerability Windows Compressed Folder Tampering Vulnerability Windows Compressed Folder Tampering Vulnerability
cvelistv5
CVE-2024-30081HIGHCVSS 7.1≥ 10.0.22631.0, < 10.0.22631.38802024-07-09
CVE-2024-30081 [HIGH] CWE-200 Windows NTLM Spoofing Vulnerability Windows NTLM Spoofing Vulnerability Windows NTLM Spoofing Vulnerability
cvelistv5
CVE-2025-21377MEDIUMCVSS 6.5≥ 10.0.22631.0, < 10.0.22631.48902025-02-11
CVE-2025-21377 [MEDIUM] CWE-73 NTLM Hash Disclosure Spoofing Vulnerability NTLM Hash Disclosure Spoofing Vulnerability NTLM Hash Disclosure Spoofing Vulnerability
cvelistv5
CVE-2025-21312P4LOWCVSS 2.4≥ 10.0.22631.0, < 10.0.22631.47512025-01-14
CVE-2025-21312 [LOW] CWE-908 CVE-2025-21312: Windows Smart Card Reader Information Disclosure Vulnerability Windows Smart Card Reader Information Disclosure Vulnerability
nvd
CVE-2024-30087HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.37372024-06-11
CVE-2024-30087 [HIGH] CWE-20 Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability
cvelistv5
CVE-2023-35631HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.28612023-12-12
CVE-2023-35631 [HIGH] Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability
cvelistv5
CVE-2024-21435HIGHCVSS 8.8≥ 10.0.22631.0, < 10.0.22631.32962024-03-12
CVE-2024-21435 [HIGH] CWE-426 Windows OLE Remote Code Execution Vulnerability Windows OLE Remote Code Execution Vulnerability Windows OLE Remote Code Execution Vulnerability
cvelistv5
CVE-2024-21372HIGHCVSS 8.8≥ 10.0.22631.0, < 10.0.22631.31552024-02-13
CVE-2024-21372 [HIGH] CWE-190 Windows OLE Remote Code Execution Vulnerability Windows OLE Remote Code Execution Vulnerability Windows OLE Remote Code Execution Vulnerability
cvelistv5
CVE-2024-30091HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.37372024-06-11
CVE-2024-30091 [HIGH] CWE-122 Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability
cvelistv5
CVE-2024-20683HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.30072024-01-09
CVE-2024-20683 [HIGH] CWE-416 Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability
cvelistv5
CVE-2024-21346HIGHCVSS 7.8≥ 10.0.22631.0, < 10.0.22631.31552024-02-13
CVE-2024-21346 [HIGH] CWE-822 Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability
cvelistv5
← Previous78 / 84Next →
Microsoft Windows 11 Version 23H2 vulnerabilities | cvebase