Microsoft Windows 11 21h2
By the Year
In 2023 there have been 493 vulnerabilities in Microsoft Windows 11 21h2 with an average score of 7.6 out of ten. Last year Windows 11 21h2 had 2 security vulnerabilities published. That is, 491 more vulnerabilities have already been reported in 2023 as compared to last year. However, the average CVE base score of the vulnerabilities in 2023 is greater by 0.40.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 493 | 7.55 |
| 2022 | 2 | 7.15 |
| 2021 | 3 | 7.77 |
| 2020 | 0 | 0.00 |
| 2019 | 1 | 8.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Windows 11 21h2 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Windows 11 21h2 Security Vulnerabilities
Windows SmartScreen Security Feature Bypass Vulnerability
CVE-2023-36025
8.8 - High
- November 14, 2023
Windows SmartScreen Security Feature Bypass Vulnerability
Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability
CVE-2023-36719
7.8 - High
- November 14, 2023
Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability
Windows Scripting Engine Memory Corruption Vulnerability
CVE-2023-36017
8.8 - High
- November 14, 2023
Windows Scripting Engine Memory Corruption Vulnerability
Memory Corruption
Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2023-36033
7.8 - High
- November 14, 2023
Windows DWM Core Library Elevation of Privilege Vulnerability
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2023-36036
7.8 - High
- November 14, 2023
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
CVE-2023-36397
9.8 - Critical
- November 14, 2023
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
Windows NTFS Information Disclosure Vulnerability
CVE-2023-36398
6.5 - Medium
- November 14, 2023
Windows NTFS Information Disclosure Vulnerability
Windows Storage Elevation of Privilege Vulnerability
CVE-2023-36399
7.1 - High
- November 14, 2023
Windows Storage Elevation of Privilege Vulnerability
Windows HMAC Key Derivation Elevation of Privilege Vulnerability
CVE-2023-36400
8.8 - High
- November 14, 2023
Windows HMAC Key Derivation Elevation of Privilege Vulnerability
Microsoft Remote Registry Service Remote Code Execution Vulnerability
CVE-2023-36401
7.2 - High
- November 14, 2023
Microsoft Remote Registry Service Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2023-36402
8.8 - High
- November 14, 2023
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-36403
7 - High
- November 14, 2023
Windows Kernel Elevation of Privilege Vulnerability
Windows Kernel Information Disclosure Vulnerability
CVE-2023-36404
5.5 - Medium
- November 14, 2023
Windows Kernel Information Disclosure Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-36405
7 - High
- November 14, 2023
Windows Kernel Elevation of Privilege Vulnerability
Windows Hyper-V Information Disclosure Vulnerability
CVE-2023-36406
5.5 - Medium
- November 14, 2023
Windows Hyper-V Information Disclosure Vulnerability
Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2023-36407
7.8 - High
- November 14, 2023
Windows Hyper-V Elevation of Privilege Vulnerability
Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2023-36408
7.8 - High
- November 14, 2023
Windows Hyper-V Elevation of Privilege Vulnerability
Microsoft Remote Registry Service Remote Code Execution Vulnerability
CVE-2023-36423
8.8 - High
- November 14, 2023
Microsoft Remote Registry Service Remote Code Execution Vulnerability
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2023-36424
7.8 - High
- November 14, 2023
Windows Common Log File System Driver Elevation of Privilege Vulnerability
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
CVE-2023-36425
8 - High
- November 14, 2023
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2023-36427
7 - High
- November 14, 2023
Windows Hyper-V Elevation of Privilege Vulnerability
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
CVE-2023-36428
5.5 - Medium
- November 14, 2023
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
Windows Installer Elevation of Privilege Vulnerability
CVE-2023-36705
7.8 - High
- November 14, 2023
Windows Installer Elevation of Privilege Vulnerability
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
CVE-2023-36028
9.8 - Critical
- November 14, 2023
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
Windows Authentication Denial of Service Vulnerability
CVE-2023-36046
7.1 - High
- November 14, 2023
Windows Authentication Denial of Service Vulnerability
Windows Authentication Elevation of Privilege Vulnerability
CVE-2023-36047
7.8 - High
- November 14, 2023
Windows Authentication Elevation of Privilege Vulnerability
Windows User Interface Application Core Remote Code Execution Vulnerability
CVE-2023-36393
7.8 - High
- November 14, 2023
Windows User Interface Application Core Remote Code Execution Vulnerability
Windows Search Service Elevation of Privilege Vulnerability
CVE-2023-36394
7 - High
- November 14, 2023
Windows Search Service Elevation of Privilege Vulnerability
Win32k Elevation of Privilege Vulnerability
CVE-2023-36732
7.8 - High
- October 10, 2023
Win32k Elevation of Privilege Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36571
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36570
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft QUIC Denial of Service Vulnerability
CVE-2023-36435
7.5 - High
- October 10, 2023
Microsoft QUIC Denial of Service Vulnerability
Windows IIS Server Elevation of Privilege Vulnerability
CVE-2023-36434
9.8 - Critical
- October 10, 2023
Windows IIS Server Elevation of Privilege Vulnerability
Microsoft Message Queuing Denial of Service Vulnerability
CVE-2023-36431
7.5 - High
- October 10, 2023
Microsoft Message Queuing Denial of Service Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-35349
9.8 - Critical
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41774
8.1 - High
- October 10, 2023
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41773
8.1 - High
- October 10, 2023
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Win32k Elevation of Privilege Vulnerability
CVE-2023-41772
7.8 - High
- October 10, 2023
Win32k Elevation of Privilege Vulnerability
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41771
8.1 - High
- October 10, 2023
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41770
8.1 - High
- October 10, 2023
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41769
8.1 - High
- October 10, 2023
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41768
8.1 - High
- October 10, 2023
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41767
8.1 - High
- October 10, 2023
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability
CVE-2023-41766
7.8 - High
- October 10, 2023
Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-41765
8.1 - High
- October 10, 2023
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
CVE-2023-38166
8.1 - High
- October 10, 2023
Layer 2 Tunneling Protocol Remote Code Execution Vulnerability
Race Condition
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2023-38159
7 - High
- October 10, 2023
Windows Graphics Component Elevation of Privilege Vulnerability
Race Condition
Windows Runtime Remote Code Execution Vulnerability
CVE-2023-36902
7 - High
- October 10, 2023
Windows Runtime Remote Code Execution Vulnerability
Race Condition
Win32k Elevation of Privilege Vulnerability
CVE-2023-36776
7 - High
- October 10, 2023
Win32k Elevation of Privilege Vulnerability
Race Condition
Microsoft DirectMusic Remote Code Execution Vulnerability
CVE-2023-36702
7.8 - High
- October 10, 2023
Microsoft DirectMusic Remote Code Execution Vulnerability
Microsoft Resilient File System (ReFS) Elevation of Privilege Vulnerability
CVE-2023-36701
7.8 - High
- October 10, 2023
Microsoft Resilient File System (ReFS) Elevation of Privilege Vulnerability
Windows Kernel Security Feature Bypass Vulnerability
CVE-2023-36698
4.4 - Medium
- October 10, 2023
Windows Kernel Security Feature Bypass Vulnerability
Microsoft Message Queuing Denial of Service Vulnerability
CVE-2023-36579
7.5 - High
- October 10, 2023
Microsoft Message Queuing Denial of Service Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36578
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2023-36577
8.8 - High
- October 10, 2023
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Windows Kernel Information Disclosure Vulnerability
CVE-2023-36576
5.5 - Medium
- October 10, 2023
Windows Kernel Information Disclosure Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36575
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36574
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36573
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36572
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Windows Deployment Services Information Disclosure Vulnerability
CVE-2023-36567
7.5 - High
- October 10, 2023
Windows Deployment Services Information Disclosure Vulnerability
Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2023-36436
7.8 - High
- October 10, 2023
Windows MSHTML Platform Remote Code Execution Vulnerability
Win32k Elevation of Privilege Vulnerability
CVE-2023-36743
7.8 - High
- October 10, 2023
Win32k Elevation of Privilege Vulnerability
Win32k Elevation of Privilege Vulnerability
CVE-2023-36731
7.8 - High
- October 10, 2023
Win32k Elevation of Privilege Vulnerability
Named Pipe File System Elevation of Privilege Vulnerability
CVE-2023-36729
7.8 - High
- October 10, 2023
Named Pipe File System Elevation of Privilege Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-36725
7.8 - High
- October 10, 2023
Windows Kernel Elevation of Privilege Vulnerability
Microsoft AllJoyn API Denial of Service Vulnerability
CVE-2023-36709
7.5 - High
- October 10, 2023
Microsoft AllJoyn API Denial of Service Vulnerability
Windows Media Foundation Core Remote Code Execution Vulnerability
CVE-2023-36710
7.8 - High
- October 10, 2023
Windows Media Foundation Core Remote Code Execution Vulnerability
Windows Runtime C++ Template Library Elevation of Privilege Vulnerability
CVE-2023-36711
7.8 - High
- October 10, 2023
Windows Runtime C++ Template Library Elevation of Privilege Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-36712
7.8 - High
- October 10, 2023
Windows Kernel Elevation of Privilege Vulnerability
Windows Common Log File System Driver Information Disclosure Vulnerability
CVE-2023-36713
5.5 - Medium
- October 10, 2023
Windows Common Log File System Driver Information Disclosure Vulnerability
Windows Virtual Trusted Platform Module Denial of Service Vulnerability
CVE-2023-36717
6.5 - Medium
- October 10, 2023
Windows Virtual Trusted Platform Module Denial of Service Vulnerability
Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability
CVE-2023-36718
7.8 - High
- October 10, 2023
Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability
Windows Mixed Reality Developer Tools Denial of Service Vulnerability
CVE-2023-36720
7.5 - High
- October 10, 2023
Windows Mixed Reality Developer Tools Denial of Service Vulnerability
Windows Error Reporting Service Elevation of Privilege Vulnerability
CVE-2023-36721
7 - High
- October 10, 2023
Windows Error Reporting Service Elevation of Privilege Vulnerability
Active Directory Domain Services Information Disclosure Vulnerability
CVE-2023-36722
4.4 - Medium
- October 10, 2023
Active Directory Domain Services Information Disclosure Vulnerability
Windows Container Manager Service Elevation of Privilege Vulnerability
CVE-2023-36723
7.8 - High
- October 10, 2023
Windows Container Manager Service Elevation of Privilege Vulnerability
Windows TCP/IP Information Disclosure Vulnerability
CVE-2023-36438
7.5 - High
- October 10, 2023
Windows TCP/IP Information Disclosure Vulnerability
PrintHTML API Remote Code Execution Vulnerability
CVE-2023-36557
7.8 - High
- October 10, 2023
PrintHTML API Remote Code Execution Vulnerability
Microsoft WordPad Information Disclosure Vulnerability
CVE-2023-36563
6.5 - Medium
- October 10, 2023
Microsoft WordPad Information Disclosure Vulnerability
Windows Search Security Feature Bypass Vulnerability
CVE-2023-36564
6.5 - Medium
- October 10, 2023
Windows Search Security Feature Bypass Vulnerability
Microsoft Message Queuing Denial of Service Vulnerability
CVE-2023-36581
7.5 - High
- October 10, 2023
Microsoft Message Queuing Denial of Service Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36582
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36583
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Active Template Library Denial of Service Vulnerability
CVE-2023-36585
7.5 - High
- October 10, 2023
Active Template Library Denial of Service Vulnerability
Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2023-36584
5.4 - Medium
- October 10, 2023
Windows Mark of the Web Security Feature Bypass Vulnerability
Windows Internet Key Exchange (IKE) Extension Elevation of Privilege Vulnerability
CVE-2023-36726
7.8 - High
- October 10, 2023
Windows Internet Key Exchange (IKE) Extension Elevation of Privilege Vulnerability
Windows Power Management Service Information Disclosure Vulnerability
CVE-2023-36724
5.5 - Medium
- October 10, 2023
Windows Power Management Service Information Disclosure Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36697
8 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft Message Queuing Denial of Service Vulnerability
CVE-2023-36606
7.5 - High
- October 10, 2023
Microsoft Message Queuing Denial of Service Vulnerability
Windows Named Pipe Filesystem Elevation of Privilege Vulnerability
CVE-2023-36605
7.8 - High
- October 10, 2023
Windows Named Pipe Filesystem Elevation of Privilege Vulnerability
Windows TCP/IP Denial of Service Vulnerability
CVE-2023-36603
7.5 - High
- October 10, 2023
Windows TCP/IP Denial of Service Vulnerability
Windows TCP/IP Denial of Service Vulnerability
CVE-2023-36602
7.5 - High
- October 10, 2023
Windows TCP/IP Denial of Service Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36592
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36589
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36590
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability
CVE-2023-36598
7.8 - High
- October 10, 2023
Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability
Microsoft Message Queuing Remote Code Execution Vulnerability
CVE-2023-36591
7.3 - High
- October 10, 2023
Microsoft Message Queuing Remote Code Execution Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2023-36594
7.8 - High
- October 10, 2023
Windows Graphics Component Elevation of Privilege Vulnerability
Remote Procedure Call Information Disclosure Vulnerability
CVE-2023-36596
7.5 - High
- October 10, 2023
Remote Procedure Call Information Disclosure Vulnerability
Exposure of Resource to Wrong Sphere
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Windows 10 22h2 or by Microsoft? Click the Watch button to subscribe.
