Microsoft Windows 11 23h2
By the Year
In 2024 there have been 78 vulnerabilities in Microsoft Windows 11 23h2 with an average score of 7.2 out of ten. Last year Windows 11 23h2 had 49 security vulnerabilities published. That is, 29 more vulnerabilities have already been reported in 2024 as compared to last year. Last year, the average CVE base score was greater by 0.49
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 78 | 7.24 |
2023 | 49 | 7.72 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new Windows 11 23h2 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Microsoft Windows 11 23h2 Security Vulnerabilities
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-29062
7.1 - High
- April 09, 2024
Secure Boot Security Feature Bypass Vulnerability
TOCTTOU
Secure Boot Security Feature Bypass Vulnerability
CVE-2024-29061
7.8 - High
- April 09, 2024
Secure Boot Security Feature Bypass Vulnerability
Memory Corruption
Windows Storage Elevation of Privilege Vulnerability
CVE-2024-29052
7.8 - High
- April 09, 2024
Windows Storage Elevation of Privilege Vulnerability
Improper Privilege Management
Windows Hyper-V Denial of Service Vulnerability
CVE-2024-21408
5.5 - Medium
- March 12, 2024
Windows Hyper-V Denial of Service Vulnerability
Windows Hyper-V Remote Code Execution Vulnerability
CVE-2024-21407
8.1 - High
- March 12, 2024
Windows Hyper-V Remote Code Execution Vulnerability
Windows Kernel Information Disclosure Vulnerability
CVE-2024-21340
4.6 - Medium
- February 13, 2024
Windows Kernel Information Disclosure Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-21338
7.8 - High
- February 13, 2024
Windows Kernel Elevation of Privilege Vulnerability
Windows Kernel Remote Code Execution Vulnerability
CVE-2024-21341
6.8 - Medium
- February 13, 2024
Windows Kernel Remote Code Execution Vulnerability
Windows DNS Client Denial of Service Vulnerability
CVE-2024-21342
7.5 - High
- February 13, 2024
Windows DNS Client Denial of Service Vulnerability
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
CVE-2024-21405
7 - High
- February 13, 2024
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
Windows OLE Remote Code Execution Vulnerability
CVE-2024-21372
8.8 - High
- February 13, 2024
Windows OLE Remote Code Execution Vulnerability
Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-21371
7 - High
- February 13, 2024
Windows Kernel Elevation of Privilege Vulnerability
Win32k Elevation of Privilege Vulnerability
CVE-2024-21346
7.8 - High
- February 13, 2024
Win32k Elevation of Privilege Vulnerability
Windows Hyper-V Denial of Service Vulnerability
CVE-2024-20684
6.5 - Medium
- February 13, 2024
Windows Hyper-V Denial of Service Vulnerability
Windows Network Address Translation (NAT) Denial of Service Vulnerability
CVE-2024-21344
5.9 - Medium
- February 13, 2024
Windows Network Address Translation (NAT) Denial of Service Vulnerability
Windows Network Address Translation (NAT) Denial of Service Vulnerability
CVE-2024-21343
7.5 - High
- February 13, 2024
Windows Network Address Translation (NAT) Denial of Service Vulnerability
Trusted Compute Base Elevation of Privilege Vulnerability
CVE-2024-21304
4.1 - Medium
- February 13, 2024
Trusted Compute Base Elevation of Privilege Vulnerability
Windows Printing Service Spoofing Vulnerability
CVE-2024-21406
7.5 - High
- February 13, 2024
Windows Printing Service Spoofing Vulnerability
Windows DNS Information Disclosure Vulnerability
CVE-2024-21377
5.5 - Medium
- February 13, 2024
Windows DNS Information Disclosure Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21375
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21370
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21369
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21368
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21367
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21366
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21365
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21361
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21360
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21359
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21358
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21352
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21350
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Internet Shortcut Files Security Feature Bypass Vulnerability
CVE-2024-21412
8.1 - High
- February 13, 2024
Internet Shortcut Files Security Feature Bypass Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21391
8.8 - High
- February 13, 2024
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Windows Kernel Security Feature Bypass Vulnerability
CVE-2024-21362
5.5 - Medium
- February 13, 2024
Windows Kernel Security Feature Bypass Vulnerability
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
CVE-2024-21355
7 - High
- February 13, 2024
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
CVE-2024-21354
7.8 - High
- February 13, 2024
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
Windows SmartScreen Security Feature Bypass Vulnerability
CVE-2024-21351
7.6 - High
- February 13, 2024
Windows SmartScreen Security Feature Bypass Vulnerability
Internet Connection Sharing (ICS) Denial of Service Vulnerability
CVE-2024-21348
7.5 - High
- February 13, 2024
Internet Connection Sharing (ICS) Denial of Service Vulnerability
Microsoft ODBC Driver Remote Code Execution Vulnerability
CVE-2024-21347
7.5 - High
- February 13, 2024
Microsoft ODBC Driver Remote Code Execution Vulnerability
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
CVE-2024-21356
6.5 - Medium
- February 13, 2024
Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability
Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
CVE-2024-21349
8.8 - High
- February 13, 2024
Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
Windows USB Generic Parent Driver Remote Code Execution Vulnerability
CVE-2024-21339
6.4 - Medium
- February 13, 2024
Windows USB Generic Parent Driver Remote Code Execution Vulnerability
Windows Themes Spoofing Vulnerability
CVE-2024-21320
6.5 - Medium
- January 09, 2024
Windows Themes Spoofing Vulnerability
Windows Server Key Distribution Service Security Feature Bypass
CVE-2024-21316
6.1 - Medium
- January 09, 2024
Windows Server Key Distribution Service Security Feature Bypass
Microsoft Message Queuing Information Disclosure Vulnerability
CVE-2024-21314
6.5 - Medium
- January 09, 2024
Microsoft Message Queuing Information Disclosure Vulnerability
Windows TCP/IP Information Disclosure Vulnerability
CVE-2024-21313
5.3 - Medium
- January 09, 2024
Windows TCP/IP Information Disclosure Vulnerability
Windows Cryptographic Services Information Disclosure Vulnerability
CVE-2024-21311
5.5 - Medium
- January 09, 2024
Windows Cryptographic Services Information Disclosure Vulnerability
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2024-21310
7.8 - High
- January 09, 2024
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
CVE-2024-21309
7.8 - High
- January 09, 2024
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
Remote Desktop Client Remote Code Execution Vulnerability
CVE-2024-21307
7.5 - High
- January 09, 2024
Remote Desktop Client Remote Code Execution Vulnerability
Race Condition
Microsoft Bluetooth Driver Spoofing Vulnerability
CVE-2024-21306
5.7 - Medium
- January 09, 2024
Microsoft Bluetooth Driver Spoofing Vulnerability
Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability
CVE-2024-21305
4.4 - Medium
- January 09, 2024
Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass Vulnerability
Windows Hyper-V Remote Code Execution Vulnerability
CVE-2024-20700
7.5 - High
- January 09, 2024
Windows Hyper-V Remote Code Execution Vulnerability
Race Condition
Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-20698
7.8 - High
- January 09, 2024
Windows Kernel Elevation of Privilege Vulnerability
Windows Libarchive Remote Code Execution Vulnerability
CVE-2024-20696
7.3 - High
- January 09, 2024
Windows Libarchive Remote Code Execution Vulnerability
Windows CoreMessaging Information Disclosure Vulnerability
CVE-2024-20694
5.5 - Medium
- January 09, 2024
Windows CoreMessaging Information Disclosure Vulnerability
Exposure of Resource to Wrong Sphere
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
CVE-2024-20692
5.7 - Medium
- January 09, 2024
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
Exposure of Resource to Wrong Sphere
Microsoft Message Queuing Information Disclosure Vulnerability
CVE-2024-20664
6.5 - Medium
- January 09, 2024
Microsoft Message Queuing Information Disclosure Vulnerability
Windows Message Queuing Client (MSMQC) Information Disclosure
CVE-2024-20663
6.5 - Medium
- January 09, 2024
Windows Message Queuing Client (MSMQC) Information Disclosure
Windows Hyper-V Denial of Service Vulnerability
CVE-2024-20699
5.5 - Medium
- January 09, 2024
Windows Hyper-V Denial of Service Vulnerability
Windows Libarchive Remote Code Execution Vulnerability
CVE-2024-20697
7.3 - High
- January 09, 2024
Windows Libarchive Remote Code Execution Vulnerability
Windows Themes Information Disclosure Vulnerability
CVE-2024-20691
4.7 - Medium
- January 09, 2024
Windows Themes Information Disclosure Vulnerability
Windows Nearby Sharing Spoofing Vulnerability
CVE-2024-20690
6.5 - Medium
- January 09, 2024
Windows Nearby Sharing Spoofing Vulnerability
Microsoft AllJoyn API Denial of Service Vulnerability
CVE-2024-20687
7.5 - High
- January 09, 2024
Microsoft AllJoyn API Denial of Service Vulnerability
Win32k Elevation of Privilege Vulnerability
CVE-2024-20683
7.8 - High
- January 09, 2024
Win32k Elevation of Privilege Vulnerability
Windows Cryptographic Services Remote Code Execution Vulnerability
CVE-2024-20682
7.8 - High
- January 09, 2024
Windows Cryptographic Services Remote Code Execution Vulnerability
Windows Subsystem for Linux Elevation of Privilege Vulnerability
CVE-2024-20681
7.8 - High
- January 09, 2024
Windows Subsystem for Linux Elevation of Privilege Vulnerability
Windows Message Queuing Client (MSMQC) Information Disclosure
CVE-2024-20680
6.5 - Medium
- January 09, 2024
Windows Message Queuing Client (MSMQC) Information Disclosure
Windows Kerberos Security Feature Bypass Vulnerability
CVE-2024-20674
- January 09, 2024
Windows Kerberos Security Feature Bypass Vulnerability
Authentication Bypass by Spoofing
BitLocker Security Feature Bypass Vulnerability
CVE-2024-20666
6.6 - Medium
- January 09, 2024
BitLocker Security Feature Bypass Vulnerability
Microsoft Message Queuing Denial of Service Vulnerability
CVE-2024-20661
7.5 - High
- January 09, 2024
Microsoft Message Queuing Denial of Service Vulnerability
Resource Exhaustion
Microsoft Message Queuing Information Disclosure Vulnerability
CVE-2024-20660
6.5 - Medium
- January 09, 2024
Microsoft Message Queuing Information Disclosure Vulnerability
Microsoft ODBC Driver Remote Code Execution Vulnerability
CVE-2024-20654
8 - High
- January 09, 2024
Microsoft ODBC Driver Remote Code Execution Vulnerability
Windows HTML Platforms Security Feature Bypass Vulnerability
CVE-2024-20652
8.1 - High
- January 09, 2024
Windows HTML Platforms Security Feature Bypass Vulnerability
Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
CVE-2024-20658
7.8 - High
- January 09, 2024
Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
Windows Group Policy Elevation of Privilege Vulnerability
CVE-2024-20657
7 - High
- January 09, 2024
Windows Group Policy Elevation of Privilege Vulnerability
Microsoft Common Log File System Elevation of Privilege Vulnerability
CVE-2024-20653
7.8 - High
- January 09, 2024
Microsoft Common Log File System Elevation of Privilege Vulnerability
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2023-36696
7.8 - High
- December 12, 2023
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Windows Kernel Denial of Service Vulnerability
CVE-2023-35635
5.5 - Medium
- December 12, 2023
Windows Kernel Denial of Service Vulnerability
Windows Bluetooth Driver Remote Code Execution Vulnerability
CVE-2023-35634
8.8 - High
- December 12, 2023
Windows Bluetooth Driver Remote Code Execution Vulnerability
Win32k Elevation of Privilege Vulnerability
CVE-2023-35631
7.8 - High
- December 12, 2023
Win32k Elevation of Privilege Vulnerability
Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
CVE-2023-35630
8.8 - High
- December 12, 2023
Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2023-35628
8.1 - High
- December 12, 2023
Windows MSHTML Platform Remote Code Execution Vulnerability
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability
CVE-2023-36391
7.8 - High
- December 12, 2023
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability
Windows Sysmain Service Elevation of Privilege
CVE-2023-35644
7.8 - High
- December 12, 2023
Windows Sysmain Service Elevation of Privilege
Internet Connection Sharing (ICS) Denial of Service Vulnerability
CVE-2023-35642
6.5 - Medium
- December 12, 2023
Internet Connection Sharing (ICS) Denial of Service Vulnerability
Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
CVE-2023-35641
8.8 - High
- December 12, 2023
Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
Microsoft ODBC Driver Remote Code Execution Vulnerability
CVE-2023-35639
8.8 - High
- December 12, 2023
Microsoft ODBC Driver Remote Code Execution Vulnerability
Windows Media Remote Code Execution Vulnerability
CVE-2023-21740
7.8 - High
- December 12, 2023
Windows Media Remote Code Execution Vulnerability
Win32k Elevation of Privilege Vulnerability
CVE-2023-36011
7.8 - High
- December 12, 2023
Win32k Elevation of Privilege Vulnerability
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2023-36006
8.8 - High
- December 12, 2023
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Windows Telephony Server Elevation of Privilege Vulnerability
CVE-2023-36005
8.1 - High
- December 12, 2023
Windows Telephony Server Elevation of Privilege Vulnerability
Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability
CVE-2023-36004
7.5 - High
- December 12, 2023
Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability
XAML Diagnostics Elevation of Privilege Vulnerability
CVE-2023-36003
7.3 - High
- December 12, 2023
XAML Diagnostics Elevation of Privilege Vulnerability
Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks
CVE-2023-24023
6.8 - Medium
- November 28, 2023
Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.
Windows Compressed Folder Remote Code Execution Vulnerability
CVE-2023-36396
7.8 - High
- November 14, 2023
Windows Compressed Folder Remote Code Execution Vulnerability
Windows User Interface Application Core Remote Code Execution Vulnerability
CVE-2023-36393
7.8 - High
- November 14, 2023
Windows User Interface Application Core Remote Code Execution Vulnerability
Windows Authentication Elevation of Privilege Vulnerability
CVE-2023-36047
7.8 - High
- November 14, 2023
Windows Authentication Elevation of Privilege Vulnerability
Windows Authentication Denial of Service Vulnerability
CVE-2023-36046
7.1 - High
- November 14, 2023
Windows Authentication Denial of Service Vulnerability
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Microsoft Windows 11 23h2 or by Microsoft? Click the Watch button to subscribe.