Microsoft Windows 11 2h2

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Microsoft Windows 11 2h2.

By the Year

In 2026 there have been 8 vulnerabilities in Microsoft Windows 11 2h2 with an average score of 7.1 out of ten. Last year, in 2025 Windows 11 2h2 had 93 security vulnerabilities published. Right now, Windows 11 2h2 is on track to have less security vulnerabilities in 2026 than it did last year. However, the average CVE base score of the vulnerabilities in 2026 is greater by 0.13.

Year	Vulnerabilities	Average Score
2026	8	7.09
2025	93	6.96

It may take a day or so for new Windows 11 2h2 vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Windows 11 2h2 Security Vulnerabilities

Mar 2026: Windows Extensible File Allocation Table Elevation of Privilege Vulnerability
CVE-2026-25174 7.8 - High - March 10, 2026

Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate privileges locally.

Out-of-bounds Read

Mar 2026: Windows Kernel Elevation of Privilege Vulnerability
CVE-2026-24287 7.8 - High - March 10, 2026

External control of file name or path in Windows Kernel allows an authorized attacker to elevate privileges locally.

External Control of File Name or Path

Mar 2026: Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability
CVE-2026-23673 7.8 - High - March 10, 2026

Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.

Out-of-bounds Read

Mar 2026: Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerabili
CVE-2026-23672 7.8 - High - March 10, 2026

Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability

Out-of-bounds Read

Jan 2026: Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability
CVE-2026-20938 7.8 - High - January 13, 2026

Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally.

Untrusted Pointer Dereference

Jan 2026: Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2026-20820 7.8 - High - January 13, 2026

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

Heap-based Buffer Overflow

Jan 2026: Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability
CVE-2026-20819 5.5 - Medium - January 13, 2026

Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to disclose information locally.

Untrusted Pointer Dereference

Jan 2026: Dynamic Root of Trust for Measurement (DRTM) Information Disclosure Vulnerability
CVE-2026-20962 4.4 - Medium - January 13, 2026

Use of uninitialized resource in Dynamic Root of Trust for Measurement (DRTM) allows an authorized attacker to disclose information locally.

Use of Uninitialized Resource

Nov 2025: Windows Administrator Protection Elevation of Privilege Vulnerability
CVE-2025-60721 7.8 - High - November 11, 2025

Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally.

Privilege Context Switching Error

Oct 2025: Microsoft Windows File Explorer Spoofing Vulnerability
CVE-2025-59214 6.5 - Medium - October 14, 2025

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.

Information Disclosure

Oct 2025: Windows Push Notification Information Disclosure Vulnerability
CVE-2025-59209 5.5 - Medium - October 14, 2025

Exposure of sensitive information to an unauthorized actor in Windows Push Notification Core allows an authorized attacker to disclose information locally.

Information Disclosure

Oct 2025: Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerab
CVE-2025-59210 7.4 - High - October 14, 2025

Windows Resilient File System (ReFS) Deduplication Service Elevation of Privilege Vulnerability

Dangling pointer

Oct 2025: Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2025-59205 7 - High - October 14, 2025

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

Race Condition

Oct 2025: Windows MapUrlToZone Information Disclosure Vulnerability
CVE-2025-59208 7.1 - High - October 14, 2025

Out-of-bounds read in Windows MapUrlToZone allows an unauthorized attacker to disclose information over a network.

Out-of-bounds Read

Oct 2025: Windows Search Service Denial of Service Vulnerability
CVE-2025-59198 5 - Medium - October 14, 2025

Improper input validation in Microsoft Windows Search Component allows an authorized attacker to deny service locally.

Improper Input Validation

Oct 2025: Windows State Repository API Server File Information Disclosure Vulnerability
CVE-2025-59203 5.5 - Medium - October 14, 2025

Insertion of sensitive information into log file in Windows StateRepository API allows an authorized attacker to disclose information locally.

Insertion of Sensitive Information into Log File

Oct 2025: Windows Kernel Elevation of Privilege Vulnerability
CVE-2025-59194 7 - High - October 14, 2025

Use of uninitialized resource in Windows Kernel allows an authorized attacker to elevate privileges locally.

Use of Uninitialized Resource

Oct 2025: Windows ETL Channel Information Disclosure Vulnerability
CVE-2025-59197 5.5 - Medium - October 14, 2025

Insertion of sensitive information into log file in Windows ETL Channel allows an authorized attacker to disclose information locally.

Insertion of Sensitive Information into Log File

Oct 2025: Windows Management Services Elevation of Privilege Vulnerability
CVE-2025-59193 7 - High - October 14, 2025

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.

Race Condition

Oct 2025: Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
CVE-2025-59191 7.8 - High - October 14, 2025

Heap-based buffer overflow in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.

Heap-based Buffer Overflow

Oct 2025: Storport.sys Driver Elevation of Privilege Vulnerability
CVE-2025-59192 7.8 - High - October 14, 2025

Buffer over-read in Storport.sys Driver allows an authorized attacker to elevate privileges locally.

Buffer Over-read

Oct 2025: Microsoft Brokering File System Elevation of Privilege Vulnerability
CVE-2025-59189 7.4 - High - October 14, 2025

Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.

Dangling pointer

Oct 2025: Windows Search Service Denial of Service Vulnerability
CVE-2025-59190 5.5 - Medium - October 14, 2025

Improper input validation in Microsoft Windows Search Component allows an unauthorized attacker to deny service locally.

Improper Input Validation

Oct 2025: Windows Kernel Elevation of Privilege Vulnerability
CVE-2025-59187 7.8 - High - October 14, 2025

Improper input validation in Windows Kernel allows an authorized attacker to elevate privileges locally.

Improper Input Validation