Windows 11 Microsoft Windows 11

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Microsoft Windows 11.

By the Year

In 2025 there have been 0 vulnerabilities in Microsoft Windows 11. Last year, in 2024 Windows 11 had 517 security vulnerabilities published. Right now, Windows 11 is on track to have less security vulnerabilities in 2025 than it did last year.




Year Vulnerabilities Average Score
2025 0 0.00
2024 517 7.35
2023 539 7.53
2022 501 7.44
2021 89 7.22
2020 0 0.00
2019 1 8.00
2018 0 0.00

It may take a day or so for new Windows 11 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Windows 11 Security Vulnerabilities

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2024-49138 7.8 - High - December 12, 2024

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Heap-based Buffer Overflow

Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability

CVE-2024-49109 6.6 - Medium - December 12, 2024

Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability

Out-of-bounds Read

WmsRepair Service Elevation of Privilege Vulnerability

CVE-2024-49107 7.3 - High - December 12, 2024

WmsRepair Service Elevation of Privilege Vulnerability

insecure temporary file

Remote Desktop Client Remote Code Execution Vulnerability

CVE-2024-49105 8.4 - High - December 12, 2024

Remote Desktop Client Remote Code Execution Vulnerability

Authorization

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVE-2024-49104 8.8 - High - December 12, 2024

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

CVE-2024-49103 4.3 - Medium - December 12, 2024

Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

Out-of-bounds Read

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVE-2024-49102 8.8 - High - December 12, 2024

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability

CVE-2024-49101 6.6 - Medium - December 12, 2024

Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

CVE-2024-49099 4.3 - Medium - December 12, 2024

Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

Out-of-bounds Read

Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

CVE-2024-49098 4.3 - Medium - December 12, 2024

Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

Out-of-bounds Read

Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability

CVE-2024-49097 7 - High - December 12, 2024

Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability

Race Condition

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

CVE-2024-49096 7.5 - High - December 12, 2024

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

Resource Exhaustion

Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability

CVE-2024-49095 7 - High - December 12, 2024

Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability

Race Condition

Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability

CVE-2024-49094 6.6 - Medium - December 12, 2024

Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability

Heap-based Buffer Overflow

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

CVE-2024-49092 6.8 - Medium - December 12, 2024

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2024-49090 7.8 - High - December 12, 2024

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Untrusted Pointer Dereference

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVE-2024-49089 7.2 - High - December 12, 2024

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Integer Overflow or Wraparound

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2024-49088 7.8 - High - December 12, 2024

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Buffer Over-read

Windows Mobile Broadband Driver Information Disclosure Vulnerability

CVE-2024-49087 4.6 - Medium - December 12, 2024

Windows Mobile Broadband Driver Information Disclosure Vulnerability

Improper Input Validation

Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-49084 7 - High - December 12, 2024

Windows Kernel Elevation of Privilege Vulnerability

Race Condition

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

CVE-2024-49083 6.8 - Medium - December 12, 2024

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows File Explorer Information Disclosure Vulnerability

CVE-2024-49082 6.8 - Medium - December 12, 2024

Windows File Explorer Information Disclosure Vulnerability

Directory traversal

Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability

CVE-2024-49081 6.6 - Medium - December 12, 2024

Wireless Wide Area Network Service (WwanSvc) Elevation of Privilege Vulnerability

Heap-based Buffer Overflow

Windows IP Routing Management Snapin Remote Code Execution Vulnerability

CVE-2024-49080 8.8 - High - December 12, 2024

Windows IP Routing Management Snapin Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Input Method Editor (IME) Remote Code Execution Vulnerability

CVE-2024-49079 7.8 - High - December 12, 2024

Input Method Editor (IME) Remote Code Execution Vulnerability

Dangling pointer

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

CVE-2024-49078 6.8 - Medium - December 12, 2024

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability

CVE-2024-49076 7.8 - High - December 12, 2024

Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability

authentification

Windows Remote Desktop Services Denial of Service Vulnerability

CVE-2024-49075 7.5 - High - December 12, 2024

Windows Remote Desktop Services Denial of Service Vulnerability

Resource Exhaustion

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

CVE-2024-49073 6.8 - Medium - December 12, 2024

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

Improper Input Validation

Windows Task Scheduler Elevation of Privilege Vulnerability

CVE-2024-49072 7.8 - High - December 12, 2024

Windows Task Scheduler Elevation of Privilege Vulnerability

Heap-based Buffer Overflow

Microsoft Virtual Hard Disk (VHDX) Denial of Service Vulnerability

CVE-2024-38264 5.9 - Medium - November 12, 2024

Microsoft Virtual Hard Disk (VHDX) Denial of Service Vulnerability

Sensitive Data Storage in Improperly Locked Memory

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

CVE-2024-43449 6.8 - Medium - November 12, 2024

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Registry Elevation of Privilege Vulnerability

CVE-2024-43452 7.5 - High - November 12, 2024

Windows Registry Elevation of Privilege Vulnerability

TOCTTOU

Windows Update Stack Elevation of Privilege Vulnerability

CVE-2024-43530 7.8 - High - November 12, 2024

Windows Update Stack Elevation of Privilege Vulnerability

Authorization

Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability

CVE-2024-43624 8.8 - High - November 12, 2024

Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability

Untrusted Pointer Dereference

Windows Telephony Service Elevation of Privilege Vulnerability

CVE-2024-43626 7.8 - High - November 12, 2024

Windows Telephony Service Elevation of Privilege Vulnerability

Heap-based Buffer Overflow

Windows DWM Core Library Elevation of Privilege Vulnerability

CVE-2024-43629 7.8 - High - November 12, 2024

Windows DWM Core Library Elevation of Privilege Vulnerability

Untrusted Pointer Dereference

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

CVE-2024-43631 7.8 - High - November 12, 2024

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

Untrusted Pointer Dereference

Windows Hyper-V Denial of Service Vulnerability

CVE-2024-43633 6.5 - Medium - November 12, 2024

Windows Hyper-V Denial of Service Vulnerability

Sensitive Data Storage in Improperly Locked Memory

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

CVE-2024-43634 6.8 - Medium - November 12, 2024

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2024-43635 8.8 - High - November 12, 2024

Windows Telephony Service Remote Code Execution Vulnerability

Integer Overflow or Wraparound

Win32k Elevation of Privilege Vulnerability

CVE-2024-43636 7.8 - High - November 12, 2024

Win32k Elevation of Privilege Vulnerability

Untrusted Pointer Dereference

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

CVE-2024-43637 6.8 - Medium - November 12, 2024

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

CVE-2024-43638 6.8 - Medium - November 12, 2024

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

CVE-2024-43640 7.8 - High - November 12, 2024

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

Windows Registry Elevation of Privilege Vulnerability

CVE-2024-43641 7.8 - High - November 12, 2024

Windows Registry Elevation of Privilege Vulnerability

Integer Overflow or Wraparound

Windows SMB Denial of Service Vulnerability

CVE-2024-43642 7.5 - High - November 12, 2024

Windows SMB Denial of Service Vulnerability

Dangling pointer

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

CVE-2024-43643 6.8 - Medium - November 12, 2024

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

Windows Client-Side Caching Elevation of Privilege Vulnerability

CVE-2024-43644 7.8 - High - November 12, 2024

Windows Client-Side Caching Elevation of Privilege Vulnerability

Out-of-bounds Read

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

CVE-2024-43646 7.8 - High - November 12, 2024

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

Untrusted Pointer Dereference

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

CVE-2024-49046 7.8 - High - November 12, 2024

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2024-43627 8.8 - High - November 12, 2024

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2024-43628 8.8 - High - November 12, 2024

Windows Telephony Service Remote Code Execution Vulnerability

Integer Overflow or Wraparound

Windows Package Library Manager Information Disclosure Vulnerability

CVE-2024-38203 5.5 - Medium - November 12, 2024

Windows Package Library Manager Information Disclosure Vulnerability

Protection Mechanism Failure

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2024-43620 8.8 - High - November 12, 2024

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2024-43621 8.8 - High - November 12, 2024

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows Telephony Service Remote Code Execution Vulnerability

CVE-2024-43622 8.8 - High - November 12, 2024

Windows Telephony Service Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Windows NT OS Kernel Elevation of Privilege Vulnerability

CVE-2024-43623 7.8 - High - November 12, 2024

Windows NT OS Kernel Elevation of Privilege Vulnerability

Microsoft Windows VMSwitch Elevation of Privilege Vulnerability

CVE-2024-43625 8.1 - High - November 12, 2024

Microsoft Windows VMSwitch Elevation of Privilege Vulnerability

Dangling pointer

NTLM Hash Disclosure Spoofing Vulnerability

CVE-2024-43451 6.5 - Medium - November 12, 2024

NTLM Hash Disclosure Spoofing Vulnerability

External Control of File Name or Path

Windows Task Scheduler Elevation of Privilege Vulnerability

CVE-2024-49039 8.8 - High - November 12, 2024

Windows Task Scheduler Elevation of Privilege Vulnerability

authentification

Microsoft OpenSSH for Windows Remote Code Execution Vulnerability

CVE-2024-43615 7.1 - High - October 08, 2024

Microsoft OpenSSH for Windows Remote Code Execution Vulnerability

External Control of File Name or Path

BranchCache Denial of Service Vulnerability

CVE-2024-38149 7.5 - High - October 08, 2024

BranchCache Denial of Service Vulnerability

Resource Exhaustion

Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability

CVE-2024-43560 7.8 - High - October 08, 2024

Microsoft Windows Storage Port Driver Elevation of Privilege Vulnerability

Heap-based Buffer Overflow

Windows MSHTML Platform Spoofing Vulnerability

CVE-2024-43573 8.1 - High - October 08, 2024

Windows MSHTML Platform Spoofing Vulnerability

XSS

Microsoft Management Console Remote Code Execution Vulnerability

CVE-2024-43572 7.8 - High - October 08, 2024

Microsoft Management Console Remote Code Execution Vulnerability

Improper Neutralization

Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability

CVE-2024-37983 6.7 - Medium - October 08, 2024

Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability

Untrusted Pointer Dereference

Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability

CVE-2024-37982 7.8 - High - October 08, 2024

Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability

Untrusted Pointer Dereference

Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability

CVE-2024-37976 6.7 - Medium - October 08, 2024

Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability

Integer Overflow or Wraparound

Code Integrity Guard Security Feature Bypass Vulnerability

CVE-2024-43585 5.5 - Medium - October 08, 2024

Code Integrity Guard Security Feature Bypass Vulnerability

Protection Mechanism Failure

Windows Scripting Engine Security Feature Bypass Vulnerability

CVE-2024-43584 8.4 - High - October 08, 2024

Windows Scripting Engine Security Feature Bypass Vulnerability

Winlogon Elevation of Privilege Vulnerability

CVE-2024-43583 7.8 - High - October 08, 2024

Winlogon Elevation of Privilege Vulnerability

Execution with Unnecessary Privileges

Remote Desktop Protocol Server Remote Code Execution Vulnerability

CVE-2024-43582 8.1 - High - October 08, 2024

Remote Desktop Protocol Server Remote Code Execution Vulnerability

Dangling pointer

Microsoft OpenSSH for Windows Remote Code Execution Vulnerability

CVE-2024-43581 7.1 - High - October 08, 2024

Microsoft OpenSSH for Windows Remote Code Execution Vulnerability

External Control of File Name or Path

Windows Kernel Elevation of Privilege Vulnerability

CVE-2024-43570 7 - High - October 08, 2024

Windows Kernel Elevation of Privilege Vulnerability

Dangling pointer

Windows Mobile Broadband Driver Denial of Service Vulnerability

CVE-2024-43537 6.5 - Medium - October 08, 2024

Windows Mobile Broadband Driver Denial of Service Vulnerability

Out-of-bounds Read

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

CVE-2024-43536 6.8 - Medium - October 08, 2024

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

CVE-2024-43535 7 - High - October 08, 2024

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

Dangling pointer

Windows Graphics Component Information Disclosure Vulnerability

CVE-2024-43534 6.5 - Medium - October 08, 2024

Windows Graphics Component Information Disclosure Vulnerability

Out-of-bounds Read

Remote Desktop Client Remote Code Execution Vulnerability

CVE-2024-43533 8.8 - High - October 08, 2024

Remote Desktop Client Remote Code Execution Vulnerability

Dangling pointer

Remote Registry Service Elevation of Privilege Vulnerability

CVE-2024-43532 8.8 - High - October 08, 2024

Remote Registry Service Elevation of Privilege Vulnerability

Failing Open

Windows Print Spooler Elevation of Privilege Vulnerability