Microsoft - Windows 11 21h2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2024-30018	1 Microsoft	9 Windows 10 1809, Windows 10 21h2, Windows 10 22h2 and 6 more	2025-08-27	N/A	7.8 HIGH
Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-40732	1 Microsoft	2 Windows 11 21h2, Windows Server 2022	2025-08-26	N/A	5.0 MEDIUM
An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot. An unprivileged user can run specially-crafted code to trigger Denial Of Service.
CVE-2022-40733	1 Microsoft	2 Windows 11 21h2, Windows Server 2022	2025-08-26	N/A	5.0 MEDIUM
An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot. An unprivileged user can run specially-crafted code to trigger Denial Of Service.
CVE-2024-21302	1 Microsoft	13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more	2025-07-10	N/A	6.7 MEDIUM
Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this vulnerability. An elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security (VBS), including a subset of Azure Virtual Machine SKUS. This vulnerability enab ... Show More
CVE-2023-28267	1 Microsoft	14 Remote Desktop Client, Windows 10 1507, Windows 10 1607 and 11 more	2025-07-07	N/A	6.5 MEDIUM
Remote Desktop Protocol Client Information Disclosure Vulnerability
CVE-2023-29362	1 Microsoft	13 Remote Desktop Client, Windows 10 1507, Windows 10 1607 and 10 more	2025-07-07	N/A	8.8 HIGH
Remote Desktop Client Remote Code Execution Vulnerability
CVE-2023-29352	1 Microsoft	8 Remote Desktop Client, Windows 10 1809, Windows 10 21h2 and 5 more	2025-07-07	N/A	6.5 MEDIUM
Windows Remote Desktop Security Feature Bypass Vulnerability
CVE-2024-38131	1 Microsoft	16 Remote Desktop Client, Windows 10 1507, Windows 10 1607 and 13 more	2025-07-07	N/A	8.8 HIGH
Clipboard Virtual Channel Extension Remote Code Execution Vulnerability
CVE-2019-0887	1 Microsoft	10 Remote Desktop Client, Windows 10, Windows 11 21h2 and 7 more	2025-07-07	8.5 HIGH	8.0 HIGH
A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
CVE-2024-21309	1 Microsoft	5 Windows 11 21h2, Windows 11 22h2, Windows 11 23h2 and 2 more	2025-05-30	N/A	7.8 HIGH
Windows Kernel-Mode Driver Elevation of Privilege Vulnerability
CVE-2022-35751	1 Microsoft	15 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 12 more	2025-04-16	N/A	7.8 HIGH
Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2024-38202	1 Microsoft	11 Windows 10 1607, Windows 10 1809, Windows 10 21h2 and 8 more	2025-04-16	N/A	7.3 HIGH
Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security (VBS). However, an attacker attempting to exploit this vulnerability requires additional interaction by a privileged user to be successful. Microsoft has developed a security update to mitigate this threat which was made avai ... Show More
CVE-2023-32015	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	9.8 CRITICAL
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
CVE-2023-32016	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	5.5 MEDIUM
Windows Installer Information Disclosure Vulnerability
CVE-2023-32017	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.8 HIGH
Microsoft PostScript Printer Driver Remote Code Execution Vulnerability
CVE-2023-32019	1 Microsoft	8 Windows 10 1607, Windows 10 1809, Windows 10 21h2 and 5 more	2025-04-08	N/A	4.7 MEDIUM
Windows Kernel Information Disclosure Vulnerability
CVE-2023-35355	1 Microsoft	7 Windows 10 1809, Windows 10 21h2, Windows 10 22h2 and 4 more	2025-04-08	N/A	7.8 HIGH
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2023-36805	1 Microsoft	11 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 8 more	2025-04-08	N/A	7.0 HIGH
Windows MSHTML Platform Security Feature Bypass Vulnerability
CVE-2023-38139	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.8 HIGH
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-38140	1 Microsoft	8 Windows 10 1607, Windows 10 1809, Windows 10 21h2 and 5 more	2025-04-08	N/A	5.5 MEDIUM
Windows Kernel Information Disclosure Vulnerability
CVE-2023-38141	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.8 HIGH
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-38142	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.8 HIGH
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-38143	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.8 HIGH
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2023-38144	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.8 HIGH
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2023-38147	1 Microsoft	10 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 7 more	2025-04-08	N/A	8.8 HIGH
Windows Miracast Wireless Display Remote Code Execution Vulnerability
CVE-2023-38148	1 Microsoft	4 Windows 10 21h2, Windows 10 22h2, Windows 11 21h2 and 1 more	2025-04-08	N/A	8.8 HIGH
Internet Connection Sharing (ICS) Remote Code Execution Vulnerability
CVE-2023-38149	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.5 HIGH
Windows TCP/IP Denial of Service Vulnerability
CVE-2023-38160	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	5.5 MEDIUM
Windows TCP/IP Information Disclosure Vulnerability
CVE-2023-29364	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.0 HIGH
Windows Authentication Elevation of Privilege Vulnerability
CVE-2023-29365	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.8 HIGH
Windows Media Remote Code Execution Vulnerability
CVE-2023-29368	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.0 HIGH
Windows Filtering Platform Elevation of Privilege Vulnerability
CVE-2023-29370	1 Microsoft	10 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 7 more	2025-04-08	N/A	7.8 HIGH
Windows Media Remote Code Execution Vulnerability
CVE-2023-29371	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.8 HIGH
Windows GDI Elevation of Privilege Vulnerability
CVE-2023-29372	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	8.8 HIGH
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2023-29373	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	8.8 HIGH
Microsoft ODBC Driver Remote Code Execution Vulnerability
CVE-2023-32008	1 Microsoft	10 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 7 more	2025-04-08	N/A	7.8 HIGH
Windows Resilient File System (ReFS) Remote Code Execution Vulnerability
CVE-2023-32011	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	7.5 HIGH
Windows iSCSI Discovery Service Denial of Service Vulnerability
CVE-2023-32014	1 Microsoft	12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more	2025-04-08	N/A	9.8 CRITICAL
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
CVE-2023-24937	1 Microsoft	7 Windows 10 1809, Windows 10 21h2, Windows 10 22h2 and 4 more	2025-04-08	N/A	6.5 MEDIUM
Windows CryptoAPI Denial of Service Vulnerability
CVE-2023-24938	1 Microsoft	7 Windows 10 1809, Windows 10 21h2, Windows 10 22h2 and 4 more	2025-04-08	N/A	6.5 MEDIUM
Windows CryptoAPI Denial of Service Vulnerability

Windows Kernel Elevation of Privilege Vulnerability

An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot. An unprivileged user can run specially-crafted code to trigger Denial Of Service.

Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this vulnerability. An elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security (VBS), including a subset of Azure Virtual Machine SKUS. This vulnerability enab ... Summary: As of July 8, 2025 Microsoft has completed mitigations to address this vulnerability. See KB5042562: Guidance for blocking rollback of virtualization-based security related updates and the Recommended Actions section of this CVE for guidance on how to protect your systems from this vulnerability. An elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security (VBS), including a subset of Azure Virtual Machine SKUS. This vulnerability enables an attacker with administrator privileges to replace current versions of Windows system files with outdated versions. By exploiting this vulnerability, an attacker could reintroduce previously mitigated vulnerabilities, circumvent some features of VBS, and exfiltrate data protected by VBS. Update: July 10, 2025 Microsoft has addressed this vulnerability for Windows 10 1507, Windows 10, version 1607, Windows 10, version 1809, and Windows Server 2016 and Windows Server 2018. This ensures that mitigations are available to protect all supported versions of Windows 10 and Windows 11 from this vulnerability. See the available mitigations and deployment guidelines described in KB5042562: Guidance for blocking rollback of virtualization-based security related updates. Update: August 13, 2024 Microsoft has released the August 2024 security updates that include an opt-in revocation policy mitigation to address this vulnerability. Customers running affected versions of Windows are encouraged to review KB5042562: Guidance for blocking rollback of virtualization-based security related updates to assess if this opt-in policy meets the needs of their environment before implementing this mitigation. There are risks associated with this mitigation that should be understood prior to applying it to your systems. Detailed information about these risks is also available in KB5042562. Details: A security researcher informed Microsoft of an elevation of privilege vulnerability in Windows 10, Windows 11, Windows Server 2016, and higher based systems including Azure Virtual Machines (VM) that support VBS. For more information on Windows versions and VM SKUs supporting VBS, reference: Virtualization-based Security (VBS) | Microsoft Learn. The vulnerability enables an attacker with administrator privileges on the target system to replace current Windows system files with outdated versions. Successful... See more at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21302

Remote Desktop Protocol Client Information Disclosure Vulnerability

Remote Desktop Client Remote Code Execution Vulnerability

Windows Remote Desktop Security Feature Bypass Vulnerability

Clipboard Virtual Channel Extension Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

Windows Hyper-V Elevation of Privilege Vulnerability

Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security (VBS). However, an attacker attempting to exploit this vulnerability requires additional interaction by a privileged user to be successful. Microsoft has developed a security update to mitigate this threat which was made avai ... Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security (VBS). However, an attacker attempting to exploit this vulnerability requires additional interaction by a privileged user to be successful. Microsoft has developed a security update to mitigate this threat which was made available October 08, 2024 and is provided in the Security Updates table of this CVE for customers to download. Note: Depending on your version of Windows, additional steps may be required to update Windows Recovery Environment (WinRE) to be protected from this vulnerability. Please refer to the FAQ section for more information. Guidance for customers who cannot immediately implement the update is provided in the Recommended Actions section of this CVE to help reduce the risks associated with this vulnerability and to protect their systems. If there are any further updates regarding mitigations for this vulnerability, this CVE will be updated and customers will be notified. We highly encourage customers to subscribe to Security Update Guide notifications to receive an alert if an update occurs. Details A security researcher informed Microsoft of an elevation of privilege vulnerability in Windows Update potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of VBS. For exploitation to succeed, an attacker must trick or convince an Administrator or a user with delegated permissions into performing a system restore which inadvertently triggers the vulnerability. Microsoft has developed a security update to mitigate this threat which was made available October 08, 2024 and is provided in the Security Updates table of this CVE for customers to download. Note: Depending on your version of Windows, additional steps may be required to update Windows Recovery Environment (WinRE) to be protected from this vulnerability. Please refer to the FAQ section for more information. Guidance for customers who cannot immediately implement the update is provided in the Recommended Actions section of this CVE to help reduce the risks associated with this vulnerability and to protect their systems. If there are any further... See more at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38202

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

Windows Installer Information Disclosure Vulnerability

Microsoft PostScript Printer Driver Remote Code Execution Vulnerability

Windows Kernel Information Disclosure Vulnerability

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

Windows MSHTML Platform Security Feature Bypass Vulnerability

Windows Kernel Elevation of Privilege Vulnerability

Windows Kernel Information Disclosure Vulnerability

Windows Kernel Elevation of Privilege Vulnerability

Windows Common Log File System Driver Elevation of Privilege Vulnerability

Windows Miracast Wireless Display Remote Code Execution Vulnerability

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

Windows TCP/IP Denial of Service Vulnerability

Windows TCP/IP Information Disclosure Vulnerability

Windows Authentication Elevation of Privilege Vulnerability

Windows Media Remote Code Execution Vulnerability

Windows Filtering Platform Elevation of Privilege Vulnerability

Windows Media Remote Code Execution Vulnerability

Windows GDI Elevation of Privilege Vulnerability

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver Remote Code Execution Vulnerability

Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

Windows iSCSI Discovery Service Denial of Service Vulnerability

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

Windows CryptoAPI Denial of Service Vulnerability

Vulnerabilities (CVE)