Windows_11_23h2 - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Windows_11_23h2
(Microsoft)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	801

Date	Id	Summary	Products	Score	Patch	Annotated
2025-03-11	CVE-2025-24997	Null pointer dereference in Windows Kernel Memory allows an authorized attacker to deny service locally.	Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-03-11	CVE-2025-26634	Heap-based buffer overflow in Windows Core Messaging allows an authorized attacker to elevate privileges over a network.	Windows_10_1507, Windows_10_1607, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-24073	Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-21222	Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-24060	Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.	Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-24062	Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.	Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-24074	Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.	Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-26635	Weak authentication in Windows Hello allows an authorized attacker to bypass a security feature over a network.	Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2	N/A
2025-04-08	CVE-2025-26637	Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.	Windows_10_1507, Windows_10_1607, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-26639	Integer overflow or wraparound in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.	Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A