Windows_11_24h2 - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Windows_11_24h2
(Microsoft)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	556

Date	Id	Summary	Products	Score	Patch	Annotated
2025-04-08	CVE-2025-29811	Improper input validation in Windows Mobile Broadband allows an authorized attacker to elevate privileges locally.	Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-29812	Untrusted pointer dereference in Windows Kernel Memory allows an authorized attacker to elevate privileges locally.	Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-06-10	CVE-2025-24069	Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	5.5
2025-06-10	CVE-2025-29828	Missing release of memory after effective lifetime in Windows Cryptographic Services allows an unauthorized attacker to execute code over a network.	Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	8.1
2025-06-10	CVE-2025-32712	Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	7.8
2025-06-10	CVE-2025-32713	Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	7.8
2025-06-10	CVE-2025-32714	Improper access control in Windows Installer allows an authorized attacker to elevate privileges locally.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	7.8
2025-06-10	CVE-2025-32718	Integer overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges locally.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	7.8
2025-06-10	CVE-2025-33057	Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	6.5
2025-06-10	CVE-2025-32721	Improper link resolution before file access ('link following') in Windows Recovery Driver allows an authorized attacker to elevate privileges locally.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	7.3