Vulnerabilities > Microsoft > Windows 11 21H2

DATE CVE VULNERABILITY TITLE RISK
2023-11-14 CVE-2023-36719 Unspecified vulnerability in Microsoft products
Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability
local
low complexity
microsoft
7.8
2023-10-18 CVE-2023-38545 Out-of-bounds Write vulnerability in multiple products
This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 bytes. If the host name is detected to be longer, curl switches to local name resolving and instead passes on the resolved address only.
network
low complexity
haxx fedoraproject netapp microsoft CWE-787
critical
9.8
2023-10-10 CVE-2023-35349 Unspecified vulnerability in Microsoft products
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
9.8
2023-10-10 CVE-2023-36431 Unspecified vulnerability in Microsoft products
Microsoft Message Queuing Denial of Service Vulnerability
network
low complexity
microsoft
7.5
2023-10-10 CVE-2023-36434 Unspecified vulnerability in Microsoft products
Windows IIS Server Elevation of Privilege Vulnerability
network
low complexity
microsoft
critical
9.8
2023-10-10 CVE-2023-36435 Unspecified vulnerability in Microsoft products
Microsoft QUIC Denial of Service Vulnerability
network
low complexity
microsoft
7.5
2023-10-10 CVE-2023-36436 Unspecified vulnerability in Microsoft products
Windows MSHTML Platform Remote Code Execution Vulnerability
local
low complexity
microsoft
7.8
2023-10-10 CVE-2023-36438 Unspecified vulnerability in Microsoft products
Windows TCP/IP Information Disclosure Vulnerability
network
low complexity
microsoft
7.5
2023-10-10 CVE-2023-36557 Unspecified vulnerability in Microsoft products
PrintHTML API Remote Code Execution Vulnerability
local
low complexity
microsoft
7.8
2023-10-10 CVE-2023-36563 Unspecified vulnerability in Microsoft products
Microsoft WordPad Information Disclosure Vulnerability
local
low complexity
microsoft
5.5