Vulnerabilities > Microsoft > Windows 11 21H2 > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-09-10 CVE-2024-38240 Unspecified vulnerability in Microsoft products
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
network
low complexity
microsoft
critical
9.8
2024-09-10 CVE-2024-21416 Unspecified vulnerability in Microsoft products
Windows TCP/IP Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
9.8
2024-08-13 CVE-2024-38199 Unspecified vulnerability in Microsoft products
Windows Line Printer Daemon (LPD) Service Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
9.8
2024-08-13 CVE-2024-38140 Unspecified vulnerability in Microsoft products
Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
9.8
2024-08-13 CVE-2024-38063 Unspecified vulnerability in Microsoft products
Windows TCP/IP Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
9.8
2024-06-11 CVE-2024-30080 Use After Free vulnerability in Microsoft products
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
network
low complexity
microsoft CWE-416
critical
9.8
2023-11-14 CVE-2023-36397 Unspecified vulnerability in Microsoft products
Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
9.8
2023-11-14 CVE-2023-36028 Unspecified vulnerability in Microsoft products
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability
network
low complexity
microsoft
critical
9.8
2023-10-18 CVE-2023-38545 Out-of-bounds Write vulnerability in multiple products
This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length that host name can be is 255 bytes. If the host name is detected to be longer, curl switches to local name resolving and instead passes on the resolved address only.
network
low complexity
haxx fedoraproject netapp microsoft CWE-787
critical
9.8
2023-10-10 CVE-2023-36434 Unspecified vulnerability in Microsoft products
Windows IIS Server Elevation of Privilege Vulnerability
network
low complexity
microsoft
critical
9.8