Vulnerabilities > Microsoft > Windows 11 24H2 > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-08-13 CVE-2024-38118 Use of Uninitialized Resource vulnerability in Microsoft products
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability
local
low complexity
microsoft CWE-908
5.5
5.5
2024-08-13 CVE-2024-38122 Use of Uninitialized Resource vulnerability in Microsoft products
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability
local
low complexity
microsoft CWE-908
5.5
5.5
2024-08-13 CVE-2024-38123 Unspecified vulnerability in Microsoft Windows 11 24H2
Windows Bluetooth Driver Information Disclosure Vulnerability
local
low complexity
microsoft
4.4
4.4
2024-08-13 CVE-2024-38143 Unspecified vulnerability in Microsoft products
Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability
high complexity
microsoft
4.2
4.2
2024-08-13 CVE-2024-38151 Unspecified vulnerability in Microsoft products
Windows Kernel Information Disclosure Vulnerability
local
low complexity
microsoft
5.5
5.5
2024-08-13 CVE-2024-38155 Unspecified vulnerability in Microsoft products
Security Center Broker Information Disclosure Vulnerability
local
low complexity
microsoft
5.5
5.5
2024-08-13 CVE-2024-38161 Unspecified vulnerability in Microsoft products
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
low complexity
microsoft
6.8
6.8
2024-08-13 CVE-2024-38223 Unspecified vulnerability in Microsoft products
Windows Initial Machine Configuration Elevation of Privilege Vulnerability
low complexity
microsoft
6.8
6.8
2024-08-08 CVE-2024-21302 Unspecified vulnerability in Microsoft products
Summary: Microsoft was notified that an elevation of privilege vulnerability exists in Windows based systems supporting Virtualization Based Security (VBS), including a subset of Azure Virtual Machine SKUS.
local
low complexity
microsoft
6.7
6.7
2013-12-11 CVE-2013-3900 Improper Verification of Cryptographic Signature vulnerability in Microsoft products
Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11.
local
low complexity
microsoft CWE-347
5.5
5.5