Microsoft Windows 11 22h2 — known CVE vulnerabilities
Every CVE whose affected-product data names Microsoft Windows 11 22h2, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (200)
CVE-2025-49708 — CVSS 9.9 (critical): Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges over a network.
CVE-2023-38545 — CVSS 9.8 (critical): This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the…
CVE-2025-47981 — CVSS 9.8 (critical): Heap-based buffer overflow in Windows SPNEGO Extended Negotiation allows an unauthorized attacker to execute code over a network.
CVE-2025-26669 — CVSS 8.8 (high): Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a…
CVE-2025-58715 — CVSS 8.8 (high): Integer overflow or wraparound in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.
CVE-2025-29967 — CVSS 8.8 (high): Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.
CVE-2025-49723 — CVSS 8.8 (high): Missing authorization in Windows StateRepository API allows an authorized attacker to perform tampering locally.
CVE-2025-27481 — CVSS 8.8 (high): Stack-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-27477 — CVSS 8.8 (high): Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-21222 — CVSS 8.8 (high): Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-21221 — CVSS 8.8 (high): Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-21205 — CVSS 8.8 (high): Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-33066 — CVSS 8.8 (high): Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a…
CVE-2025-33064 — CVSS 8.8 (high): Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.
CVE-2025-53145 — CVSS 8.8 (high): Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over…
CVE-2025-53144 — CVSS 8.8 (high): Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over…
CVE-2025-53143 — CVSS 8.8 (high): Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over…
CVE-2025-29962 — CVSS 8.8 (high): Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
CVE-2025-49740 — CVSS 8.8 (high): Protection mechanism failure in Windows SmartScreen allows an unauthorized attacker to bypass a security feature over a network.
CVE-2025-49724 — CVSS 8.8 (high): Use after free in Windows Connected Devices Platform Service allows an unauthorized attacker to execute code over a network.
CVE-2025-55234 — CVSS 8.8 (high): SMB Server might be susceptible to relay attacks depending on the configuration. An attacker who successfully exploited these…
CVE-2025-54918 — CVSS 8.8 (high): Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network.
CVE-2025-24056 — CVSS 8.8 (high): Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network.