Microsoft: >> Windows 11 23h2 Security Vulnerabilities
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing locally.
CVSS Score
3.3
EPSS Score
0.114
Published
2026-02-10
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.025
Published
2026-02-10
Use after free in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.003
Published
2026-02-10
Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally.
CVSS Score
7.3
EPSS Score
0.012
Published
2026-02-10
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
CVSS Score
7.3
EPSS Score
0.007
Published
2026-02-10
Heap-based buffer overflow in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.004
Published
2026-02-10
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.003
Published
2026-02-10
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.032
Published
2026-02-10
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.004
Published
2026-02-10
Time-of-check time-of-use (toctou) race condition in Windows HTTP.sys allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.003
Published
2026-02-10