Windows Server 2022 Security Vulnerabilities
7CVSS
7.2AI Score
0.0004EPSS
5.5CVSS
5.9AI Score
0.0004EPSS
7CVSS
7.2AI Score
0.0004EPSS
9.8CVSS
9.5AI Score
0.011EPSS
An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can lead to denial of service (crashing the TPM chip/process.....
7.8CVSS
7.9AI Score
0.0005EPSS
An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can read or access sensitive data stored in the...
5.5CVSS
6.3AI Score
0.001EPSS
7.8CVSS
7.8AI Score
0.001EPSS
7.4CVSS
7.9AI Score
0.001EPSS
7.8CVSS
7.9AI Score
0.0004EPSS
7.5CVSS
7.6AI Score
0.002EPSS
7.5CVSS
7.6AI Score
0.002EPSS
7.8CVSS
7.9AI Score
0.001EPSS
7.5CVSS
7.6AI Score
0.002EPSS
7.5CVSS
7.6AI Score
0.001EPSS
7.8CVSS
7.5AI Score
0.001EPSS
7.8CVSS
7.7AI Score
0.001EPSS
7.5CVSS
7.6AI Score
0.002EPSS
8.8CVSS
9.2AI Score
0.019EPSS
7.8CVSS
8.4AI Score
0.0004EPSS
7.8CVSS
7.7AI Score
0.001EPSS
8.8CVSS
8.9AI Score
0.019EPSS
8.8CVSS
8.9AI Score
0.019EPSS
7.8CVSS
8.1AI Score
0.001EPSS
5CVSS
5.8AI Score
0.0004EPSS
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution...
8.8CVSS
8.9AI Score
0.101EPSS
6.8CVSS
7.2AI Score
0.001EPSS
5.7CVSS
5.9AI Score
0.004EPSS
7.5CVSS
7.6AI Score
0.002EPSS
7.5CVSS
7.6AI Score
0.007EPSS
7.5CVSS
7.6AI Score
0.002EPSS
7.8CVSS
7.9AI Score
0.001EPSS
8.8CVSS
9.2AI Score
0.015EPSS
Microsoft Protected Extensible Authentication Protocol (PEAP) Information Disclosure...
7.5CVSS
7.5AI Score
0.002EPSS
5.5CVSS
5.9AI Score
0.001EPSS
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution...
9.8CVSS
9.4AI Score
0.344EPSS
8.8CVSS
8.9AI Score
0.008EPSS
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution...
9.8CVSS
9.4AI Score
0.344EPSS
8.8CVSS
9.2AI Score
0.019EPSS
Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution...
9.8CVSS
9.4AI Score
0.344EPSS
A CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause local privilege escalation when local attacker connects to the database. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to V2.5-GA), APC.....
7.8CVSS
7.7AI Score
0.0004EPSS
A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could cause local privilege escalation when a local attacker modifies the webroot directory. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 -.....
7.8CVSS
7.6AI Score
0.0004EPSS
A CWE-306: Missing Authentication for Critical Function The software does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows...
9.8CVSS
9.5AI Score
0.002EPSS
A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could cause remote code execution when the attacker uploads a malicious JSP file. Affected Products: APC Easy UPS Online Monitoring Software (Windows 7, 10, 11 & Windows Server 2016, 2019, 2022 - Versions prior to....
9.8CVSS
9.6AI Score
0.005EPSS
7.8CVSS
8.1AI Score
0.0004EPSS
7CVSS
7.2AI Score
0.0004EPSS
7.8CVSS
7.5AI Score
0.001EPSS
5.5CVSS
5.8AI Score
0.0004EPSS