Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2008

3446 matches found

CVE
CVEadded 2025/07/08 5:15 p.m.21 views

CVE-2025-49664

Exposure of sensitive information to an unauthorized actor in Windows User-Mode Driver Framework Host allows an authorized attacker to disclose information locally.

5.5CVSS6AI score0.0005EPSS
CVE
CVEadded 2025/07/08 5:15 p.m.21 views

CVE-2025-49667

Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.

7.8CVSS6.6AI score0.00057EPSS
CVE
CVEadded 2025/07/08 5:15 p.m.21 views

CVE-2025-49673

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS7.5AI score0.00072EPSS
CVE
CVEadded 2025/07/08 5:15 p.m.21 views

CVE-2025-49676

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS7.5AI score0.00072EPSS
CVE
CVEadded 2025/07/08 5:16 p.m.21 views

CVE-2025-49727

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

7CVSS7AI score0.00052EPSS
CVE
CVEadded 2025/07/08 5:16 p.m.21 views

CVE-2025-49732

Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

7.8CVSS7AI score0.00057EPSS
CVE
CVEadded 2025/07/08 5:15 p.m.20 views

CVE-2025-49672

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS7.5AI score0.00072EPSS
CVE
CVEadded yesterday4 views

CVE-2025-53132

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges over a network.

8CVSS7.2AI score
CVE
CVEadded yesterday4 views

CVE-2025-53778

Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network.

8.8CVSS7.3AI score
CVE
CVEadded yesterday3 views

CVE-2025-49757

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS8.1AI score
CVE
CVEadded yesterday3 views

CVE-2025-53143

Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network.

8.8CVSS7.5AI score
CVE
CVEadded yesterday3 views

CVE-2025-53720

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

8CVSS8.1AI score
CVE
CVEadded yesterday3 views

CVE-2025-53766

Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network.

9.8CVSS8AI score
CVE
CVEadded yesterday2 views

CVE-2025-49761

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score
CVE
CVEadded yesterday2 views

CVE-2025-49762

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.3AI score
CVE
CVEadded yesterday2 views

CVE-2025-50153

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score
CVE
CVEadded yesterday2 views

CVE-2025-50154

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.

7.5CVSS6.6AI score
CVE
CVEadded yesterday2 views

CVE-2025-50162

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

8CVSS8.1AI score
CVE
CVEadded yesterday2 views

CVE-2025-50164

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

8CVSS8.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-49743

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

6.7CVSS7.2AI score
CVE
CVEadded yesterday1 views

CVE-2025-50156

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-50157

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-50158

Time-of-check time-of-use (toctou) race condition in Windows NTFS allows an unauthorized attacker to disclose information locally.

7CVSS6.7AI score
CVE
CVEadded yesterday1 views

CVE-2025-50160

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

8CVSS8.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-50161

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

7.3CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-50163

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS8.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-50166

Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network.

6.5CVSS7AI score
CVE
CVEadded yesterday1 views

CVE-2025-50173

Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally.

7.8CVSS7.3AI score
CVE
CVEadded yesterday1 views

CVE-2025-50177

Use after free in Windows Message Queuing allows an unauthorized attacker to execute code over a network.

8.1CVSS7.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53134

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.3AI score
CVE
CVEadded yesterday1 views

CVE-2025-53136

Exposure of sensitive information to an unauthorized actor in Windows NT OS Kernel allows an authorized attacker to disclose information locally.

5.5CVSS6.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53137

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53138

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53140

Use after free in Kernel Transaction Manager allows an authorized attacker to elevate privileges locally.

7CVSS7.5AI score
CVE
CVEadded yesterday1 views

CVE-2025-53141

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-53144

Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network.

8.8CVSS7.5AI score
CVE
CVEadded yesterday1 views

CVE-2025-53145

Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network.

8.8CVSS7.5AI score
CVE
CVEadded yesterday1 views

CVE-2025-53147

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53148

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53149

Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53152

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally.

7.8CVSS7.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53153

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53154

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-53718

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53719

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53722

Uncontrolled resource consumption in Windows Remote Desktop Services allows an unauthorized attacker to deny service over a network.

7.5CVSS7.1AI score
Total number of security vulnerabilities3446