Lucene search

K
MicrosoftWindows Server 2019

3863 matches found

CVE
CVE
added 2025/06/10 5:22 p.m.54 views

CVE-2025-33063

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS
CVE
CVE
added 2025/01/14 6:15 p.m.53 views

CVE-2025-21331

Windows Installer Elevation of Privilege Vulnerability

7.3CVSS7.2AI score0.00122EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.53 views

CVE-2025-29832

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.5AI score0.00124EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.53 views

CVE-2025-29957

Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker to deny service locally.

6.2CVSS7AI score0.0069EPSS
CVE
CVE
added 2025/05/13 5:16 p.m.53 views

CVE-2025-30385

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00106EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.53 views

CVE-2025-48000

Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.

7.8CVSS7AI score0.00051EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.52 views

CVE-2025-29830

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.9AI score0.00372EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.52 views

CVE-2025-29958

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.6AI score0.00382EPSS
CVE
CVE
added 2025/06/10 5:21 p.m.52 views

CVE-2025-32713

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.8AI score0.00066EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.52 views

CVE-2025-49691

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over an adjacent network.

8CVSS7.4AI score0.00146EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.51 views

CVE-2025-29956

Buffer over-read in Windows SMB allows an authorized attacker to disclose information over a network.

5.4CVSS6.7AI score0.0014EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.51 views

CVE-2025-32721

Improper link resolution before file access ('link following') in Windows Recovery Driver allows an authorized attacker to elevate privileges locally.

7.3CVSS7.1AI score0.00082EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.51 views

CVE-2025-33057

Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network.

6.5CVSS6.3AI score0.00217EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.51 views

CVE-2025-48822

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally.

8.6CVSS6.9AI score0.00079EPSS
CVE
CVE
added 2025/06/10 5:21 p.m.50 views

CVE-2025-32714

Improper access control in Windows Installer allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.00061EPSS
CVE
CVE
added 2025/06/10 5:21 p.m.50 views

CVE-2025-32716

Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00066EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.50 views

CVE-2025-33058

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.50 views

CVE-2025-49721

Heap-based buffer overflow in Windows Fast FAT Driver allows an unauthorized attacker to elevate privileges locally.

7.8CVSS7AI score0.00079EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.49 views

CVE-2025-49716

Uncontrolled resource consumption in Windows Netlogon allows an unauthorized attacker to deny service over a network.

7.5CVSS6.4AI score0.09379EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.48 views

CVE-2025-49689

Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.

7.8CVSS6.8AI score0.001EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.47 views

CVE-2025-48824

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS7.5AI score0.00083EPSS
CVE
CVE
added 2025/08/12 6:15 p.m.47 views

CVE-2025-53766

Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network.

9.8CVSS8AI score0.00143EPSS
CVE
CVE
added 2025/07/08 5:16 p.m.45 views

CVE-2025-49744

Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.

7CVSS7AI score0.02213EPSS
CVE
CVE
added 2025/07/08 5:16 p.m.44 views

CVE-2025-49724

Use after free in Windows Connected Devices Platform Service allows an unauthorized attacker to execute code over a network.

8.8CVSS7.3AI score0.00198EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.43 views

CVE-2025-47971

Buffer over-read in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.

7.8CVSS6.5AI score0.00079EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.43 views

CVE-2025-49667

Double free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.

7.8CVSS6.6AI score0.00066EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.42 views

CVE-2025-49683

Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to execute code locally.

7.8CVSS7.2AI score0.00584EPSS
CVE
CVE
added 2025/07/08 5:16 p.m.42 views

CVE-2025-49753

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS7.5AI score0.00083EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.41 views

CVE-2025-47998

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS7.5AI score0.00091EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.40 views

CVE-2025-47991

Use after free in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges locally.

7.8CVSS6.9AI score0.0006EPSS
CVE
CVE
added 2025/08/12 6:15 p.m.40 views

CVE-2025-53778

Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network.

8.8CVSS7.3AI score0.0011EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.36 views

CVE-2025-48818

Time-of-check time-of-use (toctou) race condition in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.

6.8CVSS6.2AI score0.00067EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.36 views

CVE-2025-49686

Null pointer dereference in Windows TCP/IP allows an authorized attacker to elevate privileges locally.

7.8CVSS6.5AI score0.00066EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.35 views

CVE-2025-47972

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Input Method Editor (IME) allows an authorized attacker to elevate privileges over a network.

8CVSS6.5AI score0.00059EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.35 views

CVE-2025-48804

Acceptance of extraneous untrusted data with trusted data in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.

6.8CVSS6.3AI score0.00039EPSS
CVE
CVE
added 2025/07/08 5:16 p.m.35 views

CVE-2025-49723

Missing authorization in Windows StateRepository API allows an authorized attacker to perform tampering locally.

8.8CVSS6.5AI score0.00061EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.34 views

CVE-2025-48003

Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.

6.8CVSS6.2AI score0.00113EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.34 views

CVE-2025-48800

Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.

6.8CVSS6.2AI score0.00113EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.34 views

CVE-2025-48823

Cryptographic issues in Windows Cryptographic Services allows an unauthorized attacker to disclose information over a network.

5.9CVSS6.1AI score0.00032EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.33 views

CVE-2025-48815

Access of resource using incompatible type ('type confusion') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.

7.8CVSS6.5AI score0.00164EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.33 views

CVE-2025-49669

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS7.5AI score0.00083EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.33 views

CVE-2025-49670

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

6.5CVSS7.5AI score0.00074EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.33 views

CVE-2025-49722

Uncontrolled resource consumption in Windows Print Spooler Components allows an authorized attacker to deny service over an adjacent network.

5.7CVSS6.5AI score0.0067EPSS
CVE
CVE
added 2025/09/09 5:16 p.m.33 views

CVE-2025-55234

SMB Server might be susceptible to relay attacks depending on the configuration. An attacker who successfully exploited these vulnerabilities could perform relay attacks and make the users subject to elevation of privilege attacks.The SMB Server already supports mechanisms for hardening against rel...

9.8CVSS6.7AI score0.00464EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.32 views

CVE-2025-47980

Exposure of sensitive information to an unauthorized actor in Windows Imaging Component allows an unauthorized attacker to disclose information locally.

6.2CVSS6AI score0.00078EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.32 views

CVE-2025-47986

Use after free in Universal Print Management Service allows an authorized attacker to elevate privileges locally.

8.8CVSS7AI score0.00066EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.32 views

CVE-2025-48816

Integer overflow or wraparound in HID class driver allows an authorized attacker to elevate privileges locally.

7.8CVSS6.8AI score0.0009EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.32 views

CVE-2025-49659

Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally.

7.8CVSS6.5AI score0.00066EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.32 views

CVE-2025-49663

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS7.5AI score0.00083EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.32 views

CVE-2025-49675

Use after free in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS6.9AI score0.00066EPSS
Total number of security vulnerabilities3863