Windows Server 2022 23h2@* Security Vulnerabilities and Issues — Windows Server 2022 23h2@* CVE List

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.

6.8CVSS6.8AI score0.00183EPSS

CVE•added 2023/11/14 6:15 p.m.•274 views

CVE-2023-36719

Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability

7.8CVSS8.5AI score0.00134EPSS

CVE•added 2023/11/14 6:15 p.m.•257 views

CVE-2023-36405

Windows Kernel Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00119EPSS

CVE•added 2023/11/14 6:15 p.m.•241 views

CVE-2023-36424

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.17769EPSS

CVE•added 2023/11/14 6:15 p.m.•238 views

CVE-2023-36397

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.03225EPSS

CVE•added 2023/11/14 6:15 p.m.•228 views

CVE-2023-36402

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.00166EPSS

CVE•added 2023/11/14 6:15 p.m.•209 views

CVE-2023-36028

Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.00536EPSS

CVE•added 2023/11/14 6:15 p.m.•206 views

CVE-2023-36425

Windows Distributed File System (DFS) Remote Code Execution Vulnerability

8CVSS8.9AI score0.00207EPSS

CVE•added 2023/11/14 6:15 p.m.•205 views

CVE-2023-36017

Windows Scripting Engine Memory Corruption Vulnerability

8.8CVSS8.9AI score0.02717EPSS

CVE•added 2023/11/14 6:15 p.m.•186 views

CVE-2023-36398

Windows NTFS Information Disclosure Vulnerability

6.5CVSS7.6AI score0.00058EPSS

CVE•added 2023/11/14 6:15 p.m.•185 views

CVE-2023-36047

Windows Authentication Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00343EPSS

CVE•added 2023/11/14 6:15 p.m.•185 views

CVE-2023-36393

Windows User Interface Application Core Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00408EPSS

CVE•added 2023/11/14 6:15 p.m.•182 views

CVE-2023-36428

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

5.5CVSS7AI score0.00169EPSS

CVE•added 2023/11/14 6:15 p.m.•178 views

CVE-2023-36423

Microsoft Remote Registry Service Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.00574EPSS

CVE•added 2023/11/14 6:15 p.m.•175 views

CVE-2023-36395

Windows Deployment Services Denial of Service Vulnerability

7.5CVSS8.4AI score0.0122EPSS

CVE•added 2023/11/14 6:15 p.m.•174 views

CVE-2023-36400

Windows HMAC Key Derivation Elevation of Privilege Vulnerability

8.8CVSS9.1AI score0.01558EPSS

CVE•added 2023/11/14 6:15 p.m.•172 views

CVE-2023-36401

Microsoft Remote Registry Service Remote Code Execution Vulnerability

7.2CVSS8.3AI score0.00319EPSS

CVE•added 2023/11/14 6:15 p.m.•170 views

CVE-2023-36392

DHCP Server Service Denial of Service Vulnerability

7.5CVSS8.4AI score0.00718EPSS

CVE•added 2023/11/14 6:15 p.m.•167 views

CVE-2023-36403

Windows Kernel Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00245EPSS

CVE•added 2023/11/14 6:15 p.m.•166 views

CVE-2023-36406

Windows Hyper-V Information Disclosure Vulnerability

5.5CVSS6.1AI score0.00245EPSS

CVE•added 2023/11/14 6:15 p.m.•162 views

CVE-2023-36427

Windows Hyper-V Elevation of Privilege Vulnerability

7CVSS8.1AI score0.04872EPSS

CVE•added 2023/12/12 6:15 p.m.•161 views

CVE-2023-35628

Windows MSHTML Platform Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.17104EPSS

CVE•added 2023/11/14 6:15 p.m.•160 views

CVE-2023-36404

Windows Kernel Information Disclosure Vulnerability

5.5CVSS7AI score0.00301EPSS

CVE•added 2023/11/14 6:15 p.m.•151 views

CVE-2023-36408

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00131EPSS

CVE•added 2023/11/14 6:15 p.m.•144 views

CVE-2023-36407

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.10652EPSS

CVE•added 2023/12/12 6:15 p.m.•121 views

CVE-2023-35630

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.0258EPSS

CVE•added 2023/12/12 6:15 p.m.•118 views

CVE-2023-21740

Windows Media Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.00353EPSS

CVE•added 2023/12/12 6:15 p.m.•107 views

CVE-2023-35639

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00904EPSS

CVE•added 2023/12/12 6:15 p.m.•107 views

CVE-2023-36006

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9AI score0.00209EPSS

CVE•added 2023/11/14 6:15 p.m.•107 views

CVE-2023-36046

Windows Authentication Denial of Service Vulnerability

7.1CVSS6.9AI score0.0021EPSS

CVE•added 2023/12/12 6:15 p.m.•106 views

CVE-2023-36003

XAML Diagnostics Elevation of Privilege Vulnerability

7.3CVSS7.4AI score0.32512EPSS

CVE•added 2023/12/12 6:15 p.m.•95 views

CVE-2023-36004

Windows DPAPI (Data Protection Application Programming Interface) Spoofing Vulnerability

7.5CVSS7.9AI score0.00177EPSS

CVE•added 2023/11/14 6:15 p.m.•91 views

CVE-2023-36399

Windows Storage Elevation of Privilege Vulnerability

7.1CVSS8.1AI score0.01113EPSS

CVE•added 2023/12/12 6:15 p.m.•88 views

CVE-2023-35642

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00491EPSS

CVE•added 2023/12/12 6:15 p.m.•83 views

CVE-2023-35638

DHCP Server Service Denial of Service Vulnerability

7.5CVSS8AI score0.00973EPSS

CVE•added 2023/12/12 6:15 p.m.•81 views

CVE-2023-35641

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.05218EPSS

CVE•added 2023/12/12 6:15 p.m.•80 views

CVE-2023-35643

DHCP Server Service Information Disclosure Vulnerability

7.5CVSS7.8AI score0.00729EPSS

CVE•added 2023/12/12 6:15 p.m.•78 views

CVE-2023-36011

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00102EPSS

CVE•added 2023/12/12 6:15 p.m.•77 views

CVE-2023-35622

Windows DNS Spoofing Vulnerability

7.5CVSS7.9AI score0.00282EPSS

CVE•added 2023/12/12 6:15 p.m.•74 views

CVE-2023-35644

Windows Sysmain Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.05457EPSS

CVE•added 2023/12/20 8:15 p.m.•69 views

CVE-2022-44684

Windows Local Session Manager (LSM) Denial of Service Vulnerability

6.5CVSS6.3AI score0.00533EPSS

CVE•added 2023/12/12 6:15 p.m.•68 views

CVE-2023-36012

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6.5AI score0.00491EPSS

CVE•added 2023/12/12 6:15 p.m.•67 views

CVE-2023-36005

Windows Telephony Server Elevation of Privilege Vulnerability

8.1CVSS8AI score0.08837EPSS

CVE•added 2023/12/12 6:15 p.m.•67 views

CVE-2023-36696

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00108EPSS

Total number of security vulnerabilities51