Windows Server 2022 Security Vulnerabilities and Issues — Page 39 of Windows Server 2022 CVE List

6.5CVSS6.7AI score0.00107EPSS

CVE-2025-21197

Improper access control in Windows NTFS allows an authorized attacker to disclose file path information under a folder where the attacker doesn't have permission to list content.

CVE•added 2025/01/14 6:15 p.m.•82 views

CVE-2025-21244

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.0076EPSS

CVE•added 2025/03/11 5:16 p.m.•82 views

CVE-2025-24051

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS7.8AI score0.00321EPSS

6.8CVSS6.9AI score0.00101EPSS

CVE-2025-26637

Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.

7.8CVSS7.3AI score0.00081EPSS

CVE-2025-26639

Integer overflow or wraparound in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.

8.1CVSS7.9AI score0.00072EPSS

CVE-2025-26663

Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network.

7CVSS7.1AI score0.00024EPSS

CVE-2025-26665

Sensitive data storage in improperly locked memory in Windows upnphost.dll allows an authorized attacker to elevate privileges locally.

7.8CVSS7AI score0.00059EPSS

CVE-2025-26675

Out-of-bounds read in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.

CVE•added 2025/04/08 6:16 p.m.•82 views

CVE-2025-27738

Improper access control in Windows Resilient File System (ReFS) allows an authorized attacker to disclose information over a network.

6.5CVSS6.7AI score0.00107EPSS

CVE•added 2025/05/13 5:15 p.m.•82 views

CVE-2025-29966

Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network.

8.8CVSS8.1AI score0.0017EPSS

CVE•added 2021/12/15 3:15 p.m.•81 views

CVE-2021-43219

DirectX Graphics Kernel File Denial of Service Vulnerability

7.8CVSS8.3AI score0.01557EPSS

CVE•added 2022/10/11 7:15 p.m.•81 views

CVE-2022-37993

Windows Group Policy Preference Client Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00272EPSS

6.5CVSS7.6AI score0.00169EPSS

CVE-2023-32037

Windows Layer-2 Bridge Network Driver Information Disclosure Vulnerability

7.5CVSS7.8AI score0.03672EPSS

CVE-2023-33168

Remote Procedure Call Runtime Denial of Service Vulnerability

7.8CVSS8.6AI score0.0014EPSS

CVE-2023-35320

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.01037EPSS

CVE-2023-35323

Windows OLE Remote Code Execution Vulnerability

6.5CVSS7.8AI score0.00157EPSS

CVE-2023-35331

Windows Local Security Authority (LSA) Denial of Service Vulnerability

7.8CVSS8.8AI score0.00324EPSS

CVE-2023-35343

Windows Geolocation Service Remote Code Execution Vulnerability

CVE•added 2023/12/12 6:15 p.m.•81 views

CVE-2023-35641

Internet Connection Sharing (ICS) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.05218EPSS

8CVSS8.4AI score0.01503EPSS

CVE-2024-37975

Secure Boot Security Feature Bypass Vulnerability

8CVSS8.4AI score0.00927EPSS

CVE-2024-38011

Secure Boot Security Feature Bypass Vulnerability

7.8CVSS8.6AI score0.00619EPSS

CVE-2024-38050

Windows Workstation Service Elevation of Privilege Vulnerability