Windows Server 2022 Security Vulnerabilities and Issues — Page 43 of Windows Server 2022 CVE List

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.

7.5CVSS7.4AI score0.12218EPSS

CVE•added 2023/12/12 6:15 p.m.•67 views

CVE-2023-36005

Windows Telephony Server Elevation of Privilege Vulnerability

8.1CVSS8AI score0.08837EPSS

CVE•added 2023/12/12 6:15 p.m.•67 views

CVE-2023-36696

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00108EPSS

CVE•added 2024/09/10 5:15 p.m.•67 views

CVE-2024-38234

Windows Networking Denial of Service Vulnerability

6.5CVSS7.8AI score0.00652EPSS

CVE•added 2024/11/12 6:15 p.m.•67 views

CVE-2024-43640

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00456EPSS

CVE•added 2025/01/14 6:15 p.m.•67 views

CVE-2025-21272

Windows COM Server Information Disclosure Vulnerability

6.5CVSS6.3AI score0.00101EPSS

CVE•added 2025/06/10 5:21 p.m.•67 views

CVE-2025-32715

Out-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.2AI score0.00074EPSS

CVE•added 2025/06/10 5:22 p.m.•67 views

CVE-2025-32722

Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose information locally.

5.5CVSS5.3AI score0.00052EPSS

CVE•added 2025/06/10 5:22 p.m.•67 views

CVE-2025-33055

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS

CVE•added 2025/01/14 6:15 p.m.•66 views

CVE-2025-21207

Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability

7.5CVSS7.5AI score0.01098EPSS

CVE•added 2025/01/14 6:15 p.m.•66 views

CVE-2025-21220

Microsoft Message Queuing Information Disclosure Vulnerability

7.5CVSS7.3AI score0.00675EPSS

CVE•added 2025/01/14 6:15 p.m.•66 views

CVE-2025-21249

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE•added 2025/01/14 6:16 p.m.•66 views

CVE-2025-21411

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.027EPSS

CVE•added 2024/10/08 6:15 p.m.•65 views

CVE-2024-43581

Microsoft OpenSSH for Windows Remote Code Execution Vulnerability

7.1CVSS7.8AI score0.0336EPSS

CVE•added 2025/03/11 5:16 p.m.•65 views

CVE-2025-26634

Heap-based buffer overflow in Windows Core Messaging allows an authorized attacker to elevate privileges over a network.

7.5CVSS7.7AI score0.00216EPSS

CVE•added 2024/10/08 6:15 p.m.•64 views

CVE-2024-43593

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS9.1AI score0.09988EPSS

CVE•added 2025/01/14 6:15 p.m.•64 views

CVE-2025-21193

Active Directory Federation Server Spoofing Vulnerability

6.5CVSS6.5AI score0.00104EPSS

CVE•added 2025/01/14 6:15 p.m.•64 views

CVE-2025-21218

Windows Kerberos Denial of Service Vulnerability

7.5CVSS7.5AI score0.01098EPSS

CVE•added 2025/01/14 6:15 p.m.•64 views

CVE-2025-21301

Windows Geolocation Service Information Disclosure Vulnerability

6.5CVSS6.3AI score0.00279EPSS

CVE•added 2025/05/13 5:15 p.m.•64 views

CVE-2025-29969

Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attacker to execute code over a network.

7.5CVSS7.6AI score0.00073EPSS

CVE•added 2025/06/10 5:22 p.m.•64 views

CVE-2025-33050

Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.

7.5CVSS7.3AI score0.00177EPSS

CVE•added 2025/05/13 5:15 p.m.•63 views

CVE-2025-29954

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

5.9CVSS5.7AI score0.0059EPSS

CVE•added 2025/06/10 5:22 p.m.•63 views

CVE-2025-32724

Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny service over a network.

7.5CVSS7.4AI score0.12218EPSS

CVE•added 2025/06/10 5:22 p.m.•63 views

CVE-2025-33066

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00083EPSS

CVE•added 2024/12/18 11:15 p.m.•62 views

CVE-2022-40733

An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot....

6.5CVSS5.2AI score0.00244EPSS

CVE•added 2024/09/10 5:15 p.m.•62 views

CVE-2024-38235

Windows Hyper-V Denial of Service Vulnerability

6.5CVSS7.8AI score0.00147EPSS

CVE•added 2025/01/14 6:15 p.m.•62 views

CVE-2025-21257

Windows WLAN AutoConfig Service Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00093EPSS

CVE•added 2025/01/14 6:15 p.m.•62 views

CVE-2025-21300

Windows upnphost.dll Denial of Service Vulnerability