Lucene search

K
MicrosoftWindows Server 2022

2351 matches found

CVE
CVE
added 2025/05/13 5:15 p.m.61 views

CVE-2025-29840

Stack-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS8AI score0.00083EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.61 views

CVE-2025-29962

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00083EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.61 views

CVE-2025-33061

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.60 views

CVE-2025-29841

Concurrent execution using shared resource with improper synchronization ('race condition') in Universal Print Management Service allows an authorized attacker to elevate privileges locally.

7CVSS6.9AI score0.00047EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.60 views

CVE-2025-29964

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00083EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.60 views

CVE-2025-32725

Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.

7.5CVSS7.3AI score0.00177EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.60 views

CVE-2025-33056

Improper access control in Microsoft Local Security Authority Server (lsasrv) allows an unauthorized attacker to deny service over a network.

7.5CVSS7.3AI score0.00139EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.60 views

CVE-2025-33060

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS
CVE
CVE
added 2024/10/08 6:15 p.m.59 views

CVE-2024-43534

Windows Graphics Component Information Disclosure Vulnerability

6.5CVSS7.4AI score0.00409EPSS
CVE
CVE
added 2024/12/12 2:4 a.m.58 views

CVE-2024-49107

WmsRepair Service Elevation of Privilege Vulnerability

7.3CVSS7.2AI score0.00407EPSS
CVE
CVE
added 2025/02/11 6:15 p.m.58 views

CVE-2025-21352

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00288EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.58 views

CVE-2025-29967

Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.

8.8CVSS8.1AI score0.0017EPSS
CVE
CVE
added 2025/05/13 5:16 p.m.58 views

CVE-2025-30388

Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00078EPSS
CVE
CVE
added 2025/06/10 5:21 p.m.58 views

CVE-2025-32712

Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

7.8CVSS8AI score0.00066EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.58 views

CVE-2025-33064

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00103EPSS
CVE
CVE
added 2024/12/18 11:15 p.m.57 views

CVE-2022-40732

An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows 11 version 22000.593 and version 10.0.20348.643 as part of Windows Server 2022 version 20348.643. A specially-crafted set of syscalls can lead to a reboot....

7.5CVSS5.2AI score0.00214EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.57 views

CVE-2025-33062

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS
CVE
CVE
added 2025/01/14 6:15 p.m.56 views

CVE-2025-21248

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.0052EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.56 views

CVE-2025-29842

Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized attacker to bypass a security feature over a network.

7.5CVSS7.7AI score0.00035EPSS
CVE
CVE
added 2025/01/14 6:16 p.m.55 views

CVE-2025-21389

Windows upnphost.dll Denial of Service Vulnerability

7.5CVSS7.5AI score0.01098EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.55 views

CVE-2025-29833

Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an unauthorized attacker to execute code locally.

7.7CVSS7.7AI score0.00046EPSS
CVE
CVE
added 2025/06/10 5:21 p.m.54 views

CVE-2025-24065

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.54 views

CVE-2025-27468

Improper privilege management in Windows Secure Kernel Mode allows an authorized attacker to elevate privileges locally.

7CVSS7AI score0.00047EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.54 views

CVE-2025-29829

Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally.

5.5CVSS6.8AI score0.0014EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.54 views

CVE-2025-29835

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.5AI score0.0009EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.54 views

CVE-2025-29836

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.5AI score0.00074EPSS
CVE
CVE
added 2025/06/10 5:21 p.m.54 views

CVE-2025-32718

Integer overflow or wraparound in Windows SMB allows an authorized attacker to elevate privileges locally.

7.8CVSS7.7AI score0.0009EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.54 views

CVE-2025-32719

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.54 views

CVE-2025-47981

Heap-based buffer overflow in Windows SPNEGO Extended Negotiation allows an unauthorized attacker to execute code over a network.

9.8CVSS7.4AI score0.00143EPSS
CVE
CVE
added 2025/07/08 5:16 p.m.54 views

CVE-2025-49740

Protection mechanism failure in Windows SmartScreen allows an unauthorized attacker to bypass a security feature over a network.

8.8CVSS6.5AI score0.00094EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.53 views

CVE-2025-29839

Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally.

4CVSS6.6AI score0.00052EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.53 views

CVE-2025-29959

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.4AI score0.00229EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.53 views

CVE-2025-29963

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS8AI score0.00083EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.53 views

CVE-2025-33063

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.52 views

CVE-2025-29960

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.3AI score0.00074EPSS
CVE
CVE
added 2025/01/14 6:15 p.m.51 views

CVE-2025-21331

Windows Installer Elevation of Privilege Vulnerability

7.3CVSS7.2AI score0.0012EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.51 views

CVE-2025-29961

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.3AI score0.00074EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.51 views

CVE-2025-29968

Improper input validation in Active Directory Certificate Services (AD CS) allows an authorized attacker to deny service over a network.

6.5CVSS6.6AI score0.00231EPSS
CVE
CVE
added 2025/06/10 5:21 p.m.51 views

CVE-2025-32713

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.8AI score0.00066EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.50 views

CVE-2025-29832

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.5AI score0.00074EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.50 views

CVE-2025-29957

Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker to deny service locally.

6.2CVSS7AI score0.0043EPSS
CVE
CVE
added 2025/05/13 5:16 p.m.50 views

CVE-2025-30385

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00066EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.50 views

CVE-2025-32721

Improper link resolution before file access ('link following') in Windows Recovery Driver allows an authorized attacker to elevate privileges locally.

7.3CVSS7.1AI score0.00082EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.50 views

CVE-2025-33057

Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network.

6.5CVSS6.3AI score0.00217EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.50 views

CVE-2025-48817

Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

8.8CVSS7AI score0.00071EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.49 views

CVE-2025-29830

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.9AI score0.00223EPSS
CVE
CVE
added 2025/05/13 5:15 p.m.49 views

CVE-2025-29958

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.6AI score0.00229EPSS
CVE
CVE
added 2025/06/10 5:21 p.m.49 views

CVE-2025-32716

Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00066EPSS
CVE
CVE
added 2025/06/10 5:22 p.m.49 views

CVE-2025-33058

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS
CVE
CVE
added 2025/07/08 5:15 p.m.49 views

CVE-2025-48000

Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.

7.8CVSS7AI score0.00051EPSS
Total number of security vulnerabilities2351