Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2022

2346 matches found

CVE
CVEadded yesterday2 views

CVE-2025-49761

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score
CVE
CVEadded yesterday2 views

CVE-2025-49762

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.3AI score
CVE
CVEadded yesterday2 views

CVE-2025-50153

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score
CVE
CVEadded yesterday2 views

CVE-2025-50154

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.

7.5CVSS6.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-50155

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-50156

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-50157

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-50158

Time-of-check time-of-use (toctou) race condition in Windows NTFS allows an unauthorized attacker to disclose information locally.

7CVSS6.7AI score
CVE
CVEadded yesterday1 views

CVE-2025-50159

Use after free in Remote Access Point-to-Point Protocol (PPP) EAP-TLS allows an authorized attacker to elevate privileges locally.

7.3CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-50160

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

8CVSS8.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-50161

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

7.3CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-50163

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS8.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-50166

Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network.

6.5CVSS7AI score
CVE
CVEadded yesterday1 views

CVE-2025-50167

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

7CVSS7.2AI score
CVE
CVEadded yesterday1 views

CVE-2025-50170

Improper handling of insufficient permissions or privileges in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-50172

Allocation of resources without limits or throttling in Windows DirectX allows an authorized attacker to deny service over a network.

6.5CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-50173

Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally.

7.8CVSS7.3AI score
CVE
CVEadded yesterday1 views

CVE-2025-50176

Access of resource using incompatible type ('type confusion') in Graphics Kernel allows an authorized attacker to execute code locally.

7.8CVSS7.5AI score
CVE
CVEadded yesterday1 views

CVE-2025-50177

Use after free in Windows Message Queuing allows an unauthorized attacker to execute code over a network.

8.1CVSS7.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53131

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS8AI score
CVE
CVEadded yesterday1 views

CVE-2025-53134

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.3AI score
CVE
CVEadded yesterday1 views

CVE-2025-53135

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to elevate privileges locally.

7CVSS7.2AI score
CVE
CVEadded yesterday1 views

CVE-2025-53136

Exposure of sensitive information to an unauthorized actor in Windows NT OS Kernel allows an authorized attacker to disclose information locally.

5.5CVSS6.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53137

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53138

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53140

Use after free in Kernel Transaction Manager allows an authorized attacker to elevate privileges locally.

7CVSS7.5AI score
CVE
CVEadded yesterday1 views

CVE-2025-53141

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-53144

Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network.

8.8CVSS7.5AI score
CVE
CVEadded yesterday1 views

CVE-2025-53145

Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network.

8.8CVSS7.5AI score
CVE
CVEadded yesterday1 views

CVE-2025-53147

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53148

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53149

Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53151

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score
CVE
CVEadded yesterday1 views

CVE-2025-53152

Use after free in Desktop Windows Manager allows an authorized attacker to execute code locally.

7.8CVSS7.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53153

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53154

Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-53155

Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53716

Null pointer dereference in Windows Local Security Authority Subsystem Service (LSASS) allows an authorized attacker to deny service over a network.

6.5CVSS7AI score
CVE
CVEadded yesterday1 views

CVE-2025-53718

Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

7CVSS7.6AI score
CVE
CVEadded yesterday1 views

CVE-2025-53719

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to disclose information over a network.

5.7CVSS6.9AI score
CVE
CVEadded yesterday1 views

CVE-2025-53721

Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.

7CVSS7.5AI score
CVE
CVEadded yesterday1 views

CVE-2025-53722

Uncontrolled resource consumption in Windows Remote Desktop Services allows an unauthorized attacker to deny service over a network.

7.5CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-53723

Numeric truncation error in Windows Hyper-V allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-53724

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-53725

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score
CVE
CVEadded yesterday1 views

CVE-2025-53726

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score
Total number of security vulnerabilities2346