Microsoft Windows Server 2019 vulnerabilities
3,499 known vulnerabilities affecting microsoft/windows_server_2019.
Total CVEs
3,499
CISA KEV
123
actively exploited
Public exploits
67
Exploited in wild
111
Severity breakdown
CRITICAL104HIGH2454MEDIUM928LOW13
Vulnerabilities
Page 32 of 175
CVE-2025-24065MEDIUMCVSS 5.5fixed in 10.0.17763.7434≥ 10.0.17763.0, < 10.0.17763.74342025-06-10
CVE-2025-24065 [MEDIUM] CWE-125 CVE-2025-24065: Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
nvd
CVE-2025-33052MEDIUMCVSS 5.5fixed in 10.0.17763.7434≥ 10.0.17763.0, < 10.0.17763.74342025-06-10
CVE-2025-33052 [MEDIUM] CWE-908 CVE-2025-33052: Use of uninitialized resource in Windows DWM Core Library allows an authorized attacker to disclose
Use of uninitialized resource in Windows DWM Core Library allows an authorized attacker to disclose information locally.
nvd
CVE-2025-33057MEDIUMCVSS 6.5fixed in 10.0.17763.7434≥ 10.0.17763.0, < 10.0.17763.74342025-06-10
CVE-2025-33057 [MEDIUM] CWE-476 CVE-2025-33057: Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to
Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network.
nvd
CVE-2025-33059MEDIUMCVSS 5.5fixed in 10.0.17763.7434≥ 10.0.17763.0, < 10.0.17763.74342025-06-10
CVE-2025-33059 [MEDIUM] CWE-125 CVE-2025-33059: Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
nvd
CVE-2025-32715MEDIUMCVSS 6.5fixed in 10.0.17763.7434≥ 10.0.17763.0, < 10.0.17763.74342025-06-10
CVE-2025-32715 [MEDIUM] CWE-125 CVE-2025-32715: Out-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information
Out-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network.
nvd
CVE-2025-33065MEDIUMCVSS 5.5fixed in 10.0.17763.7434≥ 10.0.17763.0, < 10.0.17763.74342025-06-10
CVE-2025-33065 [MEDIUM] CWE-125 CVE-2025-33065: Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
nvd
CVE-2025-32720MEDIUMCVSS 5.5fixed in 10.0.17763.7434≥ 10.0.17763.0, < 10.0.17763.74342025-06-10
CVE-2025-32720 [MEDIUM] CWE-125 CVE-2025-32720: Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
nvd
CVE-2025-47827MEDIUMCVSS 4.6KEVfixed in 10.0.17763.79192025-06-05
CVE-2025-47827 [MEDIUM] CWE-347 CVE-2025-47827: In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly ve
In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature. Ultimately, a crafted root filesystem can be mounted from an unverified SquashFS image.
nvd
CVE-2025-29842HIGHCVSS 7.5fixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-29842 [HIGH] CWE-349 CVE-2025-29842: Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized attacker
Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized attacker to bypass a security feature over a network.
nvd
CVE-2025-32701HIGHCVSS 7.8KEVfixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-32701 [HIGH] CWE-416 CVE-2025-32701: Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate pri
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-29967HIGHCVSS 8.8fixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-29967 [HIGH] CWE-122 CVE-2025-29967: Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to exec
Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.
nvd
CVE-2025-29962HIGHCVSS 8.8fixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-29962 [HIGH] CWE-122 CVE-2025-29962: Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a n
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
nvd
CVE-2025-30388HIGHCVSS 7.8fixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-30388 [HIGH] CWE-122 CVE-2025-30388: Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code
Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.
nvd
CVE-2025-32709HIGHCVSS 7.8KEVfixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-32709 [HIGH] CWE-416 CVE-2025-32709: Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attac
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-29831HIGHCVSS 7.5fixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-29831 [HIGH] CWE-416 CVE-2025-29831: Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code ove
Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.
nvd
CVE-2025-29964HIGHCVSS 8.8fixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-29964 [HIGH] CWE-122 CVE-2025-29964: Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a n
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
nvd
CVE-2025-30385HIGHCVSS 7.8fixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-30385 [HIGH] CWE-416 CVE-2025-30385: Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate pri
Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
nvd
CVE-2025-29969HIGHCVSS 7.5fixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-29969 [HIGH] CWE-367 CVE-2025-29969: Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attac
Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attacker to execute code over a network.
nvd
CVE-2025-32707HIGHCVSS 7.8fixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-32707 [HIGH] CWE-125 CVE-2025-32707: Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
nvd
CVE-2025-26677HIGHCVSS 7.5fixed in 10.0.17763.7314≥ 10.0.17763.0, < 10.0.17763.73142025-05-13
CVE-2025-26677 [HIGH] CWE-400 CVE-2025-26677: Uncontrolled resource consumption in Remote Desktop Gateway Service allows an unauthorized attacker
Uncontrolled resource consumption in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.
nvd