cbcvebase.

Microsoft Windows Server 2022 vulnerabilities

2,874 known vulnerabilities affecting microsoft/windows_server_2022.

Total CVEs
2,874
CISA KEV
103
actively exploited
Public exploits
43
Exploited in wild
85
Severity breakdown
CRITICAL76HIGH2062MEDIUM725LOW11

Vulnerabilities

Page 2 of 144
CVE-2026-41095HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-41095 [HIGH] CWE-416 CVE-2026-41095: Use after free in Data Deduplication allows an authorized attacker to elevate privileges locally. Use after free in Data Deduplication allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-33838HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-33838 [HIGH] CWE-415 CVE-2026-33838: Double free in Windows Message Queuing allows an authorized attacker to elevate privileges locally. Double free in Windows Message Queuing allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-34345HIGHCVSS 7.0fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-34345 [HIGH] CWE-362 CVE-2026-34345: Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver f Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-33835HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-33835 [HIGH] CWE-416 CVE-2026-33835: Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate pr Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-40408HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-40408 [HIGH] CWE-416 CVE-2026-40408: Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges lo Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-33834HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-33834 [HIGH] CWE-284 CVE-2026-33834: Improper access control in Windows Event Logging Service allows an authorized attacker to elevate pr Improper access control in Windows Event Logging Service allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-40406HIGHCVSS 7.5fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-40406 [HIGH] CWE-416 CVE-2026-40406: Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a netw Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network.
nvd
CVE-2026-33839HIGHCVSS 7.0fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-33839 [HIGH] CWE-362 CVE-2026-33839: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-33841HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-33841 [HIGH] CWE-122 CVE-2026-33841: Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges loc Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-40382HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-40382 [HIGH] CWE-416 CVE-2026-40382: Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges loca Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-35416HIGHCVSS 7.0fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-35416 [HIGH] CWE-416 CVE-2026-35416: Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver f Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-40399HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-40399 [HIGH] CWE-121 CVE-2026-40399: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-35418HIGHCVSS 7.0fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-35418 [HIGH] CWE-367 CVE-2026-35418: Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate pr Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-34340HIGHCVSS 7.0fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-34340 [HIGH] CWE-416 CVE-2026-34340: Use after free in Windows Projected File System allows an authorized attacker to elevate privileges Use after free in Windows Projected File System allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-40397HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-40397 [HIGH] CWE-191 CVE-2026-40397: Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-35421HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-35421 [HIGH] CWE-122 CVE-2026-35421: Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally. Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally.
nvd
CVE-2026-40414HIGHCVSS 7.4fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-40414 [HIGH] CWE-476 CVE-2026-40414: Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an a Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over an adjacent network.
nvd
CVE-2026-34342HIGHCVSS 7.0fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-34342 [HIGH] CWE-362 CVE-2026-34342: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Print Spooler Components allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-35420HIGHCVSS 7.8fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-35420 [HIGH] CWE-122 CVE-2026-35420: Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges loc Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
nvd
CVE-2026-34331HIGHCVSS 7.0fixed in 10.0.20348.5074≥ 10.0.20348.0, < 10.0.20348.51392026-05-12
CVE-2026-34331 [HIGH] CWE-362 CVE-2026-34331: Concurrent execution using shared resource with improper synchronization ('race condition') in Windo Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
nvd
← Previous2 / 144Next →
Microsoft Windows Server 2022 vulnerabilities | cvebase