Microsoft Windows Server 2022 vulnerabilities

2,817 known vulnerabilities affecting microsoft/windows_server_2022.

Total CVEs

2,817

CISA KEV

102

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL74HIGH2015MEDIUM717LOW11

Vulnerabilities

Page 42 of 141

CVE-2025-21367HIGHCVSS 7.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21367 [HIGH] CWE-416 CVE-2025-21367: Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

nvd

CVE-2025-21369HIGHCVSS 8.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21369 [HIGH] CWE-122 CVE-2025-21369: Microsoft Digest Authentication Remote Code Execution Vulnerability Microsoft Digest Authentication Remote Code Execution Vulnerability

nvd

CVE-2025-21410HIGHCVSS 8.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21410 [HIGH] CWE-122 CVE-2025-21410: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

nvd

CVE-2025-21406HIGHCVSS 8.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21406 [HIGH] CWE-416 CVE-2025-21406: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21373HIGHCVSS 7.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21373 [HIGH] CWE-59 CVE-2025-21373: Windows Installer Elevation of Privilege Vulnerability Windows Installer Elevation of Privilege Vulnerability

nvd

CVE-2025-21376HIGHCVSS 8.1fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21376 [HIGH] CWE-122 CVE-2025-21376: Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

nvd

CVE-2025-21368HIGHCVSS 8.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21368 [HIGH] CWE-122 CVE-2025-21368: Microsoft Digest Authentication Remote Code Execution Vulnerability Microsoft Digest Authentication Remote Code Execution Vulnerability

nvd

CVE-2025-21190HIGHCVSS 8.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21190 [HIGH] CWE-122 CVE-2025-21190: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21358HIGHCVSS 7.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21358 [HIGH] CWE-822 CVE-2025-21358: Windows Core Messaging Elevation of Privileges Vulnerability Windows Core Messaging Elevation of Privileges Vulnerability

nvd

CVE-2025-21208HIGHCVSS 8.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21208 [HIGH] CWE-122 CVE-2025-21208: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

nvd

CVE-2025-21375HIGHCVSS 7.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21375 [HIGH] CWE-20 CVE-2025-21375: Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

nvd

CVE-2025-21419HIGHCVSS 7.1fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21419 [HIGH] CWE-59 CVE-2025-21419: Windows Setup Files Cleanup Elevation of Privilege Vulnerability Windows Setup Files Cleanup Elevation of Privilege Vulnerability

nvd

CVE-2025-21181HIGHCVSS 7.5fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21181 [HIGH] CWE-400 CVE-2025-21181: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2025-21391HIGHCVSS 7.1KEVfixed in 10.0.20348.3148≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21391 [HIGH] CWE-59 CVE-2025-21391: Windows Storage Elevation of Privilege Vulnerability Windows Storage Elevation of Privilege Vulnerability

nvd

CVE-2025-21418HIGHCVSS 7.8KEVfixed in 10.0.20348.3148≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21418 [HIGH] CWE-122 CVE-2025-21418: Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

nvd

CVE-2025-21420HIGHCVSS 7.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21420 [HIGH] CWE-59 CVE-2025-21420: Windows Disk Cleanup Tool Elevation of Privilege Vulnerability Windows Disk Cleanup Tool Elevation of Privilege Vulnerability

nvd

CVE-2025-21184HIGHCVSS 7.0fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21184 [HIGH] CWE-122 CVE-2025-21184: Windows Core Messaging Elevation of Privileges Vulnerability Windows Core Messaging Elevation of Privileges Vulnerability

nvd

CVE-2025-21201HIGHCVSS 8.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21201 [HIGH] CWE-415 CVE-2025-21201: Windows Telephony Server Remote Code Execution Vulnerability Windows Telephony Server Remote Code Execution Vulnerability

nvd

CVE-2025-21351HIGHCVSS 7.5fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21351 [HIGH] CWE-400 CVE-2025-21351: Windows Active Directory Domain Services API Denial of Service Vulnerability Windows Active Directory Domain Services API Denial of Service Vulnerability

nvd

CVE-2025-21200HIGHCVSS 8.8fixed in 10.0.20348.3207≥ 10.0.20348.0, < 10.0.20348.32072025-02-11

CVE-2025-21200 [HIGH] CWE-122 CVE-2025-21200: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

← Previous42 / 141Next →