Microsoft Windows Server 2022 vulnerabilities

2,817 known vulnerabilities affecting microsoft/windows_server_2022.

Total CVEs

2,817

CISA KEV

102

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL74HIGH2015MEDIUM717LOW11

Vulnerabilities

Page 45 of 141

CVE-2025-21266HIGHCVSS 8.8fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21266 [HIGH] CWE-122 CVE-2025-21266: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21230HIGHCVSS 7.5fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21230 [HIGH] CWE-20 CVE-2025-21230: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2025-21296HIGHCVSS 7.5≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21296 [HIGH] CWE-416 BranchCache Remote Code Execution Vulnerability BranchCache Remote Code Execution Vulnerability BranchCache Remote Code Execution Vulnerability

cvelistv5

CVE-2025-21276HIGHCVSS 7.5fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21276 [HIGH] CWE-191 CVE-2025-21276: Windows MapUrlToZone Denial of Service Vulnerability Windows MapUrlToZone Denial of Service Vulnerability

nvd

CVE-2025-21297HIGHCVSS 8.1fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21297 [HIGH] CWE-416 CVE-2025-21297: Windows Remote Desktop Services Remote Code Execution Vulnerability Windows Remote Desktop Services Remote Code Execution Vulnerability

nvd

CVE-2025-21277HIGHCVSS 7.5fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21277 [HIGH] CWE-126 CVE-2025-21277: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2025-21240HIGHCVSS 8.8fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21240 [HIGH] CWE-122 CVE-2025-21240: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21411HIGHCVSS 8.8fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21411 [HIGH] CWE-122 CVE-2025-21411: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21237HIGHCVSS 8.8fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21237 [HIGH] CWE-122 CVE-2025-21237: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21273HIGHCVSS 8.8fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21273 [HIGH] CWE-122 CVE-2025-21273: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21241HIGHCVSS 8.8fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21241 [HIGH] CWE-122 CVE-2025-21241: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21251HIGHCVSS 7.5fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21251 [HIGH] CWE-400 CVE-2025-21251: Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

nvd

CVE-2025-21299HIGHCVSS 7.8fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21299 [HIGH] CWE-922 CVE-2025-21299: Windows Kerberos Security Feature Bypass Vulnerability Windows Kerberos Security Feature Bypass Vulnerability

nvd

CVE-2025-21231HIGHCVSS 7.5≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21231 [HIGH] CWE-400 IP Helper Denial of Service Vulnerability IP Helper Denial of Service Vulnerability IP Helper Denial of Service Vulnerability

cvelistv5

CVE-2025-21330HIGHCVSS 7.5fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21330 [HIGH] CWE-400 CVE-2025-21330: Windows Remote Desktop Services Denial of Service Vulnerability Windows Remote Desktop Services Denial of Service Vulnerability

nvd

CVE-2025-21220HIGHCVSS 7.5fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21220 [HIGH] CWE-908 CVE-2025-21220: Microsoft Message Queuing Information Disclosure Vulnerability Microsoft Message Queuing Information Disclosure Vulnerability

nvd

CVE-2025-21331HIGHCVSS 7.3fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21331 [HIGH] CWE-59 CVE-2025-21331: Windows Installer Elevation of Privilege Vulnerability Windows Installer Elevation of Privilege Vulnerability

nvd

CVE-2025-21282HIGHCVSS 8.8fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21282 [HIGH] CWE-122 CVE-2025-21282: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21413HIGHCVSS 8.8fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21413 [HIGH] CWE-122 CVE-2025-21413: Windows Telephony Service Remote Code Execution Vulnerability Windows Telephony Service Remote Code Execution Vulnerability

nvd

CVE-2025-21275HIGHCVSS 7.8fixed in 10.0.20348.3091≥ 10.0.20348.0, < 10.0.20348.30912025-01-14

CVE-2025-21275 [HIGH] CWE-285 CVE-2025-21275: Windows App Package Installer Elevation of Privilege Vulnerability Windows App Package Installer Elevation of Privilege Vulnerability

nvd

← Previous45 / 141Next →