Microsoft Windows Server 2022 vulnerabilities

2,817 known vulnerabilities affecting microsoft/windows_server_2022.

Total CVEs

2,817

CISA KEV

102

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL74HIGH2015MEDIUM717LOW11

Vulnerabilities

Page 53 of 141

CVE-2024-43640HIGHCVSS 7.8fixed in 10.0.20348.2849≥ 10.0.20348.0, < 10.0.20348.28492024-11-12

CVE-2024-43640 [HIGH] CWE-415 CVE-2024-43640: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-38203MEDIUMCVSS 5.5fixed in 10.0.20348.2849≥ 10.0.20348.0, < 10.0.20348.28492024-11-12

CVE-2024-38203 [MEDIUM] CWE-693 CVE-2024-38203: Windows Package Library Manager Information Disclosure Vulnerability Windows Package Library Manager Information Disclosure Vulnerability

nvd

CVE-2024-43634MEDIUMCVSS 6.8fixed in 10.0.20348.2849≥ 10.0.20348.0, < 10.0.20348.28492024-11-12

CVE-2024-43634 [MEDIUM] CWE-125 CVE-2024-43634: Windows USB Video Class System Driver Elevation of Privilege Vulnerability Windows USB Video Class System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43449MEDIUMCVSS 6.8fixed in 10.0.20348.2849≥ 10.0.20348.0, < 10.0.20348.28492024-11-12

CVE-2024-43449 [MEDIUM] CWE-125 CVE-2024-43449: Windows USB Video Class System Driver Elevation of Privilege Vulnerability Windows USB Video Class System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43637MEDIUMCVSS 6.8fixed in 10.0.20348.2849≥ 10.0.20348.0, < 10.0.20348.28492024-11-12

CVE-2024-43637 [MEDIUM] CWE-125 CVE-2024-43637: Windows USB Video Class System Driver Elevation of Privilege Vulnerability Windows USB Video Class System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43638MEDIUMCVSS 6.8fixed in 10.0.20348.2849≥ 10.0.20348.0, < 10.0.20348.28492024-11-12

CVE-2024-43638 [MEDIUM] CWE-125 CVE-2024-43638: Windows USB Video Class System Driver Elevation of Privilege Vulnerability Windows USB Video Class System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43643MEDIUMCVSS 6.8fixed in 10.0.20348.2849≥ 10.0.20348.0, < 10.0.20348.28492024-11-12

CVE-2024-43643 [MEDIUM] CWE-125 CVE-2024-43643: Windows USB Video Class System Driver Elevation of Privilege Vulnerability Windows USB Video Class System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43451MEDIUMCVSS 6.5KEV≥ 10.0.20348.0, < 10.0.20348.28492024-11-12

CVE-2024-43451 [MEDIUM] CWE-73 NTLM Hash Disclosure Spoofing Vulnerability NTLM Hash Disclosure Spoofing Vulnerability NTLM Hash Disclosure Spoofing Vulnerability

cvelistv5

CVE-2024-38124CRITICALCVSS 9.0fixed in 10.0.20348.2762≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-38124 [CRITICAL] CWE-287 CVE-2024-38124: Windows Netlogon Elevation of Privilege Vulnerability Windows Netlogon Elevation of Privilege Vulnerability

nvd

CVE-2024-43545HIGHCVSS 7.5fixed in 10.0.20348.2762≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-43545 [HIGH] CWE-400 CVE-2024-43545: Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability

nvd

CVE-2024-43556HIGHCVSS 7.8fixed in 10.0.20348.2762≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-43556 [HIGH] CWE-416 CVE-2024-43556: Windows Graphics Component Elevation of Privilege Vulnerability Windows Graphics Component Elevation of Privilege Vulnerability

nvd

CVE-2024-43611HIGHCVSS 8.8fixed in 10.0.20348.2762≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-43611 [HIGH] CWE-20 CVE-2024-43611: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

nvd

CVE-2024-43541HIGHCVSS 7.5fixed in 10.0.20348.2762≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-43541 [HIGH] CWE-400 CVE-2024-43541: Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability

nvd

CVE-2024-43567HIGHCVSS 7.5≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-43567 [HIGH] CWE-770 Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability Windows Hyper-V Denial of Service Vulnerability

cvelistv5

CVE-2024-37979HIGHCVSS 7.8fixed in 10.0.20348.2762≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-37979 [HIGH] CWE-822 CVE-2024-37979: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2024-43574HIGHCVSS 8.3fixed in 10.0.20348.2762≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-43574 [HIGH] CWE-416 CVE-2024-43574: Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability

nvd

CVE-2024-43550HIGHCVSS 7.4≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-43550 [HIGH] CWE-295 Windows Secure Channel Spoofing Vulnerability Windows Secure Channel Spoofing Vulnerability Windows Secure Channel Spoofing Vulnerability

cvelistv5

CVE-2024-43535HIGHCVSS 7.0fixed in 10.0.20348.2762≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-43535 [HIGH] CWE-416 CVE-2024-43535: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43518HIGHCVSS 8.8fixed in 10.0.20348.2762≥ 10.0.20348.0, < 10.0.20348.27622024-10-08

CVE-2024-43518 [HIGH] CWE-122 CVE-2024-43518: Windows Telephony Server Remote Code Execution Vulnerability Windows Telephony Server Remote Code Execution Vulnerability

nvd

CVE-2024-43528HIGHCVSS 7.8fixed in 10.0.20348.2762≥ 10.0.20348.0, < 10.0.20348.28492024-10-08

CVE-2024-43528 [HIGH] CWE-122 CVE-2024-43528: Windows Secure Kernel Mode Elevation of Privilege Vulnerability Windows Secure Kernel Mode Elevation of Privilege Vulnerability

nvd

← Previous53 / 141Next →