Microsoft Windows Server 2022 vulnerabilities

2,817 known vulnerabilities affecting microsoft/windows_server_2022.

Total CVEs

2,817

CISA KEV

102

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL74HIGH2015MEDIUM717LOW11

Vulnerabilities

Page 71 of 141

CVE-2024-26242HIGHCVSS 7.0fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26242 [HIGH] CWE-591 CVE-2024-26242: Windows Telephony Server Elevation of Privilege Vulnerability Windows Telephony Server Elevation of Privilege Vulnerability

nvd

CVE-2024-26232HIGHCVSS 7.3fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26232 [HIGH] CWE-843 CVE-2024-26232: Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

nvd

CVE-2024-28925HIGHCVSS 8.0≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-28925 [HIGH] CWE-121 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26200HIGHCVSS 8.8fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26200 [HIGH] CWE-122 CVE-2024-26200: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

nvd

CVE-2024-26230HIGHCVSS 7.8fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26230 [HIGH] CWE-416 CVE-2024-26230: Windows Telephony Server Elevation of Privilege Vulnerability Windows Telephony Server Elevation of Privilege Vulnerability

nvd

CVE-2024-26211HIGHCVSS 7.8fixed in 10.0.20348.2461≥ 10.0.20348.0, < 10.0.20348.24612024-04-09

CVE-2024-26211 [HIGH] CWE-122 CVE-2024-26211: Windows Remote Access Connection Manager Elevation of Privilege Vulnerability Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

nvd

CVE-2024-26241HIGHCVSS 7.8≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26241 [HIGH] CWE-416 Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability Win32k Elevation of Privilege Vulnerability

cvelistv5

CVE-2024-26179HIGHCVSS 8.8fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26179 [HIGH] CWE-122 CVE-2024-26179: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

nvd

CVE-2024-26229HIGHCVSS 7.8fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26229 [HIGH] CWE-122 CVE-2024-26229: Windows CSC Service Elevation of Privilege Vulnerability Windows CSC Service Elevation of Privilege Vulnerability

nvd

CVE-2024-26175HIGHCVSS 7.8≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26175 [HIGH] CWE-125 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26226MEDIUMCVSS 6.5fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26226 [MEDIUM] CWE-125 CVE-2024-26226: Windows Distributed File System (DFS) Information Disclosure Vulnerability Windows Distributed File System (DFS) Information Disclosure Vulnerability

nvd

CVE-2024-26168MEDIUMCVSS 6.8≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26168 [MEDIUM] CWE-122 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26231MEDIUMCVSS 6.6fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26231 [MEDIUM] CWE-416 CVE-2024-26231: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26207MEDIUMCVSS 5.5fixed in 10.0.20348.2461≥ 10.0.20348.0, < 10.0.20348.24612024-04-09

CVE-2024-26207 [MEDIUM] CWE-125 CVE-2024-26207: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2024-26222MEDIUMCVSS 6.6fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26222 [MEDIUM] CWE-416 CVE-2024-26222: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26172MEDIUMCVSS 5.5fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26172 [MEDIUM] CWE-125 CVE-2024-26172: Windows DWM Core Library Information Disclosure Vulnerability Windows DWM Core Library Information Disclosure Vulnerability

nvd

CVE-2024-26220MEDIUMCVSS 5.0fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26220 [MEDIUM] CWE-908 CVE-2024-26220: Windows Mobile Hotspot Information Disclosure Vulnerability Windows Mobile Hotspot Information Disclosure Vulnerability

nvd

CVE-2024-26233MEDIUMCVSS 6.6fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26233 [MEDIUM] CWE-416 CVE-2024-26233: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-28922MEDIUMCVSS 4.1≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-28922 [MEDIUM] CWE-284 Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability Secure Boot Security Feature Bypass Vulnerability

cvelistv5

CVE-2024-26209MEDIUMCVSS 5.5fixed in 10.0.20348.2402≥ 10.0.20348.0, < 10.0.20348.24022024-04-09

CVE-2024-26209 [MEDIUM] CWE-908 CVE-2024-26209: Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

nvd

← Previous71 / 141Next →