Microsoft Windows Server 2022 23H2 vulnerabilities

1,380 known vulnerabilities affecting microsoft/windows_server_2022_23h2.

Total CVEs

1,380

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL22HIGH958MEDIUM394LOW6

Vulnerabilities

Page 48 of 69

CVE-2024-43630HIGHCVSS 7.8fixed in 10.0.25398.12512024-11-12

CVE-2024-43630 [HIGH] CWE-121 CVE-2024-43630: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2024-49039HIGHCVSS 8.8KEVfixed in 10.0.25398.12512024-11-12

CVE-2024-49039 [HIGH] CWE-287 CVE-2024-49039: Windows Task Scheduler Elevation of Privilege Vulnerability Windows Task Scheduler Elevation of Privilege Vulnerability

nvd

CVE-2024-43631HIGHCVSS 7.8fixed in 10.0.25398.12512024-11-12

CVE-2024-43631 [HIGH] CWE-822 CVE-2024-43631: Windows Secure Kernel Mode Elevation of Privilege Vulnerability Windows Secure Kernel Mode Elevation of Privilege Vulnerability

nvd

CVE-2024-43623HIGHCVSS 7.8fixed in 10.0.25398.12512024-11-12

CVE-2024-43623 [HIGH] CWE-190 CVE-2024-43623: Windows NT OS Kernel Elevation of Privilege Vulnerability Windows NT OS Kernel Elevation of Privilege Vulnerability

nvd

CVE-2024-43626HIGHCVSS 7.8fixed in 10.0.25398.12512024-11-12

CVE-2024-43626 [HIGH] CWE-122 CVE-2024-43626: Windows Telephony Service Elevation of Privilege Vulnerability Windows Telephony Service Elevation of Privilege Vulnerability

nvd

CVE-2024-38203MEDIUMCVSS 5.5fixed in 10.0.25398.12512024-11-12

CVE-2024-38203 [MEDIUM] CWE-693 CVE-2024-38203: Windows Package Library Manager Information Disclosure Vulnerability Windows Package Library Manager Information Disclosure Vulnerability

nvd

CVE-2024-38264MEDIUMCVSS 5.9fixed in 10.0.25398.12512024-11-12

CVE-2024-38264 [MEDIUM] CWE-591 CVE-2024-38264: Microsoft Virtual Hard Disk (VHDX) Denial of Service Vulnerability Microsoft Virtual Hard Disk (VHDX) Denial of Service Vulnerability

nvd

CVE-2024-43634MEDIUMCVSS 6.8fixed in 10.0.25398.12512024-11-12

CVE-2024-43634 [MEDIUM] CWE-125 CVE-2024-43634: Windows USB Video Class System Driver Elevation of Privilege Vulnerability Windows USB Video Class System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43449MEDIUMCVSS 6.8fixed in 10.0.25398.12512024-11-12

CVE-2024-43449 [MEDIUM] CWE-125 CVE-2024-43449: Windows USB Video Class System Driver Elevation of Privilege Vulnerability Windows USB Video Class System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43637MEDIUMCVSS 6.8fixed in 10.0.25398.12512024-11-12

CVE-2024-43637 [MEDIUM] CWE-125 CVE-2024-43637: Windows USB Video Class System Driver Elevation of Privilege Vulnerability Windows USB Video Class System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43638MEDIUMCVSS 6.8fixed in 10.0.25398.12512024-11-12

CVE-2024-43638 [MEDIUM] CWE-125 CVE-2024-43638: Windows USB Video Class System Driver Elevation of Privilege Vulnerability Windows USB Video Class System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43643MEDIUMCVSS 6.8fixed in 10.0.25398.12512024-11-12

CVE-2024-43643 [MEDIUM] CWE-125 CVE-2024-43643: Windows USB Video Class System Driver Elevation of Privilege Vulnerability Windows USB Video Class System Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-38124CRITICALCVSS 9.0fixed in 10.0.25398.11892024-10-08

CVE-2024-38124 [CRITICAL] CWE-287 CVE-2024-38124: Windows Netlogon Elevation of Privilege Vulnerability Windows Netlogon Elevation of Privilege Vulnerability

nvd

CVE-2024-43545HIGHCVSS 7.5fixed in 10.0.25398.11892024-10-08

CVE-2024-43545 [HIGH] CWE-400 CVE-2024-43545: Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability

nvd

CVE-2024-43556HIGHCVSS 7.8fixed in 10.0.25398.11892024-10-08

CVE-2024-43556 [HIGH] CWE-416 CVE-2024-43556: Windows Graphics Component Elevation of Privilege Vulnerability Windows Graphics Component Elevation of Privilege Vulnerability

nvd

CVE-2024-43611HIGHCVSS 8.8fixed in 10.0.25398.11892024-10-08

CVE-2024-43611 [HIGH] CWE-20 CVE-2024-43611: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

nvd

CVE-2024-43541HIGHCVSS 7.5fixed in 10.0.25398.11892024-10-08

CVE-2024-43541 [HIGH] CWE-400 CVE-2024-43541: Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability

nvd

CVE-2024-43574HIGHCVSS 8.3fixed in 10.0.25398.11892024-10-08

CVE-2024-43574 [HIGH] CWE-416 CVE-2024-43574: Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability Microsoft Speech Application Programming Interface (SAPI) Remote Code Execution Vulnerability

nvd

CVE-2024-43535HIGHCVSS 7.0fixed in 10.0.25398.11892024-10-08

CVE-2024-43535 [HIGH] CWE-416 CVE-2024-43535: Windows Kernel-Mode Driver Elevation of Privilege Vulnerability Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

nvd

CVE-2024-43518HIGHCVSS 8.8fixed in 10.0.25398.11892024-10-08

CVE-2024-43518 [HIGH] CWE-122 CVE-2024-43518: Windows Telephony Server Remote Code Execution Vulnerability Windows Telephony Server Remote Code Execution Vulnerability

nvd

← Previous48 / 69Next →