Microsoft Windows Server 2022 23H2 vulnerabilities

1,380 known vulnerabilities affecting microsoft/windows_server_2022_23h2.

Total CVEs

1,380

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL22HIGH958MEDIUM394LOW6

Vulnerabilities

Page 64 of 69

CVE-2024-26179HIGHCVSS 8.8fixed in 10.0.25398.8302024-04-09

CVE-2024-26179 [HIGH] CWE-122 CVE-2024-26179: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

nvd

CVE-2024-26229HIGHCVSS 7.8fixed in 10.0.25398.8302024-04-09

CVE-2024-26229 [HIGH] CWE-122 CVE-2024-26229: Windows CSC Service Elevation of Privilege Vulnerability Windows CSC Service Elevation of Privilege Vulnerability

nvd

CVE-2024-26226MEDIUMCVSS 6.5fixed in 10.0.25398.8302024-04-09

CVE-2024-26226 [MEDIUM] CWE-125 CVE-2024-26226: Windows Distributed File System (DFS) Information Disclosure Vulnerability Windows Distributed File System (DFS) Information Disclosure Vulnerability

nvd

CVE-2024-26231MEDIUMCVSS 6.6fixed in 10.0.25398.8302024-04-09

CVE-2024-26231 [MEDIUM] CWE-416 CVE-2024-26231: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26207MEDIUMCVSS 5.5fixed in 10.0.25398.8872024-04-09

CVE-2024-26207 [MEDIUM] CWE-125 CVE-2024-26207: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2024-26222MEDIUMCVSS 6.6fixed in 10.0.25398.8302024-04-09

CVE-2024-26222 [MEDIUM] CWE-416 CVE-2024-26222: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26172MEDIUMCVSS 5.5fixed in 10.0.25398.8302024-04-09

CVE-2024-26172 [MEDIUM] CWE-125 CVE-2024-26172: Windows DWM Core Library Information Disclosure Vulnerability Windows DWM Core Library Information Disclosure Vulnerability

nvd

CVE-2024-26220MEDIUMCVSS 5.0fixed in 10.0.25398.8302024-04-09

CVE-2024-26220 [MEDIUM] CWE-908 CVE-2024-26220: Windows Mobile Hotspot Information Disclosure Vulnerability Windows Mobile Hotspot Information Disclosure Vulnerability

nvd

CVE-2024-26233MEDIUMCVSS 6.6fixed in 10.0.25398.8302024-04-09

CVE-2024-26233 [MEDIUM] CWE-416 CVE-2024-26233: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26209MEDIUMCVSS 5.5fixed in 10.0.25398.8302024-04-09

CVE-2024-26209 [MEDIUM] CWE-908 CVE-2024-26209: Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

nvd

CVE-2024-28902MEDIUMCVSS 5.5fixed in 10.0.25398.8872024-04-09

CVE-2024-28902 [MEDIUM] CWE-126 CVE-2024-28902: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2024-28900MEDIUMCVSS 5.5fixed in 10.0.25398.8872024-04-09

CVE-2024-28900 [MEDIUM] CWE-126 CVE-2024-28900: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2024-26227MEDIUMCVSS 6.6fixed in 10.0.25398.8302024-04-09

CVE-2024-26227 [MEDIUM] CWE-416 CVE-2024-26227: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26224MEDIUMCVSS 6.6fixed in 10.0.25398.8302024-04-09

CVE-2024-26224 [MEDIUM] CWE-416 CVE-2024-26224: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26252MEDIUMCVSS 6.8fixed in 10.0.25398.8302024-04-09

CVE-2024-26252 [MEDIUM] CWE-822 CVE-2024-26252: Windows rndismp6.sys Remote Code Execution Vulnerability Windows rndismp6.sys Remote Code Execution Vulnerability

nvd

CVE-2024-26221MEDIUMCVSS 6.6fixed in 10.0.25398.8302024-04-09

CVE-2024-26221 [MEDIUM] CWE-416 CVE-2024-26221: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

CVE-2024-26255MEDIUMCVSS 5.5fixed in 10.0.25398.8302024-04-09

CVE-2024-26255 [MEDIUM] CWE-126 CVE-2024-26255: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2024-28901MEDIUMCVSS 5.5fixed in 10.0.25398.8302024-04-09

CVE-2024-28901 [MEDIUM] CWE-126 CVE-2024-28901: Windows Remote Access Connection Manager Information Disclosure Vulnerability Windows Remote Access Connection Manager Information Disclosure Vulnerability

nvd

CVE-2024-26253MEDIUMCVSS 6.8fixed in 10.0.25398.8302024-04-09

CVE-2024-26253 [MEDIUM] CWE-20 CVE-2024-26253: Windows rndismp6.sys Remote Code Execution Vulnerability Windows rndismp6.sys Remote Code Execution Vulnerability

nvd

CVE-2024-26223MEDIUMCVSS 6.6fixed in 10.0.25398.8302024-04-09

CVE-2024-26223 [MEDIUM] CWE-416 CVE-2024-26223: Windows DNS Server Remote Code Execution Vulnerability Windows DNS Server Remote Code Execution Vulnerability

nvd

← Previous64 / 69Next →