Microsoft Windows Server 2025 vulnerabilities

1,143 known vulnerabilities affecting microsoft/windows_server_2025.

Total CVEs

1,143

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL14HIGH797MEDIUM327LOW5

Vulnerabilities

Page 44 of 58

CVE-2025-25008HIGHCVSS 7.1fixed in 10.0.26100.3476≥ 10.0.26100.0, < 10.0.26100.34762025-03-11

CVE-2025-25008 [HIGH] CWE-59 CVE-2025-25008: Improper link resolution before file access ('link following') in Microsoft Windows allows an author Improper link resolution before file access ('link following') in Microsoft Windows allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-24064HIGHCVSS 8.1fixed in 10.0.26100.3403fixed in 10.0.26100.3476+1 more2025-03-11

CVE-2025-24064 [HIGH] CWE-416 CVE-2025-24064: Use after free in DNS Server allows an unauthorized attacker to execute code over a network. Use after free in DNS Server allows an unauthorized attacker to execute code over a network.

nvd

CVE-2025-24067HIGHCVSS 7.8fixed in 10.0.26100.3403fixed in 10.0.26100.3476+1 more2025-03-11

CVE-2025-24067 [HIGH] CWE-122 CVE-2025-24067: Heap-based buffer overflow in Microsoft Streaming Service allows an authorized attacker to elevate p Heap-based buffer overflow in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-24048HIGHCVSS 7.8fixed in 10.0.26100.3403fixed in 10.0.26100.3476+1 more2025-03-11

CVE-2025-24048 [HIGH] CWE-122 CVE-2025-24048: Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privile Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-24050HIGHCVSS 7.8fixed in 10.0.26100.3403fixed in 10.0.26100.3476+1 more2025-03-11

CVE-2025-24050 [HIGH] CWE-122 CVE-2025-24050: Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privile Heap-based buffer overflow in Role: Windows Hyper-V allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-24044HIGHCVSS 7.8fixed in 10.0.26100.3403≥ 10.0.26100.0, < 10.0.26100.34762025-03-11

CVE-2025-24044 [HIGH] CWE-416 CVE-2025-24044: Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges Use after free in Windows Win32 Kernel Subsystem allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-24059HIGHCVSS 7.8fixed in 10.0.26100.3403fixed in 10.0.26100.3476+1 more2025-03-11

CVE-2025-24059 [HIGH] CWE-125 CVE-2025-24059: Incorrect conversion between numeric types in Windows Common Log File System Driver allows an author Incorrect conversion between numeric types in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-21180HIGHCVSS 7.8fixed in 10.0.26100.3403fixed in 10.0.26100.3476+1 more2025-03-11

CVE-2025-21180 [HIGH] CWE-122 CVE-2025-21180: Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute c Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute code locally.

nvd

CVE-2025-24056HIGHCVSS 8.8fixed in 10.0.26100.3403fixed in 10.0.26100.3476+1 more2025-03-11

CVE-2025-24056 [HIGH] CWE-122 CVE-2025-24056: Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute co Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network.

nvd

CVE-2025-24061HIGHCVSS 7.8fixed in 10.0.26100.3403≥ 10.0.26100.0, < 10.0.26100.34762025-03-11

CVE-2025-24061 [HIGH] CWE-693 CVE-2025-24061: Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to by Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature locally.

nvd

CVE-2025-24076HIGHCVSS 7.3PoCfixed in 10.0.26100.3403≥ 10.0.26100.0, < 10.0.26100.34762025-03-11

CVE-2025-24076 [HIGH] CWE-284 CVE-2025-24076: Improper access control in Windows Cross Device Service allows an authorized attacker to elevate pri Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-24995HIGHCVSS 7.8fixed in 10.0.26100.3403≥ 10.0.26100.0, < 10.0.26100.34762025-03-11

CVE-2025-24995 [HIGH] CWE-122 CVE-2025-24995: Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacke Heap-based buffer overflow in Kernel Streaming WOW Thunk Service Driver allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-24066HIGHCVSS 7.8fixed in 10.0.26100.3403fixed in 10.0.26100.3476+1 more2025-03-11

CVE-2025-24066 [HIGH] CWE-122 CVE-2025-24066: Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to elevate p Heap-based buffer overflow in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-24084HIGHCVSS 8.4fixed in 10.0.26100.3403≥ 10.0.26100.0, < 10.0.26100.34762025-03-11

CVE-2025-24084 [HIGH] CWE-822 CVE-2025-24084: Untrusted pointer dereference in Windows Subsystem for Linux allows an unauthorized attacker to exec Untrusted pointer dereference in Windows Subsystem for Linux allows an unauthorized attacker to execute code locally.

nvd

CVE-2025-24072HIGHCVSS 7.8fixed in 10.0.26100.3403≥ 10.0.26100.0, < 10.0.26100.34762025-03-11

CVE-2025-24072 [HIGH] CWE-416 CVE-2025-24072: Use after free in Microsoft Local Security Authority Server (lsasrv) allows an authorized attacker t Use after free in Microsoft Local Security Authority Server (lsasrv) allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-24046HIGHCVSS 7.8fixed in 10.0.26100.3403fixed in 10.0.26100.3476+1 more2025-03-11

CVE-2025-24046 [HIGH] CWE-416 CVE-2025-24046: Use after free in Microsoft Streaming Service allows an authorized attacker to elevate privileges lo Use after free in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally.

nvd

CVE-2025-24055MEDIUMCVSS 4.3fixed in 10.0.26100.3403fixed in 10.0.26100.3476+1 more2025-03-11

CVE-2025-24055 [MEDIUM] CWE-125 CVE-2025-24055: Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack.

nvd

CVE-2025-24991MEDIUMCVSS 5.5KEVfixed in 10.0.26100.3403≥ 10.0.26100.0, < 10.0.26100.34762025-03-11

CVE-2025-24991 [MEDIUM] CWE-125 CVE-2025-24991: Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally. Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.

nvd

CVE-2025-24054MEDIUMCVSS 5.4KEVPoCfixed in 10.0.26100.3403≥ 10.0.26100.0, < 10.0.26100.34762025-03-11

CVE-2025-24054 [MEDIUM] CWE-73 CVE-2025-24054: External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spo External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

nvd

CVE-2025-24992MEDIUMCVSS 5.5fixed in 10.0.26100.3403≥ 10.0.26100.0, < 10.0.26100.34762025-03-11

CVE-2025-24992 [MEDIUM] CWE-126 CVE-2025-24992: Buffer over-read in Windows NTFS allows an unauthorized attacker to disclose information locally. Buffer over-read in Windows NTFS allows an unauthorized attacker to disclose information locally.

nvd

← Previous44 / 58Next →