Microsoft

Windows Server 2022 23h2

1353 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-64673

  • EPSS 0.06%
  • Published 09.12.2025 17:55:46
  • Last modified 10.12.2025 19:07:21

Improper access control in Storvsp.sys Driver allows an authorized attacker to elevate privileges locally.

6.5

CVE-2025-64670

  • EPSS 0.16%
  • Published 09.12.2025 17:55:45
  • Last modified 10.12.2025 19:10:34

Exposure of sensitive information to an unauthorized actor in Microsoft Graphics Component allows an authorized attacker to disclose information over a network.

7

CVE-2025-62573

  • EPSS 0.05%
  • Published 09.12.2025 17:55:43
  • Last modified 10.12.2025 19:17:02

Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.

7.8

CVE-2025-62571

  • EPSS 0.09%
  • Published 09.12.2025 17:55:41
  • Last modified 10.12.2025 19:21:02

Improper input validation in Windows Installer allows an authorized attacker to elevate privileges locally.

6.5

CVE-2025-62473

  • EPSS 0.07%
  • Published 09.12.2025 17:55:38
  • Last modified 12.12.2025 20:04:25

Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

8.8

CVE-2025-62549

  • EPSS 0.08%
  • Published 09.12.2025 17:55:38
  • Last modified 12.12.2025 20:04:33

Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

7.8

CVE-2025-62472

Media report
  • EPSS 0.2%
  • Published 09.12.2025 17:55:37
  • Last modified 12.12.2025 20:04:21

Use of uninitialized resource in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.

7.8

CVE-2025-62470

Media report
  • EPSS 0.06%
  • Published 09.12.2025 17:55:36
  • Last modified 12.12.2025 20:04:17

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8

CVE-2025-62466

  • EPSS 0.06%
  • Published 09.12.2025 17:55:35
  • Last modified 12.12.2025 20:04:00

Null pointer dereference in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally.

7.8

CVE-2025-62457

  • EPSS 0.06%
  • Published 09.12.2025 17:55:34
  • Last modified 12.12.2025 20:03:35

Out-of-bounds read in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.