Windows_server_2022 - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Windows_server_2022
(Microsoft)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	2052

Date	Id	Summary	Products	Score	Patch	Annotated
2025-04-08	CVE-2025-27735	Insufficient verification of data authenticity in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-27736	Exposure of sensitive information to an unauthorized actor in Windows Power Dependency Coordinator allows an authorized attacker to disclose information locally.	Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-27738	Improper access control in Windows Resilient File System (ReFS) allows an authorized attacker to disclose information over a network.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-27740	Weak authentication in Windows Active Directory Certificate Services allows an authorized attacker to elevate privileges over a network.	Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-27739	Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.	Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-27742	Out-of-bounds read in Windows NTFS allows an unauthorized attacker to disclose information locally.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-29808	Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally.	Windows_server_2022	N/A
2025-04-08	CVE-2025-29809	Insecure storage of sensitive information in Windows Kerberos allows an authorized attacker to bypass a security feature locally.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-29810	Improper access control in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network.	Windows_10_1507, Windows_10_1607, Windows_10_1809, Windows_10_21h2, Windows_10_22h2, Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2008, Windows_server_2012, Windows_server_2016, Windows_server_2019, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A
2025-04-08	CVE-2025-29812	Untrusted pointer dereference in Windows Kernel Memory allows an authorized attacker to elevate privileges locally.	Windows_11_22h2, Windows_11_23h2, Windows_11_24h2, Windows_server_2022, Windows_server_2022_23h2, Windows_server_2025	N/A