VYPR

Windows Server 2025

by Microsoft

CVEs (1,296)

  • CVE-2026-24296Mar 10, 2026
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Association Service allows an authorized attacker to elevate privileges locally.

  • CVE-2026-24295Mar 10, 2026
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Association Service allows an authorized attacker to elevate privileges locally.

  • CVE-2026-24294Mar 10, 2026
    risk 0.00cvss epss 0.03

    Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally.

  • CVE-2026-24293Mar 10, 2026
    risk 0.00cvss epss 0.00

    Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

  • CVE-2026-24292Mar 10, 2026
    risk 0.00cvss epss 0.00

    Use after free in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally.

  • CVE-2026-24291Mar 10, 2026
    risk 0.00cvss epss 0.03

    Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker.exe) allows an authorized attacker to elevate privileges locally.

  • CVE-2026-24290Mar 10, 2026
    risk 0.00cvss epss 0.00

    Improper access control in Windows Projected File System allows an authorized attacker to elevate privileges locally.

  • CVE-2026-24289Mar 10, 2026
    risk 0.00cvss epss 0.04

    Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2026-24287Mar 10, 2026
    risk 0.00cvss epss 0.00

    External control of file name or path in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2026-24283Mar 10, 2026
    risk 0.00cvss epss 0.00

    Heap-based buffer overflow in Windows File Server allows an authorized attacker to elevate privileges locally.

  • CVE-2026-23673Mar 10, 2026
    risk 0.00cvss epss 0.00

    Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.

  • CVE-2026-23672Mar 10, 2026
    risk 0.00cvss epss 0.00

    Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability

  • CVE-2026-23671Mar 10, 2026
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to elevate privileges locally.

  • CVE-2026-23669Mar 10, 2026
    risk 0.00cvss epss 0.01

    Use after free in RPC Runtime allows an authorized attacker to execute code over a network.

  • CVE-2026-20846Feb 10, 2026
    risk 0.00cvss epss 0.01

    Buffer over-read in Windows GDI+ allows an unauthorized attacker to deny service over a network.

  • CVE-2026-21222Feb 10, 2026
    risk 0.00cvss epss 0.01

    Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.

  • CVE-2026-21231Feb 10, 2026
    risk 0.00cvss epss 0.02

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2026-21232Feb 10, 2026
    risk 0.00cvss epss 0.00

    Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally.

  • CVE-2026-21237Feb 10, 2026
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally.

  • CVE-2026-21238Feb 10, 2026
    risk 0.00cvss epss 0.03

    Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

Page 21 of 65