Windows Server 2003
by Microsoft
Source repositories
CVEs (4,742)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-40413 | Hig | 0.48 | 7.4 | 0.00 | May 12, 2026 | Windows TCP/IP Denial of Service Vulnerability | ||
| CVE-2026-32156 | Hig | 0.48 | 7.4 | 0.00 | Apr 14, 2026 | Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-55687 | Hig | 0.48 | 7.4 | 0.00 | Oct 14, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Resilient File System (ReFS) allows an unauthorized attacker to elevate privileges locally. | ||
| CVE-2025-55335 | Hig | 0.48 | 7.4 | 0.00 | Oct 14, 2025 | Use after free in Windows NTFS allows an unauthorized attacker to elevate privileges locally. | ||
| CVE-2025-49690 | Hig | 0.48 | 7.4 | 0.00 | Jul 8, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an unauthorized attacker to elevate privileges locally. | ||
| CVE-2025-24991 | Med | 0.48 | 5.5 | 0.02 | KEV | Mar 11, 2025 | Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally. | |
| CVE-2025-21331 | Hig | 0.48 | 7.3 | 0.01 | Jan 14, 2025 | Windows Installer Elevation of Privilege Vulnerability | ||
| CVE-2024-49107 | Hig | 0.48 | 7.3 | 0.02 | Dec 12, 2024 | WmsRepair Service Elevation of Privilege Vulnerability | ||
| CVE-2024-43553 | Hig | 0.48 | 7.4 | 0.01 | Oct 8, 2024 | NT OS Kernel Elevation of Privilege Vulnerability | ||
| CVE-2024-43550 | Hig | 0.48 | 7.4 | 0.01 | Oct 8, 2024 | Windows Secure Channel Spoofing Vulnerability | ||
| CVE-2024-43529 | Hig | 0.48 | 7.3 | 0.01 | Oct 8, 2024 | Windows Print Spooler Elevation of Privilege Vulnerability | ||
| CVE-2024-43454 | Hig | 0.48 | 7.1 | 0.21 | Sep 10, 2024 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability | ||
| CVE-2024-38217 | Med | 0.48 | 5.4 | 0.10 | KEV | Sep 10, 2024 | Windows Mark of the Web Security Feature Bypass Vulnerability | |
| CVE-2024-38202 | Hig | 0.48 | 7.3 | 0.02 | Aug 8, 2024 | Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security… | ||
| CVE-2024-38033 | Hig | 0.48 | 7.3 | 0.01 | Jul 9, 2024 | PowerShell Elevation of Privilege Vulnerability | ||
| CVE-2024-30081 | Hig | 0.48 | 7.1 | 0.24 | Jul 9, 2024 | Windows NTLM Spoofing Vulnerability | ||
| CVE-2024-30093 | Hig | 0.48 | 7.3 | 0.01 | Jun 11, 2024 | Windows Storage Elevation of Privilege Vulnerability | ||
| CVE-2024-26232 | Hig | 0.48 | 7.3 | 0.01 | Apr 9, 2024 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2024-26216 | Hig | 0.48 | 7.3 | 0.01 | Apr 9, 2024 | Windows File Server Resource Management Service Elevation of Privilege Vulnerability | ||
| CVE-2024-26194 | Hig | 0.48 | 7.4 | 0.00 | Apr 9, 2024 | Secure Boot Security Feature Bypass Vulnerability |
- risk 0.48cvss 7.4epss 0.00
Windows TCP/IP Denial of Service Vulnerability
- risk 0.48cvss 7.4epss 0.00
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to execute code locally.
- risk 0.48cvss 7.4epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Resilient File System (ReFS) allows an unauthorized attacker to elevate privileges locally.
- risk 0.48cvss 7.4epss 0.00
Use after free in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
- risk 0.48cvss 7.4epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an unauthorized attacker to elevate privileges locally.
- risk 0.48cvss 5.5epss 0.02
Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.
- risk 0.48cvss 7.3epss 0.01
Windows Installer Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.02
WmsRepair Service Elevation of Privilege Vulnerability
- risk 0.48cvss 7.4epss 0.01
NT OS Kernel Elevation of Privilege Vulnerability
- risk 0.48cvss 7.4epss 0.01
Windows Secure Channel Spoofing Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows Print Spooler Elevation of Privilege Vulnerability
- risk 0.48cvss 7.1epss 0.21
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
- risk 0.48cvss 5.4epss 0.10
Windows Mark of the Web Security Feature Bypass Vulnerability
- risk 0.48cvss 7.3epss 0.02
Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security…
- risk 0.48cvss 7.3epss 0.01
PowerShell Elevation of Privilege Vulnerability
- risk 0.48cvss 7.1epss 0.24
Windows NTLM Spoofing Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows Storage Elevation of Privilege Vulnerability
- risk 0.48cvss 7.3epss 0.01
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.48cvss 7.3epss 0.01
Windows File Server Resource Management Service Elevation of Privilege Vulnerability
- risk 0.48cvss 7.4epss 0.00
Secure Boot Security Feature Bypass Vulnerability
Page 125 of 238