Windows Server 2003
by Microsoft
Source repositories
CVEs (4,742)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-54911 | Hig | 0.47 | 7.3 | 0.01 | Sep 9, 2025 | Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-54116 | Hig | 0.47 | 7.3 | 0.00 | Sep 9, 2025 | Improper access control in Windows MultiPoint Services allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-50161 | Hig | 0.47 | 7.3 | 0.01 | Aug 12, 2025 | Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-50159 | Hig | 0.47 | 7.3 | 0.01 | Aug 12, 2025 | Use after free in Remote Access Point-to-Point Protocol (PPP) EAP-TLS allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-50154 | Med | 0.47 | 6.5 | 0.26 | Aug 12, 2025 | Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network. | ||
| CVE-2025-49682 | Hig | 0.47 | 7.3 | 0.00 | Jul 8, 2025 | Use after free in Windows Media allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-49680 | Hig | 0.47 | 7.3 | 0.00 | Jul 8, 2025 | Improper link resolution before file access ('link following') in Windows Performance Recorder allows an authorized attacker to deny service locally. | ||
| CVE-2025-49666 | Hig | 0.47 | 7.2 | 0.01 | Jul 8, 2025 | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to execute code over a network. | ||
| CVE-2025-32721 | Hig | 0.47 | 7.3 | 0.01 | Jun 10, 2025 | Improper link resolution before file access ('link following') in Windows Recovery Driver allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-24071 | Med | 0.47 | 6.5 | 0.25 | Mar 11, 2025 | Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network. | ||
| CVE-2024-49091 | Hig | 0.47 | 7.2 | 0.02 | Dec 12, 2024 | Windows Domain Name Service Remote Code Execution Vulnerability | ||
| CVE-2024-49089 | Hig | 0.47 | 7.2 | 0.02 | Dec 12, 2024 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | ||
| CVE-2024-38239 | Hig | 0.47 | 7.2 | 0.02 | Sep 10, 2024 | Windows Kerberos Elevation of Privilege Vulnerability | ||
| CVE-2024-38044 | Hig | 0.47 | 7.2 | 0.02 | Jul 9, 2024 | DHCP Server Service Remote Code Execution Vulnerability | ||
| CVE-2024-38028 | Hig | 0.47 | 7.2 | 0.02 | Jul 9, 2024 | Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability | ||
| CVE-2024-38025 | Hig | 0.47 | 7.2 | 0.02 | Jul 9, 2024 | Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability | ||
| CVE-2024-38019 | Hig | 0.47 | 7.2 | 0.02 | Jul 9, 2024 | Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability | ||
| CVE-2024-29066 | Hig | 0.47 | 7.2 | 0.01 | Apr 9, 2024 | Windows Distributed File System (DFS) Remote Code Execution Vulnerability | ||
| CVE-2024-26233 | Hig | 0.47 | 7.2 | 0.02 | Apr 9, 2024 | Windows DNS Server Remote Code Execution Vulnerability | ||
| CVE-2024-26231 | Hig | 0.47 | 7.2 | 0.02 | Apr 9, 2024 | Windows DNS Server Remote Code Execution Vulnerability |
- risk 0.47cvss 7.3epss 0.01
Use after free in Windows BitLocker allows an authorized attacker to elevate privileges locally.
- risk 0.47cvss 7.3epss 0.00
Improper access control in Windows MultiPoint Services allows an authorized attacker to elevate privileges locally.
- risk 0.47cvss 7.3epss 0.01
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
- risk 0.47cvss 7.3epss 0.01
Use after free in Remote Access Point-to-Point Protocol (PPP) EAP-TLS allows an authorized attacker to elevate privileges locally.
- risk 0.47cvss 6.5epss 0.26
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.
- risk 0.47cvss 7.3epss 0.00
Use after free in Windows Media allows an authorized attacker to elevate privileges locally.
- risk 0.47cvss 7.3epss 0.00
Improper link resolution before file access ('link following') in Windows Performance Recorder allows an authorized attacker to deny service locally.
- risk 0.47cvss 7.2epss 0.01
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to execute code over a network.
- risk 0.47cvss 7.3epss 0.01
Improper link resolution before file access ('link following') in Windows Recovery Driver allows an authorized attacker to elevate privileges locally.
- risk 0.47cvss 6.5epss 0.25
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.
- risk 0.47cvss 7.2epss 0.02
Windows Domain Name Service Remote Code Execution Vulnerability
- risk 0.47cvss 7.2epss 0.02
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
- risk 0.47cvss 7.2epss 0.02
Windows Kerberos Elevation of Privilege Vulnerability
- risk 0.47cvss 7.2epss 0.02
DHCP Server Service Remote Code Execution Vulnerability
- risk 0.47cvss 7.2epss 0.02
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
- risk 0.47cvss 7.2epss 0.02
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
- risk 0.47cvss 7.2epss 0.02
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
- risk 0.47cvss 7.2epss 0.01
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
- risk 0.47cvss 7.2epss 0.02
Windows DNS Server Remote Code Execution Vulnerability
- risk 0.47cvss 7.2epss 0.02
Windows DNS Server Remote Code Execution Vulnerability
Page 128 of 238