Windows Server 2003
by Microsoft
Source repositories
CVEs (4,742)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-58737 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Windows Remote Desktop allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-58736 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-58735 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-58734 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-58733 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-58732 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-58731 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-58730 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-58725 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Heap-based buffer overflow in Windows COM allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55689 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55686 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55685 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55681 | Hig | 0.46 | 7.0 | 0.05 | Oct 14, 2025 | Out-of-bounds read in Windows DWM allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55678 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55340 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Improper authentication in Windows Remote Desktop Protocol allows an authorized attacker to bypass a security feature locally. | ||
| CVE-2025-55331 | Hig | 0.46 | 7.0 | 0.00 | Oct 14, 2025 | Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-59220 | Hig | 0.46 | 7.0 | 0.00 | Sep 18, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-55223 | Hig | 0.46 | 7.0 | 0.00 | Sep 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-54115 | Hig | 0.46 | 7.0 | 0.00 | Sep 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-54114 | Hig | 0.46 | 7.0 | 0.00 | Sep 9, 2025 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally. |
- risk 0.46cvss 7.0epss 0.00
Use after free in Windows Remote Desktop allows an unauthorized attacker to execute code locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
- risk 0.46cvss 7.0epss 0.00
Heap-based buffer overflow in Windows COM allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.05
Out-of-bounds read in Windows DWM allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Improper authentication in Windows Remote Desktop Protocol allows an authorized attacker to bypass a security feature locally.
- risk 0.46cvss 7.0epss 0.00
Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
- risk 0.46cvss 7.0epss 0.00
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally.
Page 134 of 238