VYPR

Windows Server 2003

by Microsoft

Source repositories

CVEs (4,747)

  • CVE-2025-29959May 13, 2025
    risk 0.00cvss epss 0.01

    Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

  • CVE-2025-24062Apr 8, 2025
    risk 0.00cvss epss 0.01

    Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

  • CVE-2025-24060Apr 8, 2025
    risk 0.00cvss epss 0.01

    Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29812Apr 8, 2025
    risk 0.00cvss epss 0.01

    Untrusted pointer dereference in Windows Kernel Memory allows an authorized attacker to elevate privileges locally.

  • CVE-2025-29810Apr 8, 2025
    risk 0.00cvss epss 0.02

    Improper access control in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network.

  • CVE-2025-29808Apr 8, 2025
    risk 0.00cvss epss 0.00

    Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally.

  • CVE-2025-29809Apr 8, 2025
    risk 0.00cvss epss 0.04

    Insecure storage of sensitive information in Windows Kerberos allows an authorized attacker to bypass a security feature locally.

  • CVE-2025-27739Apr 8, 2025
    risk 0.00cvss epss 0.01

    Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27738Apr 8, 2025
    risk 0.00cvss epss 0.03

    Improper access control in Windows Resilient File System (ReFS) allows an authorized attacker to disclose information over a network.

  • CVE-2025-27737Apr 8, 2025
    risk 0.00cvss epss 0.01

    Improper input validation in Windows Security Zone Mapping allows an unauthorized attacker to bypass a security feature locally.

  • CVE-2025-27736Apr 8, 2025
    risk 0.00cvss epss 0.01

    Exposure of sensitive information to an unauthorized actor in Windows Power Dependency Coordinator allows an authorized attacker to disclose information locally.

  • CVE-2025-27735Apr 8, 2025
    risk 0.00cvss epss 0.00

    Insufficient verification of data authenticity in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.

  • CVE-2025-27732Apr 8, 2025
    risk 0.00cvss epss 0.00

    Sensitive data storage in improperly locked memory in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27731Apr 8, 2025
    risk 0.00cvss epss 0.01

    Improper input validation in OpenSSH for Windows allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27727Apr 8, 2025
    risk 0.00cvss epss 0.01

    Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27490Apr 8, 2025
    risk 0.00cvss epss 0.01

    Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27491Apr 8, 2025
    risk 0.00cvss epss 0.01

    Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network.

  • CVE-2025-27492Apr 8, 2025
    risk 0.00cvss epss 0.00

    Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Secure Channel allows an authorized attacker to elevate privileges locally.

  • CVE-2025-27487Apr 8, 2025
    risk 0.00cvss epss 0.01

    Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network.

  • CVE-2025-27482Apr 8, 2025
    risk 0.00cvss epss 0.02

    Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.

Page 195 of 238