Windows 7 Microsoft Windows 7

Do you want an email whenever new security vulnerabilities are reported in Microsoft Windows 7?

By the Year

In 2022 there have been 197 vulnerabilities in Microsoft Windows 7 with an average score of 7.5 out of ten. Last year Windows 7 had 253 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Windows 7 in 2022 could surpass last years number. Last year, the average CVE base score was greater by 0.17

Year Vulnerabilities Average Score
2022 197 7.52
2021 253 7.69
2020 386 7.42
2019 321 7.25
2018 163 6.52

It may take a day or so for new Windows 7 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Windows 7 Security Vulnerabilities

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

CVE-2022-34702 8.1 - High - August 09, 2022

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34714, CVE-2022-35745, CVE-2022-35752, CVE-2022-35753, CVE-2022-35766, CVE-2022-35767, CVE-2022-35794.

Race Condition

Windows Fax Service Elevation of Privilege Vulnerability.

CVE-2022-34690 7.1 - High - August 09, 2022

Windows Fax Service Elevation of Privilege Vulnerability.

Active Directory Domain Services Elevation of Privilege Vulnerability.

CVE-2022-34691 8.8 - High - August 09, 2022

Active Directory Domain Services Elevation of Privilege Vulnerability.

Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability.

CVE-2022-34701 7.5 - High - August 09, 2022

Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability.

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability.

CVE-2022-34706 7.8 - High - August 09, 2022

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-34707 7.8 - High - August 09, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35761, CVE-2022-35768.

Windows Kernel Information Disclosure Vulnerability

CVE-2022-34708 5.5 - Medium - August 09, 2022

Windows Kernel Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30197.

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability

CVE-2022-34713 7.8 - High - August 09, 2022

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-35743.

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

CVE-2022-34714 8.1 - High - August 09, 2022

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34702, CVE-2022-35745, CVE-2022-35752, CVE-2022-35753, CVE-2022-35766, CVE-2022-35767, CVE-2022-35794.

Microsoft ATA Port Driver Elevation of Privilege Vulnerability.

CVE-2022-35760 7.8 - High - August 09, 2022

Microsoft ATA Port Driver Elevation of Privilege Vulnerability.

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

CVE-2022-35767 8.1 - High - August 09, 2022

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34702, CVE-2022-34714, CVE-2022-35745, CVE-2022-35752, CVE-2022-35753, CVE-2022-35766, CVE-2022-35794.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-35768 7.8 - High - August 09, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-34707, CVE-2022-35761.

Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability

CVE-2022-35769 7.5 - High - August 09, 2022

Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-35747.

Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability

CVE-2022-30133 9.8 - Critical - August 09, 2022

Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-35744.

Windows WebBrowser Control Remote Code Execution Vulnerability.

CVE-2022-30194 7.5 - High - August 09, 2022

Windows WebBrowser Control Remote Code Execution Vulnerability.

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability

CVE-2022-30202 7 - High - July 12, 2022

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22037, CVE-2022-30224.

Windows Boot Manager Security Feature Bypass Vulnerability.

CVE-2022-30203 7.4 - High - July 12, 2022

Windows Boot Manager Security Feature Bypass Vulnerability.

Windows Group Policy Elevation of Privilege Vulnerability.

CVE-2022-30205 6.6 - Medium - July 12, 2022

Windows Group Policy Elevation of Privilege Vulnerability.

Race Condition

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-30206 7.8 - High - July 12, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22022, CVE-2022-22041, CVE-2022-30226.

Windows Security Account Manager (SAM) Denial of Service Vulnerability.

CVE-2022-30208 6.5 - Medium - July 12, 2022

Windows Security Account Manager (SAM) Denial of Service Vulnerability.

Windows IIS Server Elevation of Privilege Vulnerability.

CVE-2022-30209 7.4 - High - July 12, 2022

Windows IIS Server Elevation of Privilege Vulnerability.

Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability.

CVE-2022-30211 8.8 - High - July 12, 2022

Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability.

Windows Hyper-V Information Disclosure Vulnerability

CVE-2022-30223 5.7 - Medium - July 12, 2022

Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22042.

Exposure of Resource to Wrong Sphere

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability

CVE-2022-30224 7 - High - July 12, 2022

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22037, CVE-2022-30202.

Improper Privilege Management

Windows Media Player Network Sharing Service Elevation of Privilege Vulnerability.

CVE-2022-30225 7.1 - High - July 12, 2022

Windows Media Player Network Sharing Service Elevation of Privilege Vulnerability.

Improper Privilege Management

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-30226 7.1 - High - July 12, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22022, CVE-2022-22041, CVE-2022-30206.

Improper Privilege Management

Windows Common Log File System Driver Elevation of Privilege Vulnerability.

CVE-2022-30220 7.8 - High - July 12, 2022

Windows Common Log File System Driver Elevation of Privilege Vulnerability.

Windows Graphics Component Remote Code Execution Vulnerability.

CVE-2022-30221 8.8 - High - July 12, 2022

Windows Graphics Component Remote Code Execution Vulnerability.

Windows GDI+ Information Disclosure Vulnerability.

CVE-2022-30213 5.5 - Medium - July 12, 2022

Windows GDI+ Information Disclosure Vulnerability.

BitLocker Security Feature Bypass Vulnerability.

CVE-2022-22048 6.1 - Medium - July 12, 2022

BitLocker Security Feature Bypass Vulnerability.

AuthZ

Windows CSRSS Elevation of Privilege Vulnerability

CVE-2022-22049 7.8 - High - July 12, 2022

Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22026, CVE-2022-22047.

Windows Fax Service Elevation of Privilege Vulnerability.

CVE-2022-22050 7.8 - High - July 12, 2022

Windows Fax Service Elevation of Privilege Vulnerability.

Windows CSRSS Elevation of Privilege Vulnerability

CVE-2022-22026 8.8 - High - July 12, 2022

Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22047, CVE-2022-22049.

Improper Privilege Management

Windows Fax Service Remote Code Execution Vulnerability

CVE-2022-22027 7.8 - High - July 12, 2022

Windows Fax Service Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22024.

Code Injection

Windows Graphics Component Elevation of Privilege Vulnerability.

CVE-2022-22034 7.8 - High - July 12, 2022

Windows Graphics Component Elevation of Privilege Vulnerability.

Improper Privilege Management

Performance Counters for Windows Elevation of Privilege Vulnerability.

CVE-2022-22036 7 - High - July 12, 2022

Performance Counters for Windows Elevation of Privilege Vulnerability.

Improper Privilege Management

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability

CVE-2022-22037 7.5 - High - July 12, 2022

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-30202, CVE-2022-30224.

Improper Privilege Management

Internet Information Services Dynamic Compression Module Denial of Service Vulnerability.

CVE-2022-22040 7.3 - High - July 12, 2022

Internet Information Services Dynamic Compression Module Denial of Service Vulnerability.

Resource Exhaustion

Windows Fast FAT File System Driver Elevation of Privilege Vulnerability.

CVE-2022-22043 7.8 - High - July 12, 2022

Windows Fast FAT File System Driver Elevation of Privilege Vulnerability.

Improper Privilege Management

Windows Kernel Information Disclosure Vulnerability.

CVE-2022-21845 4.7 - Medium - July 12, 2022

Windows Kernel Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-22022 7.1 - High - July 12, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22041, CVE-2022-30206, CVE-2022-30226.

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability.

CVE-2022-22023 6.6 - Medium - July 12, 2022

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability.

Windows Fax Service Remote Code Execution Vulnerability

CVE-2022-22024 7.8 - High - July 12, 2022

Windows Fax Service Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22027.

Windows Internet Information Services Cachuri Module Denial of Service Vulnerability.

CVE-2022-22025 7.5 - High - July 12, 2022

Windows Internet Information Services Cachuri Module Denial of Service Vulnerability.

Windows Hyper-V Information Disclosure Vulnerability

CVE-2022-22042 6.5 - Medium - July 12, 2022

Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30223.

Exposure of Resource to Wrong Sphere

Windows CSRSS Elevation of Privilege Vulnerability

CVE-2022-22047 7.8 - High - July 12, 2022

Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22026, CVE-2022-22049.

Improper Privilege Management

Windows iSCSI Discovery Service Remote Code Execution Vulnerability.

CVE-2022-30140 7.5 - High - June 15, 2022

Windows iSCSI Discovery Service Remote Code Execution Vulnerability.

Windows File History Remote Code Execution Vulnerability.

CVE-2022-30142 7.5 - High - June 15, 2022

Windows File History Remote Code Execution Vulnerability.

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2022-30146 7.5 - High - June 15, 2022

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161.

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2022-30149 7.5 - High - June 15, 2022

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30153, CVE-2022-30161.

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability.

CVE-2022-30166 7.8 - High - June 15, 2022

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability.

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2022-30143 7.5 - High - June 15, 2022

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161.

Windows Installer Elevation of Privilege Vulnerability.

CVE-2022-30147 7.8 - High - June 15, 2022

Windows Installer Elevation of Privilege Vulnerability.

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability.

CVE-2022-30151 7 - High - June 15, 2022

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability.

Improper Privilege Management

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2022-30153 8.8 - High - June 15, 2022

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30161.

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2022-30161 8.8 - High - June 15, 2022

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30141, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153.

Windows Hyper-V Remote Code Execution Vulnerability.

CVE-2022-30163 8.5 - High - June 15, 2022

Windows Hyper-V Remote Code Execution Vulnerability.

Race Condition

Windows Media Center Elevation of Privilege Vulnerability.

CVE-2022-30135 7.8 - High - June 15, 2022

Windows Media Center Elevation of Privilege Vulnerability.

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

CVE-2022-30141 8.1 - High - June 15, 2022

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-30139, CVE-2022-30143, CVE-2022-30146, CVE-2022-30149, CVE-2022-30153, CVE-2022-30161.

Code Injection

Windows Network Address Translation (NAT) Denial of Service Vulnerability.

CVE-2022-30152 7.5 - High - June 15, 2022

Windows Network Address Translation (NAT) Denial of Service Vulnerability.

Resource Exhaustion

Windows Kernel Denial of Service Vulnerability.

CVE-2022-30155 5.5 - Medium - June 15, 2022

Windows Kernel Denial of Service Vulnerability.

Resource Exhaustion

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability.

CVE-2022-30160 7.8 - High - June 15, 2022

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability.

Kerberos AppContainer Security Feature Bypass Vulnerability.

CVE-2022-30164 7.8 - High - June 15, 2022

Kerberos AppContainer Security Feature Bypass Vulnerability.

AuthZ

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability.

CVE-2022-30190 7.8 - High - June 01, 2022

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability.

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-30138 7.8 - High - May 18, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29104, CVE-2022-29132.

Windows WLAN AutoConfig Service Information Disclosure Vulnerability.

CVE-2022-26935 6.5 - Medium - May 10, 2022

Windows WLAN AutoConfig Service Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29131 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29130 9.8 - Critical - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29129 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29128 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-22014 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-22013 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-22012 9.8 - Critical - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139, CVE-2022-29141.

Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-23270 8.1 - High - May 10, 2022

Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21972.

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.

CVE-2022-22015 6.5 - Medium - May 10, 2022

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-22011 5.5 - Medium - May 10, 2022

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-26934, CVE-2022-29112.

Exposure of Resource to Wrong Sphere

Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-21972 8.1 - High - May 10, 2022

Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-23270.

Remote Procedure Call Runtime Remote Code Execution Vulnerability.

CVE-2022-22019 8.8 - High - May 10, 2022

Remote Procedure Call Runtime Remote Code Execution Vulnerability.

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-29132 7.8 - High - May 10, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29104.

Windows Server Service Information Disclosure Vulnerability.

CVE-2022-26936 6.5 - Medium - May 10, 2022

Windows Server Service Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29139 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29141.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29141 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29137, CVE-2022-29139.

Windows WLAN AutoConfig Service Denial of Service Vulnerability.

CVE-2022-29121 6.5 - Medium - May 10, 2022

Windows WLAN AutoConfig Service Denial of Service Vulnerability.

Resource Exhaustion

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-29104 7.8 - High - May 10, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-29132.

Windows LSA Spoofing Vulnerability.

CVE-2022-26925 5.9 - Medium - May 10, 2022

Windows LSA Spoofing Vulnerability.

Authentication Bypass by Spoofing

Windows Address Book Remote Code Execution Vulnerability.

CVE-2022-26926 7.8 - High - May 10, 2022

Windows Address Book Remote Code Execution Vulnerability.

Windows Kerberos Elevation of Privilege Vulnerability.

CVE-2022-26931 7.5 - High - May 10, 2022

Windows Kerberos Elevation of Privilege Vulnerability.

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-26934 6.5 - Medium - May 10, 2022

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22011, CVE-2022-29112.

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability.

CVE-2022-29103 7.8 - High - May 10, 2022

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability.

Windows LDAP Remote Code Execution Vulnerability

CVE-2022-29137 8.8 - High - May 10, 2022

Windows LDAP Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22012, CVE-2022-22013, CVE-2022-22014, CVE-2022-29128, CVE-2022-29129, CVE-2022-29130, CVE-2022-29131, CVE-2022-29139, CVE-2022-29141.

BitLocker Security Feature Bypass Vulnerability.

CVE-2022-29127 4.2 - Medium - May 10, 2022

BitLocker Security Feature Bypass Vulnerability.

Windows Fax Service Remote Code Execution Vulnerability.

CVE-2022-29115 7.8 - High - May 10, 2022

Windows Fax Service Remote Code Execution Vulnerability.

Code Injection

Microsoft Windows Media Foundation Remote Code Execution Vulnerability.

CVE-2022-29105 7.8 - High - May 10, 2022

Microsoft Windows Media Foundation Remote Code Execution Vulnerability.

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-29112 6.5 - Medium - May 10, 2022

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22011, CVE-2022-26934.

Exposure of Resource to Wrong Sphere

Windows Endpoint Configuration Manager Elevation of Privilege Vulnerability.

CVE-2022-24527 7.8 - High - April 15, 2022

Windows Endpoint Configuration Manager Elevation of Privilege Vulnerability.

Improper Privilege Management

Remote Procedure Call Runtime Remote Code Execution Vulnerability

CVE-2022-24528 8.8 - High - April 15, 2022

Remote Procedure Call Runtime Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24492, CVE-2022-26809.

Remote Procedure Call Runtime Remote Code Execution Vulnerability

CVE-2022-26809 9.8 - Critical - April 15, 2022

Remote Procedure Call Runtime Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24492, CVE-2022-24528.

Remote Procedure Call Runtime Remote Code Execution Vulnerability

CVE-2022-24492 8.8 - High - April 15, 2022

Remote Procedure Call Runtime Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24528, CVE-2022-26809.

Windows Win32k Elevation of Privilege Vulnerability

CVE-2022-24474 7.8 - High - April 15, 2022

Windows Win32k Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-24542.

Improper Privilege Management

Windows Installer Elevation of Privilege Vulnerability

CVE-2022-24530 7.8 - High - April 15, 2022

Windows Installer Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-24499.

Improper Privilege Management

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Microsoft Windows Server 2022 or by Microsoft? Click the Watch button to subscribe.

Microsoft
Vendor

subscribe