Windows 8.1 Microsoft Windows 8.1

Do you want an email whenever new security vulnerabilities are reported in Microsoft Windows 8.1?

@Windows Tweets

What do you do when you go buy a new @Surface for a friend but the Black Friday deal is epic!? You get one for your… https://t.co/TuITIzEKRc
Fri Nov 25 16:59:06 +0000 2022

Us finding the perfect gifts for ourselves while shopping for our loved ones: https://t.co/42S7rl8ZbV
Fri Nov 25 14:00:09 +0000 2022

RT @brockmclaughlin: Your boy Clippy has never looked better ������#WindowsUglySweater https://t.co/UeGHxDyU4x
Thu Nov 24 00:00:00 +0000 2022

RT @RealMarkRaming: #WindowsUglySweater is helping keep the season's cheer in and the cold out. Thanks @Windows https://t.co/w8W0aGd1TL
Wed Nov 23 23:30:00 +0000 2022

By the Year

In 2022 there have been 353 vulnerabilities in Microsoft Windows 8.1 with an average score of 7.5 out of ten. Last year Windows 8.1 had 300 security vulnerabilities published. That is, 53 more vulnerabilities have already been reported in 2022 as compared to last year. Last year, the average CVE base score was greater by 0.08

Year Vulnerabilities Average Score
2022 353 7.48
2021 300 7.56
2020 435 7.41
2019 310 7.33
2018 165 6.57

It may take a day or so for new Windows 8.1 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Windows 8.1 Security Vulnerabilities

Windows Mark of the Web Security Feature Bypass Vulnerability

CVE-2022-41049 5.4 - Medium - November 09, 2022

Windows Mark of the Web Security Feature Bypass Vulnerability. This CVE ID is unique from CVE-2022-41091.

Windows Kerberos Denial of Service Vulnerability.

CVE-2022-41053 7.5 - High - November 09, 2022

Windows Kerberos Denial of Service Vulnerability.

Windows Print Spooler Elevation of Privilege Vulnerability.

CVE-2022-41073 7.8 - High - November 09, 2022

Windows Print Spooler Elevation of Privilege Vulnerability.

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-41088 8.1 - High - November 09, 2022

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-41039, CVE-2022-41044.

Race Condition

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability

CVE-2022-41090 5.9 - Medium - November 09, 2022

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-41116.

Race Condition

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability

CVE-2022-41093 7.8 - High - November 09, 2022

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-41045, CVE-2022-41100.

Race Condition

Windows Digital Media Receiver Elevation of Privilege Vulnerability.

CVE-2022-41095 7.8 - High - November 09, 2022

Windows Digital Media Receiver Elevation of Privilege Vulnerability.

Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability.

CVE-2022-41097 6.5 - Medium - November 09, 2022

Network Policy Server (NPS) RADIUS Protocol Information Disclosure Vulnerability.

Windows GDI+ Information Disclosure Vulnerability.

CVE-2022-41098 6.5 - Medium - November 09, 2022

Windows GDI+ Information Disclosure Vulnerability.

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability

CVE-2022-41100 7.8 - High - November 09, 2022

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-41045, CVE-2022-41093.

Race Condition

Windows Win32k Elevation of Privilege Vulnerability

CVE-2022-41109 7.8 - High - November 09, 2022

Windows Win32k Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-41092.

Windows Group Policy Elevation of Privilege Vulnerability

CVE-2022-37992 7.8 - High - November 09, 2022

Windows Group Policy Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-41086.

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-41039 8.1 - High - November 09, 2022

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-41044, CVE-2022-41088.

Race Condition

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability

CVE-2022-41045 7.8 - High - November 09, 2022

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-41093, CVE-2022-41100.

Race Condition

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-41047 8.8 - High - November 09, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-41048.

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-41048 8.8 - High - November 09, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-41047.

Network Policy Server (NPS) RADIUS Protocol Denial of Service Vulnerability.

CVE-2022-41056 7.5 - High - November 09, 2022

Network Policy Server (NPS) RADIUS Protocol Denial of Service Vulnerability.

Windows HTTP.sys Elevation of Privilege Vulnerability.

CVE-2022-41057 7.8 - High - November 09, 2022

Windows HTTP.sys Elevation of Privilege Vulnerability.

Windows Network Address Translation (NAT) Denial of Service Vulnerability.

CVE-2022-41058 7.5 - High - November 09, 2022

Windows Network Address Translation (NAT) Denial of Service Vulnerability.

Windows Group Policy Elevation of Privilege Vulnerability

CVE-2022-41086 6.4 - Medium - November 09, 2022

Windows Group Policy Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37992.

Race Condition

Windows Scripting Languages Remote Code Execution Vulnerability

CVE-2022-41118 7.5 - High - November 09, 2022

Windows Scripting Languages Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-41128.

Race Condition

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability.

CVE-2022-41125 7.8 - High - November 09, 2022

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability.

Windows Scripting Languages Remote Code Execution Vulnerability

CVE-2022-41128 8.8 - High - November 09, 2022

Windows Scripting Languages Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-41118.

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-22035 8.1 - High - October 11, 2022

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-24504, CVE-2022-30198, CVE-2022-33634, CVE-2022-38000, CVE-2022-38047, CVE-2022-41081.

Race Condition

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-24504 8.1 - High - October 11, 2022

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22035, CVE-2022-30198, CVE-2022-33634, CVE-2022-38000, CVE-2022-38047, CVE-2022-41081.

Race Condition

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-30198 8.1 - High - October 11, 2022

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22035, CVE-2022-24504, CVE-2022-33634, CVE-2022-38000, CVE-2022-38047, CVE-2022-41081.

Race Condition

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-33634 8.1 - High - October 11, 2022

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22035, CVE-2022-24504, CVE-2022-30198, CVE-2022-38000, CVE-2022-38047, CVE-2022-41081.

Race Condition

Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability.

CVE-2022-37977 6.5 - Medium - October 11, 2022

Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability.

Windows Active Directory Certificate Services Security Feature Bypass.

CVE-2022-37978 7.5 - High - October 11, 2022

Windows Active Directory Certificate Services Security Feature Bypass.

Windows Event Logging Service Denial of Service Vulnerability.

CVE-2022-37981 4.3 - Medium - October 11, 2022

Windows Event Logging Service Denial of Service Vulnerability.

Resource Exhaustion

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-37982 8.8 - High - October 11, 2022

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-38031.

Code Injection

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2022-37997 7.8 - High - October 11, 2022

Windows Graphics Component Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-38051.

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-38047 8.1 - High - October 11, 2022

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22035, CVE-2022-24504, CVE-2022-30198, CVE-2022-33634, CVE-2022-38000, CVE-2022-41081.

Race Condition

Windows Graphics Component Elevation of Privilege Vulnerability

CVE-2022-38051 7.8 - High - October 11, 2022

Windows Graphics Component Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37997.

Windows COM+ Event System Service Elevation of Privilege Vulnerability.

CVE-2022-41033 7.8 - High - October 11, 2022

Windows COM+ Event System Service Elevation of Privilege Vulnerability.

Windows Group Policy Preference Client Elevation of Privilege Vulnerability

CVE-2022-37999 7.8 - High - October 11, 2022

Windows Group Policy Preference Client Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37993, CVE-2022-37994.

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-38000 8.1 - High - October 11, 2022

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22035, CVE-2022-24504, CVE-2022-30198, CVE-2022-33634, CVE-2022-38047, CVE-2022-41081.

Race Condition

Active Directory Domain Services Elevation of Privilege Vulnerability.

CVE-2022-38042 8.1 - High - October 11, 2022

Active Directory Domain Services Elevation of Privilege Vulnerability.

Windows Group Policy Elevation of Privilege Vulnerability.

CVE-2022-37975 8.8 - High - October 11, 2022

Windows Group Policy Elevation of Privilege Vulnerability.

Improper Privilege Management

Windows Secure Channel Denial of Service Vulnerability.

CVE-2022-38041 7.5 - High - October 11, 2022

Windows Secure Channel Denial of Service Vulnerability.

Windows Security Support Provider Interface Information Disclosure Vulnerability.

CVE-2022-38043 5.5 - Medium - October 11, 2022

Windows Security Support Provider Interface Information Disclosure Vulnerability.

Windows CD-ROM File System Driver Remote Code Execution Vulnerability.

CVE-2022-38044 7.8 - High - October 11, 2022

Windows CD-ROM File System Driver Remote Code Execution Vulnerability.

Server Service Remote Protocol Elevation of Privilege Vulnerability.

CVE-2022-38045 9.8 - Critical - October 11, 2022

Server Service Remote Protocol Elevation of Privilege Vulnerability.

Windows WLAN Service Elevation of Privilege Vulnerability.

CVE-2022-37984 7.8 - High - October 11, 2022

Windows WLAN Service Elevation of Privilege Vulnerability.

Windows Graphics Component Information Disclosure Vulnerability.

CVE-2022-37985 5.5 - Medium - October 11, 2022

Windows Graphics Component Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows Win32k Elevation of Privilege Vulnerability.

CVE-2022-37986 7.8 - High - October 11, 2022

Windows Win32k Elevation of Privilege Vulnerability.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-38022 3.3 - Low - October 11, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37988, CVE-2022-37990, CVE-2022-37991, CVE-2022-37995, CVE-2022-38037, CVE-2022-38038, CVE-2022-38039.

Windows DHCP Client Information Disclosure Vulnerability.

CVE-2022-38026 5.5 - Medium - October 11, 2022

Windows DHCP Client Information Disclosure Vulnerability.

Windows Storage Elevation of Privilege Vulnerability.

CVE-2022-38027 7 - High - October 11, 2022

Windows Storage Elevation of Privilege Vulnerability.

Race Condition

Windows Print Spooler Elevation of Privilege Vulnerability.

CVE-2022-38028 7.8 - High - October 11, 2022

Windows Print Spooler Elevation of Privilege Vulnerability.

Windows ALPC Elevation of Privilege Vulnerability.

CVE-2022-38029 7 - High - October 11, 2022

Windows ALPC Elevation of Privilege Vulnerability.

Race Condition

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-38031 8.8 - High - October 11, 2022

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-37982.

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability.

CVE-2022-38032 6.6 - Medium - October 11, 2022

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability.

Windows Server Remotely Accessible Registry Keys Information Disclosure Vulnerability.

CVE-2022-38033 6.5 - Medium - October 11, 2022

Windows Server Remotely Accessible Registry Keys Information Disclosure Vulnerability.

Windows Workstation Service Elevation of Privilege Vulnerability.

CVE-2022-38034 8.8 - High - October 11, 2022

Windows Workstation Service Elevation of Privilege Vulnerability.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-38037 7.8 - High - October 11, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37988, CVE-2022-37990, CVE-2022-37991, CVE-2022-37995, CVE-2022-38022, CVE-2022-38038, CVE-2022-38039.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-38038 7.8 - High - October 11, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37988, CVE-2022-37990, CVE-2022-37991, CVE-2022-37995, CVE-2022-38022, CVE-2022-38037, CVE-2022-38039.

Microsoft ODBC Driver Remote Code Execution Vulnerability.

CVE-2022-38040 8.8 - High - October 11, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability.

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

CVE-2022-41081 8.1 - High - October 11, 2022

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22035, CVE-2022-24504, CVE-2022-30198, CVE-2022-33634, CVE-2022-38000, CVE-2022-38047.

Windows GDI+ Remote Code Execution Vulnerability.

CVE-2022-33635 7.8 - High - October 11, 2022

Windows GDI+ Remote Code Execution Vulnerability.

Windows TCP/IP Driver Denial of Service Vulnerability.

CVE-2022-33645 7.5 - High - October 11, 2022

Windows TCP/IP Driver Denial of Service Vulnerability.

Resource Exhaustion

Windows CryptoAPI Spoofing Vulnerability.

CVE-2022-34689 7.5 - High - October 11, 2022

Windows CryptoAPI Spoofing Vulnerability.

Authentication Bypass by Spoofing

Windows NTLM Spoofing Vulnerability.

CVE-2022-35770 6.5 - Medium - October 11, 2022

Windows NTLM Spoofing Vulnerability.

Authentication Bypass by Spoofing

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability.

CVE-2022-37965 5.9 - Medium - October 11, 2022

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability.

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

CVE-2022-37987 7.8 - High - October 11, 2022

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37989.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-37988 7.8 - High - October 11, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37990, CVE-2022-37991, CVE-2022-37995, CVE-2022-38022, CVE-2022-38037, CVE-2022-38038, CVE-2022-38039.

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

CVE-2022-37989 7.8 - High - October 11, 2022

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37987.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-37990 7.8 - High - October 11, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37988, CVE-2022-37991, CVE-2022-37995, CVE-2022-38022, CVE-2022-38037, CVE-2022-38038, CVE-2022-38039.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-37991 7.8 - High - October 11, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37988, CVE-2022-37990, CVE-2022-37995, CVE-2022-38022, CVE-2022-38037, CVE-2022-38038, CVE-2022-38039.

Windows Group Policy Preference Client Elevation of Privilege Vulnerability

CVE-2022-37993 7.8 - High - October 11, 2022

Windows Group Policy Preference Client Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37994, CVE-2022-37999.

Windows Group Policy Preference Client Elevation of Privilege Vulnerability

CVE-2022-37994 7.8 - High - October 11, 2022

Windows Group Policy Preference Client Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37993, CVE-2022-37999.

Windows Kernel Memory Information Disclosure Vulnerability.

CVE-2022-37996 5.5 - Medium - October 11, 2022

Windows Kernel Memory Information Disclosure Vulnerability.

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

CVE-2022-34721 9.8 - Critical - September 13, 2022

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34722.

Windows Credential Roaming Service Elevation of Privilege Vulnerability.

CVE-2022-30170 7.3 - High - September 13, 2022

Windows Credential Roaming Service Elevation of Privilege Vulnerability.

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-34727 8.8 - High - September 13, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34730, CVE-2022-34732, CVE-2022-34734.

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-34726 8.8 - High - September 13, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34727, CVE-2022-34730, CVE-2022-34732, CVE-2022-34734.

Windows ALPC Elevation of Privilege Vulnerability.

CVE-2022-34725 7 - High - September 13, 2022

Windows ALPC Elevation of Privilege Vulnerability.

Race Condition

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

CVE-2022-34722 9.8 - Critical - September 13, 2022

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34721.

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability.

CVE-2022-34720 7.5 - High - September 13, 2022

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability.

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability.

CVE-2022-30200 7.8 - High - September 13, 2022

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability.

Windows Remote Access Connection Manager Information Disclosure Vulnerability.

CVE-2022-35831 5.5 - Medium - September 13, 2022

Windows Remote Access Connection Manager Information Disclosure Vulnerability.

Out-of-bounds Read

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-37956 7.8 - High - September 13, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37957, CVE-2022-37964.

Windows Group Policy Elevation of Privilege Vulnerability.

CVE-2022-37955 7.8 - High - September 13, 2022

Windows Group Policy Elevation of Privilege Vulnerability.

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-35840 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35834, CVE-2022-35835, CVE-2022-35836.

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-35837 6.5 - Medium - September 13, 2022

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-34728, CVE-2022-38006.

Exposure of Resource to Wrong Sphere

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-35835 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35834, CVE-2022-35836, CVE-2022-35840.

Code Injection

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-35834 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35835, CVE-2022-35836, CVE-2022-35840.

Windows Secure Channel Denial of Service Vulnerability

CVE-2022-35833 7.5 - High - September 13, 2022

Windows Secure Channel Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-30196.

Resource Exhaustion

Windows Event Tracing Denial of Service Vulnerability.

CVE-2022-35832 5.5 - Medium - September 13, 2022

Windows Event Tracing Denial of Service Vulnerability.

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-34733 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-35834, CVE-2022-35835, CVE-2022-35836, CVE-2022-35840.

Windows TCP/IP Remote Code Execution Vulnerability.

CVE-2022-34718 9.8 - Critical - September 13, 2022

Windows TCP/IP Remote Code Execution Vulnerability.

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-35836 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35834, CVE-2022-35835, CVE-2022-35840.

Code Injection

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2022-35803 7.8 - High - September 13, 2022

Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37969.

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Information Disclosure Vulnerability.

CVE-2022-37958 7.5 - High - September 13, 2022

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2022-37969 7.8 - High - September 13, 2022

Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35803.

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-34734 8.8 - High - September 13, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34730, CVE-2022-34732.

Windows Fax Service Remote Code Execution Vulnerability.

CVE-2022-38004 7.8 - High - September 13, 2022

Windows Fax Service Remote Code Execution Vulnerability.

Windows Print Spooler Elevation of Privilege Vulnerability.

CVE-2022-38005 7.8 - High - September 13, 2022

Windows Print Spooler Elevation of Privilege Vulnerability.

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-34732 8.8 - High - September 13, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34730, CVE-2022-34734.

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-34731 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34733, CVE-2022-35834, CVE-2022-35835, CVE-2022-35836, CVE-2022-35840.

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Microsoft Windows Server 2022 or by Microsoft? Click the Watch button to subscribe.

Microsoft
Vendor

subscribe