Windows Server 2019 Microsoft Windows Server 2019

  1. Vendors
  2. Microsoft
  3. Windows Server 2019
Do you want an email whenever new security vulnerabilities are reported in Microsoft Windows Server 2019?

By the Year

In 2022 there have been 431 vulnerabilities in Microsoft Windows Server 2019 with an average score of 7.4 out of ten. Last year Windows Server 2019 had 465 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Windows Server 2019 in 2022 could surpass last years number. Last year, the average CVE base score was greater by 0.12

Year Vulnerabilities Average Score
2022 431 7.41
2021 465 7.53
2020 743 7.45
2019 433 7.36
2018 54 6.90

It may take a day or so for new Windows Server 2019 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Windows Server 2019 Security Vulnerabilities

Windows Kerberos Elevation of Privilege Vulnerability

CVE-2022-33679 8.1 - High - September 13, 2022

Windows Kerberos Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-33647.

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-35837 5.5 - Medium - September 13, 2022

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-34728, CVE-2022-38006.

Exposure of Resource to Wrong Sphere

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-35840 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35834, CVE-2022-35835, CVE-2022-35836.

Windows Group Policy Elevation of Privilege Vulnerability.

CVE-2022-37955 7.8 - High - September 13, 2022

Windows Group Policy Elevation of Privilege Vulnerability.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-37956 7.8 - High - September 13, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37957, CVE-2022-37964.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-37957 7.8 - High - September 13, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37956, CVE-2022-37964.

Network Device Enrollment Service (NDES) Security Feature Bypass Vulnerability.

CVE-2022-37959 6.5 - Medium - September 13, 2022

Network Device Enrollment Service (NDES) Security Feature Bypass Vulnerability.

Remote Procedure Call Runtime Remote Code Execution Vulnerability.

CVE-2022-35830 8.1 - High - September 13, 2022

Remote Procedure Call Runtime Remote Code Execution Vulnerability.

Windows Remote Access Connection Manager Information Disclosure Vulnerability.

CVE-2022-35831 5.5 - Medium - September 13, 2022

Windows Remote Access Connection Manager Information Disclosure Vulnerability.

Out-of-bounds Read

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability.

CVE-2022-30200 7.8 - High - September 13, 2022

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability.

Windows Kerberos Elevation of Privilege Vulnerability

CVE-2022-33647 8.1 - High - September 13, 2022

Windows Kerberos Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-33679.

Windows TCP/IP Remote Code Execution Vulnerability.

CVE-2022-34718 9.8 - Critical - September 13, 2022

Windows TCP/IP Remote Code Execution Vulnerability.

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability.

CVE-2022-34720 7.5 - High - September 13, 2022

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability.

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

CVE-2022-34721 9.8 - Critical - September 13, 2022

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34722.

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

CVE-2022-34722 9.8 - Critical - September 13, 2022

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34721.

Windows DNS Server Denial of Service Vulnerability.

CVE-2022-34724 7.5 - High - September 13, 2022

Windows DNS Server Denial of Service Vulnerability.

Windows ALPC Elevation of Privilege Vulnerability.

CVE-2022-34725 7 - High - September 13, 2022

Windows ALPC Elevation of Privilege Vulnerability.

Race Condition

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-34726 8.8 - High - September 13, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34727, CVE-2022-34730, CVE-2022-34732, CVE-2022-34734.

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-34727 8.8 - High - September 13, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34730, CVE-2022-34732, CVE-2022-34734.

Windows Photo Import API Elevation of Privilege Vulnerability.

CVE-2022-26928 7 - High - September 13, 2022

Windows Photo Import API Elevation of Privilege Vulnerability.

Race Condition

Windows Credential Roaming Service Elevation of Privilege Vulnerability.

CVE-2022-30170 7.3 - High - September 13, 2022

Windows Credential Roaming Service Elevation of Privilege Vulnerability.

Windows Secure Channel Denial of Service Vulnerability

CVE-2022-30196 8.2 - High - September 13, 2022

Windows Secure Channel Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-35833.

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-35834 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35835, CVE-2022-35836, CVE-2022-35840.

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-35836 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35834, CVE-2022-35835, CVE-2022-35840.

Code Injection

DirectX Graphics Kernel Elevation of Privilege Vulnerability.

CVE-2022-37954 7.8 - High - September 13, 2022

DirectX Graphics Kernel Elevation of Privilege Vulnerability.

Improper Privilege Management

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2022-35803 7.8 - High - September 13, 2022

Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-37969.

Windows Enterprise App Management Service Remote Code Execution Vulnerability.

CVE-2022-35841 8.8 - High - September 13, 2022

Windows Enterprise App Management Service Remote Code Execution Vulnerability.

Improper Privilege Management

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Information Disclosure Vulnerability.

CVE-2022-37958 7.5 - High - September 13, 2022

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Information Disclosure Vulnerability.

Exposure of Resource to Wrong Sphere

Windows Common Log File System Driver Elevation of Privilege Vulnerability

CVE-2022-37969 7.8 - High - September 13, 2022

Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35803.

Windows Fax Service Remote Code Execution Vulnerability.

CVE-2022-38004 7.8 - High - September 13, 2022

Windows Fax Service Remote Code Execution Vulnerability.

Windows Print Spooler Elevation of Privilege Vulnerability.

CVE-2022-38005 7.8 - High - September 13, 2022

Windows Print Spooler Elevation of Privilege Vulnerability.

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-38006 6.5 - Medium - September 13, 2022

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-34728, CVE-2022-35837.

Exposure of Resource to Wrong Sphere

Windows Distributed File System (DFS) Elevation of Privilege Vulnerability.

CVE-2022-34719 7.8 - High - September 13, 2022

Windows Distributed File System (DFS) Elevation of Privilege Vulnerability.

Windows Graphics Component Information Disclosure Vulnerability

CVE-2022-34728 5.5 - Medium - September 13, 2022

Windows Graphics Component Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-35837, CVE-2022-38006.

Windows GDI Elevation of Privilege Vulnerability.

CVE-2022-34729 7.8 - High - September 13, 2022

Windows GDI Elevation of Privilege Vulnerability.

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-34730 7.8 - High - September 13, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34732, CVE-2022-34734.

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-34731 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34733, CVE-2022-35834, CVE-2022-35835, CVE-2022-35836, CVE-2022-35840.

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-34732 7.8 - High - September 13, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34730, CVE-2022-34734.

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-34733 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-35834, CVE-2022-35835, CVE-2022-35836, CVE-2022-35840.

Microsoft ODBC Driver Remote Code Execution Vulnerability

CVE-2022-34734 7.8 - High - September 13, 2022

Microsoft ODBC Driver Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34726, CVE-2022-34727, CVE-2022-34730, CVE-2022-34732.

Windows Event Tracing Denial of Service Vulnerability.

CVE-2022-35832 5.5 - Medium - September 13, 2022

Windows Event Tracing Denial of Service Vulnerability.

Windows Secure Channel Denial of Service Vulnerability

CVE-2022-35833 7.5 - High - September 13, 2022

Windows Secure Channel Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-30196.

Resource Exhaustion

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

CVE-2022-35835 8.8 - High - September 13, 2022

Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34731, CVE-2022-34733, CVE-2022-35834, CVE-2022-35836, CVE-2022-35840.

Code Injection

A flaw was found in New Horizon Datasys bootloaders before 2022-06-01

CVE-2022-34302 6.7 - Medium - August 26, 2022

A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.

A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01

CVE-2022-34301 6.7 - Medium - August 26, 2022

A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.

A flaw was found in Eurosoft bootloaders before 2022-06-01

CVE-2022-34303 6.7 - Medium - August 26, 2022

A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use with this bootloader. Access to the EFI System Partition is required for booting using external media.

Windows Defender Credential Guard Elevation of Privilege Vulnerability

CVE-2022-34711 7.8 - High - August 15, 2022

Windows Defender Credential Guard Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-34705, CVE-2022-35771.

Windows Defender Credential Guard Security Feature Bypass Vulnerability

CVE-2022-35822 7.1 - High - August 15, 2022

Windows Defender Credential Guard Security Feature Bypass Vulnerability. This CVE ID is unique from CVE-2022-34709.

Windows Defender Credential Guard Security Feature Bypass Vulnerability.

CVE-2022-34709 6.7 - Medium - August 09, 2022

Windows Defender Credential Guard Security Feature Bypass Vulnerability.

Object Type Confusion

Windows Defender Credential Guard Information Disclosure Vulnerability

CVE-2022-34710 5.5 - Medium - August 09, 2022

Windows Defender Credential Guard Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-34704, CVE-2022-34712.

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability

CVE-2022-34713 7.8 - High - August 09, 2022

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-35743.

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

CVE-2022-34714 8.1 - High - August 09, 2022

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34702, CVE-2022-35745, CVE-2022-35752, CVE-2022-35753, CVE-2022-35766, CVE-2022-35767, CVE-2022-35794.

Microsoft ATA Port Driver Elevation of Privilege Vulnerability.

CVE-2022-35760 7.8 - High - August 09, 2022

Microsoft ATA Port Driver Elevation of Privilege Vulnerability.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-35761 7.8 - High - August 09, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-34707, CVE-2022-35768.

Storage Spaces Direct Elevation of Privilege Vulnerability

CVE-2022-35762 7.8 - High - August 09, 2022

Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35763, CVE-2022-35764, CVE-2022-35765, CVE-2022-35792.

Storage Spaces Direct Elevation of Privilege Vulnerability

CVE-2022-35763 7.8 - High - August 09, 2022

Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35762, CVE-2022-35764, CVE-2022-35765, CVE-2022-35792.

Storage Spaces Direct Elevation of Privilege Vulnerability

CVE-2022-35764 7.8 - High - August 09, 2022

Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35762, CVE-2022-35763, CVE-2022-35765, CVE-2022-35792.

Storage Spaces Direct Elevation of Privilege Vulnerability

CVE-2022-35765 7.8 - High - August 09, 2022

Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35762, CVE-2022-35763, CVE-2022-35764, CVE-2022-35792.

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

CVE-2022-35766 8.1 - High - August 09, 2022

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34702, CVE-2022-34714, CVE-2022-35745, CVE-2022-35752, CVE-2022-35753, CVE-2022-35767, CVE-2022-35794.

Code Injection

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

CVE-2022-35767 8.1 - High - August 09, 2022

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34702, CVE-2022-34714, CVE-2022-35745, CVE-2022-35752, CVE-2022-35753, CVE-2022-35766, CVE-2022-35794.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-35768 7.8 - High - August 09, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-34707, CVE-2022-35761.

Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability

CVE-2022-35769 7.5 - High - August 09, 2022

Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-35747.

Windows Defender Credential Guard Elevation of Privilege Vulnerability

CVE-2022-35771 7.8 - High - August 09, 2022

Windows Defender Credential Guard Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-34705.

Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability

CVE-2022-30133 9.8 - Critical - August 09, 2022

Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-35744.

Windows WebBrowser Control Remote Code Execution Vulnerability.

CVE-2022-30194 7.5 - High - August 09, 2022

Windows WebBrowser Control Remote Code Execution Vulnerability.

Windows Kernel Information Disclosure Vulnerability

CVE-2022-30197 5.5 - Medium - August 09, 2022

Windows Kernel Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-34708.

Windows Partition Management Driver Elevation of Privilege Vulnerability

CVE-2022-33670 7.8 - High - August 09, 2022

Windows Partition Management Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-34703.

Windows Kernel Information Disclosure Vulnerability

CVE-2022-34708 5.5 - Medium - August 09, 2022

Windows Kernel Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-30197.

Storage Spaces Direct Elevation of Privilege Vulnerability

CVE-2022-35792 7.8 - High - August 09, 2022

Storage Spaces Direct Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35762, CVE-2022-35763, CVE-2022-35764, CVE-2022-35765.

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-35793 7.3 - High - August 09, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35755.

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

CVE-2022-35794 8.1 - High - August 09, 2022

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34702, CVE-2022-34714, CVE-2022-35745, CVE-2022-35752, CVE-2022-35753, CVE-2022-35766, CVE-2022-35767.

Windows Error Reporting Service Elevation of Privilege Vulnerability.

CVE-2022-35795 7.8 - High - August 09, 2022

Windows Error Reporting Service Elevation of Privilege Vulnerability.

Windows Bluetooth Driver Elevation of Privilege Vulnerability.

CVE-2022-35820 7.8 - High - August 09, 2022

Windows Bluetooth Driver Elevation of Privilege Vulnerability.

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

CVE-2022-34702 8.1 - High - August 09, 2022

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-34714, CVE-2022-35745, CVE-2022-35752, CVE-2022-35753, CVE-2022-35766, CVE-2022-35767, CVE-2022-35794.

Race Condition

Windows Partition Management Driver Elevation of Privilege Vulnerability

CVE-2022-34703 7.8 - High - August 09, 2022

Windows Partition Management Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-33670.

Windows Defender Credential Guard Information Disclosure Vulnerability

CVE-2022-34704 4.7 - Medium - August 09, 2022

Windows Defender Credential Guard Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-34710, CVE-2022-34712.

Side Channel Attack

Windows Defender Credential Guard Elevation of Privilege Vulnerability

CVE-2022-34705 7.8 - High - August 09, 2022

Windows Defender Credential Guard Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35771.

Dangling pointer

Windows Fax Service Elevation of Privilege Vulnerability.

CVE-2022-34690 7.1 - High - August 09, 2022

Windows Fax Service Elevation of Privilege Vulnerability.

Active Directory Domain Services Elevation of Privilege Vulnerability.

CVE-2022-34691 8.8 - High - August 09, 2022

Active Directory Domain Services Elevation of Privilege Vulnerability.

Windows Hyper-V Remote Code Execution Vulnerability.

CVE-2022-34696 7.8 - High - August 09, 2022

Windows Hyper-V Remote Code Execution Vulnerability.

Race Condition

Windows Win32k Elevation of Privilege Vulnerability.

CVE-2022-34699 7.8 - High - August 09, 2022

Windows Win32k Elevation of Privilege Vulnerability.

Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability.

CVE-2022-34701 7.5 - High - August 09, 2022

Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability.

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability.

CVE-2022-34706 7.8 - High - August 09, 2022

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability.

Windows Kernel Elevation of Privilege Vulnerability

CVE-2022-34707 7.8 - High - August 09, 2022

Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35761, CVE-2022-35768.

Dangling pointer

Windows Security Account Manager (SAM) Denial of Service Vulnerability.

CVE-2022-30208 6.5 - Medium - July 12, 2022

Windows Security Account Manager (SAM) Denial of Service Vulnerability.

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-30206 7.8 - High - July 12, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22022, CVE-2022-22041, CVE-2022-30226.

Windows Group Policy Elevation of Privilege Vulnerability.

CVE-2022-30205 6.6 - Medium - July 12, 2022

Windows Group Policy Elevation of Privilege Vulnerability.

Race Condition

Windows Boot Manager Security Feature Bypass Vulnerability.

CVE-2022-30203 7.4 - High - July 12, 2022

Windows Boot Manager Security Feature Bypass Vulnerability.

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability

CVE-2022-30202 7 - High - July 12, 2022

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22037, CVE-2022-30224.

Windows IIS Server Elevation of Privilege Vulnerability.

CVE-2022-30209 7.4 - High - July 12, 2022

Windows IIS Server Elevation of Privilege Vulnerability.

Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability.

CVE-2022-30211 7.5 - High - July 12, 2022

Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability.

Windows Connected Devices Platform Service Information Disclosure Vulnerability.

CVE-2022-30212 4.7 - Medium - July 12, 2022

Windows Connected Devices Platform Service Information Disclosure Vulnerability.

Race Condition

Windows Hyper-V Information Disclosure Vulnerability

CVE-2022-30223 5.7 - Medium - July 12, 2022

Windows Hyper-V Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-22042.

Exposure of Resource to Wrong Sphere

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability

CVE-2022-30224 7 - High - July 12, 2022

Windows Advanced Local Procedure Call Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22037, CVE-2022-30202.

Improper Privilege Management

Windows Media Player Network Sharing Service Elevation of Privilege Vulnerability.

CVE-2022-30225 7.1 - High - July 12, 2022

Windows Media Player Network Sharing Service Elevation of Privilege Vulnerability.

Improper Privilege Management

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2022-30226 7.1 - High - July 12, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22022, CVE-2022-22041, CVE-2022-30206.

Improper Privilege Management

Active Directory Federation Services Elevation of Privilege Vulnerability.

CVE-2022-30215 7.5 - High - July 12, 2022

Active Directory Federation Services Elevation of Privilege Vulnerability.

Windows Common Log File System Driver Elevation of Privilege Vulnerability.

CVE-2022-30220 7.8 - High - July 12, 2022

Windows Common Log File System Driver Elevation of Privilege Vulnerability.

Windows Graphics Component Remote Code Execution Vulnerability.

CVE-2022-30221 8.8 - High - July 12, 2022

Windows Graphics Component Remote Code Execution Vulnerability.

Windows Shell Remote Code Execution Vulnerability.

CVE-2022-30222 8.4 - High - July 12, 2022

Windows Shell Remote Code Execution Vulnerability.

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Microsoft Windows Server 2022 or by Microsoft? Click the Watch button to subscribe.

Microsoft
Vendor

Microsoft Windows Server 2019
Product

subscribe