Microsoft: >> Windows Server 2022 23h2 >> 10.0.25398.1611 Security Vulnerabilities
Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2026-05-12
Heap-based buffer overflow in Windows TCP/IP allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2026-05-12
Double free in Windows Message Queuing allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2026-05-12
Improper access control in Windows Filtering Platform (WFP) allows an authorized attacker to bypass a security feature locally.
CVSS Score
4.4
EPSS Score
0.0
Published
2026-05-12
Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
CVSS Score
6.7
EPSS Score
0.001
Published
2026-05-12
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Native WiFi Miniport Driver allows an unauthorized attacker to execute code over an adjacent network.
CVSS Score
7.5
EPSS Score
0.001
Published
2026-05-12
Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
CVSS Score
6.7
EPSS Score
0.001
Published
2026-05-12
Improper input validation in Windows Active Directory allows an authorized attacker to execute code over an adjacent network.
CVSS Score
8.0
EPSS Score
0.009
Published
2026-04-14
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an unauthorized attacker to execute code over a network.
CVSS Score
8.1
EPSS Score
0.001
Published
2026-04-14
Exposure of sensitive information to an unauthorized actor in Windows Snipping Tool allows an unauthorized attacker to perform spoofing over a network.
CVSS Score
4.3
EPSS Score
0.003
Published
2026-04-14