Microsoft: >> Windows Server 2019 >> 10.0.17763.7792 Security Vulnerabilities
CVE-2025-24990
Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems. This is an announcement of the upcoming removal of ltmdm64.sys driver. The driver has been removed in the October cumulative update.
Fax modem hardware dependent on this specific driver will no longer work on Windows.
Microsoft recommends removing any existing dependencies on this hardware.
Known exploited
CVSS Score
7.8
EPSS Score
0.069
Published
2025-10-14
Improper access control in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.
CVSS Score
7.3
EPSS Score
0.001
Published
2025-10-14
Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems. This is an announcement of the upcoming removal of ltmdm64.sys driver. The driver has been removed in the October cumulative update.
Fax modem hardware dependent on this specific driver will no longer work on Windows.
Microsoft recommends removing any existing dependencies on this hardware.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-10-14
CVE-2025-47827
In IGEL OS before 11, Secure Boot can be bypassed because the igel-flash-driver module improperly verifies a cryptographic signature. Ultimately, a crafted root filesystem can be mounted from an unverified SquashFS image.
Known exploited
CVSS Score
4.6
EPSS Score
0.008
Published
2025-06-05
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
CVSS Score
7.5
EPSS Score
0.007
Published
2024-10-08
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
CVSS Score
7.5
EPSS Score
0.012
Published
2024-10-08
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
CVSS Score
7.3
EPSS Score
0.008
Published
2024-07-09
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows Graphics Component Information Disclosure Vulnerability'.
CVSS Score
4.3
EPSS Score
0.129
Published
2020-03-12
An elevation of privilege vulnerability exists in the way that the Windows Client License Service (ClipSVC) handles objects in memory, aka 'Windows Client License Service Elevation of Privilege Vulnerability'.
CVSS Score
7.8
EPSS Score
0.004
Published
2020-02-11
An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Backup Service Elevation of Privilege Vulnerability'.
CVSS Score
7.8
EPSS Score
0.006
Published
2020-02-11