Microsoft: >> Windows Server 2022 23h2 Security Vulnerabilities
Sensitive data storage in improperly locked memory in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges over a network.
CVSS Score
7.5
EPSS Score
0.001
Published
2025-04-08
Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network.
CVSS Score
8.0
EPSS Score
0.008
Published
2025-04-08
Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-04-08
Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.001
Published
2025-04-08
Insufficient resource pool in Windows Kerberos allows an unauthorized attacker to deny service over a network.
CVSS Score
7.5
EPSS Score
0.18
Published
2025-04-08
Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.
CVSS Score
8.1
EPSS Score
0.002
Published
2025-04-08
Stack-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-04-08
Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.
CVSS Score
8.1
EPSS Score
0.001
Published
2025-04-08
Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.
CVSS Score
7.5
EPSS Score
0.18
Published
2025-04-08
Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
CVSS Score
6.5
EPSS Score
0.004
Published
2025-04-08