Microsoft: >> Windows Server 2022 23h2 Security Vulnerabilities
Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2026-01-13
Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an unauthorized attacker to disclose information locally.
CVSS Score
6.2
EPSS Score
0.001
Published
2026-01-13
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-01-13
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.
CVSS Score
5.5
EPSS Score
0.0
Published
2026-01-13
Protection mechanism failure in Windows Remote Assistance allows an unauthorized attacker to bypass a security feature locally.
CVSS Score
5.5
EPSS Score
0.0
Published
2026-01-13
Improper access control in Windows Hyper-V allows an authorized attacker to disclose information locally.
CVSS Score
4.4
EPSS Score
0.001
Published
2026-01-13
Concurrent execution using shared resource with improper synchronization ('race condition') in Graphics Kernel allows an authorized attacker to elevate privileges locally.
CVSS Score
7.0
EPSS Score
0.0
Published
2026-01-13
Time-of-check time-of-use (toctou) race condition in Windows Installer allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2026-01-13
Improper handling of insufficient permissions or privileges in Windows Error Reporting allows an authorized attacker to elevate privileges locally.
CVSS Score
7.8
EPSS Score
0.001
Published
2026-01-13
Insertion of sensitive information into log file in Windows Kernel allows an unauthorized attacker to disclose information locally.
CVSS Score
6.2
EPSS Score
0.001
Published
2026-01-13