Vulnerabilities > Microsoft > Windows Server 2008 > r2

DATE CVE VULNERABILITY TITLE RISK
2025-05-13 CVE-2025-29835 NULL Pointer Dereference vulnerability in Microsoft products
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
network
low complexity
microsoft CWE-476
6.5
2025-05-13 CVE-2025-29836 Out-of-bounds Read vulnerability in Microsoft products
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
network
low complexity
microsoft CWE-125
6.5
2025-05-13 CVE-2025-29837 Link Following vulnerability in Microsoft products
Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to disclose information locally.
local
low complexity
microsoft CWE-59
5.5
2025-05-13 CVE-2025-29839 Out-of-bounds Read vulnerability in Microsoft products
Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally.
local
low complexity
microsoft CWE-125
4.0
2025-05-13 CVE-2025-29954 Resource Exhaustion vulnerability in Microsoft products
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.
network
high complexity
microsoft CWE-400
5.9
2025-05-13 CVE-2025-29956 Buffer Over-read vulnerability in Microsoft products
Buffer over-read in Windows SMB allows an authorized attacker to disclose information over a network.
network
high complexity
microsoft CWE-126
5.4
2025-05-13 CVE-2025-29957 Resource Exhaustion vulnerability in Microsoft products
Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker to deny service locally.
local
low complexity
microsoft CWE-400
6.2
2025-05-13 CVE-2025-29958 Use of Uninitialized Resource vulnerability in Microsoft products
Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
network
low complexity
microsoft CWE-908
6.5
2025-05-13 CVE-2025-29959 Use of Uninitialized Resource vulnerability in Microsoft products
Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
network
low complexity
microsoft CWE-908
6.5
2025-05-13 CVE-2025-29960 Out-of-bounds Read vulnerability in Microsoft products
Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.
network
low complexity
microsoft CWE-125
6.5