Windows 7

This hub aggregates every CVE we track for Windows 7, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.

Operating Systemson-premos

2,446

CVEs tracked

158

Critical

1,530

High

110

In CISA KEV

Severity distribution

HIGH1,530MEDIUM716CRITICAL158LOW42

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 15 most recently published vulnerabilities affecting Windows 7.

BDU:2026-00296Уязвимость службы Remote Access Connection Manager (RASMan) операционных систем Windows, позволяющая нарушителю вызвать отказ в обслуживании7.8Jan 12, 2026
BDU:2025-03536Уязвимость механизма обработки SCF-файлов операционных систем Windows, позволяющая нарушителю раскрыть NTLM-хеш6.5Mar 31, 2025
BDU:2024-09659Уязвимость компонента FASTFAT операционной системы Windows, связанная с выходом операции за границу буфера в памяти, позволяющая нарушителю осуществить чтение данных из удаленных файлов системы2.8Nov 15, 2024
BDU:2024-01445Уязвимость службы журналирования событий (Windows Event Logging) операционных систем Windows, позволяющая нарушителю вызвать отказ в обслуживании9.0Feb 20, 2024
CVE-2023-34367Windows 7 is vulnerable to a full blind TCP/IP hijacking attack. The vulnerability exists in Windows 7 (any Windows until Windows 8) and in any implementation of TCP/IP, which is vulnerable to the ...6.5Jun 14, 2023
CVE-2022-35759Windows Local Security Authority (LSA) Denial of Service Vulnerability6.5May 31, 2023
CVE-2022-35758Windows Kernel Memory Information Disclosure Vulnerability5.5May 31, 2023
CVE-2022-35756Windows Kerberos Elevation of Privilege Vulnerability7.8May 31, 2023
CVE-2022-35754Unified Write Filter Elevation of Privilege Vulnerability6.7May 31, 2023
CVE-2022-35752Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability8.1May 31, 2023
CVE-2022-35753Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability8.1May 31, 2023
CVE-2022-35750Win32k Elevation of Privilege Vulnerability7.8May 31, 2023
CVE-2022-35751Windows Hyper-V Elevation of Privilege Vulnerability7.8May 31, 2023
CVE-2022-35747Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability5.9May 31, 2023
CVE-2022-35745Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability8.1May 31, 2023

Product normalization is registry-driven with AI assist and human review. How it works