Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2008

3407 matches found

CVE
CVEadded 2009/11/13 3:30 p.m.112 views

CVE-2009-3676

The SMB client in the kernel in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers and man-in-the-middle attackers to cause a denial of service (infinite loop and system hang) via a (1) SMBv1 or (2) SMBv2 response packet that contains (a) an incorrect length value in a NetBIOS...

7.1CVSS6.1AI score0.56028EPSS
CVE
CVEadded 2016/11/10 6:59 a.m.112 views

CVE-2016-7237

Local Security Authority Subsystem Service (LSASS) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote authenticated users to cause a d...

6.8CVSS6.2AI score0.58598EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.112 views

CVE-2017-0099

Hyper-V in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and 2008 R2; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows guest OS users, running as virtual machines, to cause a denial of service via a crafted applicati...

5.4CVSS5.2AI score0.00651EPSS
CVE
CVEadded 2018/02/15 2:29 a.m.112 views

CVE-2018-0846

The Windows Common Log File System (CLFS) driver in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability ...

7.8CVSS6.8AI score0.00717EPSS
CVE
CVEadded 2018/10/10 1:29 p.m.112 views

CVE-2018-8330

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Wind...

5.5CVSS5.6AI score0.03602EPSS
CVE
CVEadded 2018/12/12 12:29 a.m.112 views

CVE-2018-8595

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...

6.5CVSS7.1AI score0.27405EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.112 views

CVE-2019-0891

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895, CVE-2019-0896,...

9.3CVSS8.1AI score0.29592EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.112 views

CVE-2019-0897

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895,...

9.3CVSS8.1AI score0.29592EPSS
CVE
CVEadded 2019/06/12 2:29 p.m.112 views

CVE-2019-1039

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to f...

5.5CVSS6.1AI score0.00538EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.112 views

CVE-2019-1245

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1244, CVE-2019-1251.

6.5CVSS6.2AI score0.27638EPSS
CVE
CVEadded 2019/10/10 2:15 p.m.112 views

CVE-2019-1362

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1364.

7.8CVSS7.6AI score0.08038EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.112 views

CVE-2020-0887

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0788, CVE-2020-0877.

7.8CVSS7.6AI score0.13359EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.112 views

CVE-2020-1376

An elevation of privilege vulnerability exists in the way that fdSSDP.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted app...

7.8CVSS8.1AI score0.00529EPSS
CVE
CVEadded 2020/08/17 7:15 p.m.112 views

CVE-2020-1517

An elevation of privilege vulnerability exists when the Windows File Server Resource Management Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate...

7.8CVSS8.6AI score0.00681EPSS
CVE
CVEadded 2020/08/17 7:15 p.m.112 views

CVE-2020-1557

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.4AI score0.11946EPSS
CVE
CVEadded 2020/10/16 11:15 p.m.112 views

CVE-2020-16914

An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface Plus (GDI+) handles objects in memory, allowing an attacker to retrieve information from a targeted system. By itself, the information disclosure does not allow arbitrary code execution; however, it...

5.5CVSS6.8AI score0.00514EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.112 views

CVE-2020-17088

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.00513EPSS
CVE
CVEadded 2020/12/10 12:15 a.m.112 views

CVE-2020-17098

Windows GDI+ Information Disclosure Vulnerability

5.5CVSS6.3AI score0.00472EPSS
CVE
CVEadded 2021/02/25 11:15 p.m.112 views

CVE-2021-24077

Windows Fax Service Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.01853EPSS
CVE
CVEadded 2021/02/25 11:15 p.m.112 views

CVE-2021-24088

Windows Local Spooler Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.01297EPSS
CVE
CVEadded 2021/07/14 6:15 p.m.112 views

CVE-2021-34476

Bowser.sys Denial of Service Vulnerability

7.5CVSS7.9AI score0.04172EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.112 views

CVE-2022-21838

Windows Cleanup Manager Elevation of Privilege Vulnerability

7.8CVSS7.2AI score0.00405EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.112 views

CVE-2022-21916

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.02334EPSS
CVE
CVEadded 2022/09/13 7:15 p.m.112 views

CVE-2022-34733

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.03169EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.112 views

CVE-2022-41056

Network Policy Server (NPS) RADIUS Protocol Denial of Service Vulnerability

7.5CVSS7.9AI score0.02817EPSS
CVE
CVEadded 2023/06/14 12:15 a.m.112 views

CVE-2023-29368

Windows Filtering Platform Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00135EPSS
CVE
CVEadded 2023/06/14 12:15 a.m.112 views

CVE-2023-32020

Windows DNS Spoofing Vulnerability

5.6CVSS7.2AI score0.01259EPSS
CVE
CVEadded 2023/08/08 6:15 p.m.112 views

CVE-2023-35376

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

6.5CVSS7.7AI score0.00951EPSS
CVE
CVEadded 2023/08/08 6:15 p.m.112 views

CVE-2023-36889

Windows Group Policy Security Feature Bypass Vulnerability

5.5CVSS7.2AI score0.00146EPSS
CVE
CVEadded 2024/08/13 6:15 p.m.112 views

CVE-2024-38117

NTFS Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00588EPSS
CVE
CVEadded 2024/09/10 5:15 p.m.112 views

CVE-2024-43455

Windows Remote Desktop Licensing Service Spoofing Vulnerability

9.8CVSS9.2AI score0.03547EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.111 views

CVE-2017-0114

Uniscribe in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Uniscribe Information Disclosure Vulnerability." CVE-2017-0085, CVE-2017-0091, CVE-2017-0092, CVE-...

4.3CVSS4.5AI score0.13744EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.111 views

CVE-2017-0288

Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows improper disclosure of memory contents, aka "Windows Graphics Information Disclosure Vulnerability". This CV...

5CVSS5.1AI score0.24455EPSS
CVE
CVEadded 2018/02/15 2:29 a.m.111 views

CVE-2018-0757

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are han...

4.7CVSS5AI score0.01776EPSS
CVE
CVEadded 2018/02/15 2:29 a.m.111 views

CVE-2018-0820

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are han...

7.8CVSS5.4AI score0.02947EPSS
CVE
CVEadded 2018/06/14 12:29 p.m.111 views

CVE-2018-1040

A denial of service vulnerability exists in the way that the Windows Code Integrity Module performs hashing, aka "Windows Code Integrity Module Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Wi...

5.4CVSS6.4AI score0.11561EPSS
CVE
CVEadded 2018/07/11 12:29 a.m.111 views

CVE-2018-8282

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Wind...

7.8CVSS6.7AI score0.00503EPSS
CVE
CVEadded 2019/08/14 9:15 p.m.111 views

CVE-2019-1146

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS7.9AI score0.09677EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.111 views

CVE-2020-0726

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0719, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0723, CVE...

7.8CVSS7.7AI score0.00549EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.111 views

CVE-2020-1247

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1251, CVE-2020-1253, CVE-2020-1310.

7.8CVSS7AI score0.00798EPSS
CVE
CVEadded 2020/08/17 7:15 p.m.111 views

CVE-2020-1484

An elevation of privilege vulnerability exists when the Windows Work Folders Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The sec...

7.8CVSS8.1AI score0.00399EPSS
CVE
CVEadded 2020/08/17 7:15 p.m.111 views

CVE-2020-1538

An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The securit...

7.8CVSS8.6AI score0.00513EPSS
CVE
CVEadded 2020/12/10 12:15 a.m.111 views

CVE-2020-16963

Windows Backup Engine Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.0137EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.111 views

CVE-2021-1655

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.111 views

CVE-2021-1701

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9CVSS8.3AI score0.07046EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.111 views

CVE-2021-27095

Windows Media Video Decoder Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.00776EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.111 views

CVE-2021-36959

Windows Authenticode Spoofing Vulnerability

5.5CVSS6.8AI score0.02097EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.111 views

CVE-2022-22043

Windows Fast FAT File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00806EPSS
CVE
CVEadded 2022/10/11 7:15 p.m.111 views

CVE-2022-24504

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00247EPSS
CVE
CVEadded 2022/09/13 7:15 p.m.111 views

CVE-2022-35840

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.03169EPSS
Total number of security vulnerabilities3407