Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2008

3407 matches found

CVE
CVEadded 2022/10/11 7:15 p.m.109 views

CVE-2022-37975

Windows Group Policy Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.05047EPSS
CVE
CVEadded 2022/09/13 7:15 p.m.109 views

CVE-2022-38006

Windows Graphics Component Information Disclosure Vulnerability

6.5CVSS7.6AI score0.04116EPSS
CVE
CVEadded 2023/02/14 8:15 p.m.109 views

CVE-2023-21688

NT OS Kernel Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.02645EPSS
CVE
CVEadded 2023/04/11 9:15 p.m.109 views

CVE-2023-28268

Netlogon RPC Elevation of Privilege Vulnerability

8.1CVSS8AI score0.00942EPSS
CVE
CVEadded 2023/06/14 12:15 a.m.109 views

CVE-2023-29346

NTFS Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00211EPSS
CVE
CVEadded 2024/08/13 6:15 p.m.109 views

CVE-2024-38198

Windows Print Spooler Elevation of Privilege Vulnerability

7.5CVSS7.6AI score0.0123EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.109 views

CVE-2025-21376

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00458EPSS
CVE
CVEadded 2011/11/04 9:55 p.m.108 views

CVE-2011-3402

Unspecified vulnerability in the TrueType font parsing engine in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary co...

9.3CVSS7.4AI score0.92304EPSS
CVE
CVEadded 2017/04/12 2:59 p.m.108 views

CVE-2017-0180

A remote code execution vulnerability exists when Windows Hyper-V Network Switch running on a host server fails to properly validate input from an authenticated user on a guest operating system, aka "Hyper-V Remote Code Execution Vulnerability." This CVE ID is unique from CVE-2017-0162, CVE-2017-01...

7.6CVSS7.9AI score0.00421EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.108 views

CVE-2019-1285

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1256.

7.8CVSS8AI score0.01395EPSS
CVE
CVEadded 2020/01/14 11:15 p.m.108 views

CVE-2020-0631

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627...

7.8CVSS7.7AI score0.00511EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.108 views

CVE-2020-0677

An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The security update addre...

5.5CVSS5.2AI score0.00996EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.108 views

CVE-2020-0681

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0734.

7.6CVSS8.2AI score0.26532EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.108 views

CVE-2020-1408

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'.

9.3CVSS7.3AI score0.12696EPSS
CVE
CVEadded 2020/08/17 7:15 p.m.108 views

CVE-2020-1478

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.There are multiple ways an attacke...

7.8CVSS8.6AI score0.13239EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.108 views

CVE-2021-1704

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00646EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.108 views

CVE-2021-27089

Microsoft Internet Messaging API Remote Code Execution Vulnerability

7.8CVSS8.2AI score0.00429EPSS
CVE
CVEadded 2021/07/14 6:15 p.m.108 views

CVE-2021-33782

Windows Authenticode Spoofing Vulnerability

5.5CVSS6.7AI score0.01232EPSS
CVE
CVEadded 2021/07/14 6:15 p.m.108 views

CVE-2021-34507

Windows Remote Assistance Information Disclosure Vulnerability

6.5CVSS7.2AI score0.04042EPSS
CVE
CVEadded 2022/04/15 7:15 p.m.108 views

CVE-2022-26792

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00373EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.108 views

CVE-2022-29103

Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00437EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.108 views

CVE-2022-41074

Windows Graphics Component Information Disclosure Vulnerability

5.5CVSS6.3AI score0.00819EPSS
CVE
CVEadded 2023/08/08 6:15 p.m.108 views

CVE-2023-36912

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS8.4AI score0.0483EPSS
CVE
CVEadded 2024/05/14 5:17 p.m.108 views

CVE-2024-30036

Windows Deployment Services Information Disclosure Vulnerability

6.5CVSS6.1AI score0.07114EPSS
CVE
CVEadded 2024/11/12 6:15 p.m.108 views

CVE-2024-49019

Active Directory Certificate Services Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.10029EPSS
CVE
CVEadded 2008/11/12 11:30 p.m.107 views

CVE-2008-4037

Microsoft Windows 2000 Gold through SP4, XP Gold through SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote SMB servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, as demonstrated by backrush, aka "SMB Credential Ref...

9.3CVSS7.2AI score0.7553EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.107 views

CVE-2018-0811

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way obje...

5.5CVSS4.8AI score0.06807EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.107 views

CVE-2018-0897

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memo...

4.7CVSS4.7AI score0.06807EPSS
CVE
CVEadded 2018/10/10 1:29 p.m.107 views

CVE-2018-8333

An Elevation of Privilege vulnerability exists in Filter Manager when it improperly handles objects in memory, aka "Microsoft Filter Manager Elevation Of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Serve...

7CVSS7.1AI score0.01011EPSS
CVE
CVEadded 2018/09/13 12:29 a.m.107 views

CVE-2018-8393

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Win...

9.3CVSS8AI score0.14816EPSS
CVE
CVEadded 2018/09/13 12:29 a.m.107 views

CVE-2018-8424

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8....

6.5CVSS6.3AI score0.16EPSS
CVE
CVEadded 2018/10/10 1:29 p.m.107 views

CVE-2018-8482

An information disclosure vulnerability exists when Windows Media Player improperly discloses file information, aka "Windows Media Player Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2...

3.1CVSS4.9AI score0.02409EPSS
CVE
CVEadded 2019/06/12 2:29 p.m.107 views

CVE-2019-0888

A remote code execution vulnerability exists in the way that ActiveX Data Objects (ADO) handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code with the victim user’s privileges.An attacker could craft a website that exploits the vulnerability...

9.3CVSS8.1AI score0.40625EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.107 views

CVE-2019-0896

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895,...

9.3CVSS8.1AI score0.29592EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.107 views

CVE-2019-0936

An elevation of privilege vulnerability exists in Microsoft Windows when Windows fails to properly handle certain symbolic links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0734.

7.8CVSS7.5AI score0.08355EPSS
CVE
CVEadded 2019/06/12 2:29 p.m.107 views

CVE-2019-0972

This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause a denial of service on the ...

6.8CVSS7.3AI score0.17994EPSS
CVE
CVEadded 2019/06/12 2:29 p.m.107 views

CVE-2019-1025

A denial of service vulnerability exists when Windows improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.To exploit this vulnerability, an attacker would have to log on to an affected system and run a special...

7.8CVSS7.3AI score0.16561EPSS
CVE
CVEadded 2019/06/12 2:29 p.m.107 views

CVE-2019-1043

A remote code execution vulnerability exists in the way that comctl32.dll handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could ...

8.5CVSS7.8AI score0.02663EPSS
CVE
CVEadded 2019/07/29 2:8 p.m.107 views

CVE-2019-1108

An information disclosure vulnerability exists when the Windows RDP client improperly discloses the contents of its memory, aka 'Remote Desktop Protocol Client Information Disclosure Vulnerability'.

6.5CVSS6.3AI score0.21114EPSS
CVE
CVEadded 2019/08/14 9:15 p.m.107 views

CVE-2019-1156

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS7.9AI score0.09677EPSS
CVE
CVEadded 2019/10/10 2:15 p.m.107 views

CVE-2019-1318

A spoofing vulnerability exists when Transport Layer Security (TLS) accesses non- Extended Master Secret (EMS) sessions, aka 'Microsoft Windows Transport Layer Security Spoofing Vulnerability'.

5.9CVSS7.1AI score0.05874EPSS
CVE
CVEadded 2019/10/10 2:15 p.m.107 views

CVE-2019-1346

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-1343, CVE-2019-1347.

7.1CVSS7.4AI score0.37278EPSS
CVE
CVEadded 2019/12/10 10:15 p.m.107 views

CVE-2019-1469

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'.

5.5CVSS6AI score0.0075EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.107 views

CVE-2020-0788

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0877, CVE-2020-0887.

7.8CVSS7.6AI score0.13359EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.107 views

CVE-2020-0814

An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerabi...

7.8CVSS6.5AI score0.00646EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.107 views

CVE-2020-1384

An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1359.

7.8CVSS8.5AI score0.00513EPSS
CVE
CVEadded 2021/07/14 6:15 p.m.107 views

CVE-2021-33788

Windows LSA Denial of Service Vulnerability

7.5CVSS7.9AI score0.04338EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.107 views

CVE-2021-38630

Windows Event Tracing Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00243EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.107 views

CVE-2022-41077

Windows Fax Compose Form Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00208EPSS
CVE
CVEadded 2023/04/11 9:15 p.m.107 views

CVE-2023-28223

Windows Domain Name Service Remote Code Execution Vulnerability

6.6CVSS6.8AI score0.00413EPSS
Total number of security vulnerabilities3407