Lucene search

K
MicrosoftWindows Server 2008

3446 matches found

CVE
CVE
added 2024/07/09 5:15 p.m.91 views

CVE-2024-38019

Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability

7.2CVSS8.3AI score0.02866EPSS
CVE
CVE
added 2024/07/09 5:15 p.m.91 views

CVE-2024-38051

Windows Graphics Component Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.01141EPSS
CVE
CVE
added 2024/07/09 5:15 p.m.91 views

CVE-2024-38073

Windows Remote Desktop Licensing Service Denial of Service Vulnerability

7.5CVSS8.5AI score0.043EPSS
CVE
CVE
added 2024/11/12 6:15 p.m.91 views

CVE-2024-43626

Windows Telephony Service Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00426EPSS
CVE
CVE
added 2024/12/12 2:4 a.m.91 views

CVE-2024-49104

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.0292EPSS
CVE
CVE
added 2025/01/14 6:15 p.m.91 views

CVE-2025-21261

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00149EPSS
CVE
CVE
added 2025/01/14 6:15 p.m.91 views

CVE-2025-21285

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.03248EPSS
CVE
CVE
added 2025/02/11 6:15 p.m.91 views

CVE-2025-21375

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00149EPSS
CVE
CVE
added 2025/01/14 6:16 p.m.91 views

CVE-2025-21409

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.027EPSS
CVE
CVE
added 2009/08/12 5:30 p.m.90 views

CVE-2009-2494

The Active Template Library (ATL) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via vectors related to erroneous free operations after reading a variant from a stream and delet...

10CVSS7.4AI score0.57185EPSS
CVE
CVE
added 2017/04/12 2:59 p.m.90 views

CVE-2017-0058

A Win32k information disclosure vulnerability exists in Microsoft Windows when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user's system, aka "Win32k Information Disclosure V...

4.7CVSS5AI score0.16494EPSS
CVE
CVE
added 2017/03/17 12:59 a.m.90 views

CVE-2017-0103

The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Windows Server 2012 mishandles registry objects in memory, which allows local users to gain privileges via a crafted application, aka "Windows Registry Elevation of Privilege Vulnerability."

7CVSS6AI score0.01188EPSS
CVE
CVE
added 2017/03/17 12:59 a.m.90 views

CVE-2017-0123

Uniscribe in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Uniscribe Information Disclosure Vulnerability." CVE-2017-0085, CVE-2017-0091, CVE-2017-0092, CVE-...

4.3CVSS4.5AI score0.13744EPSS
CVE
CVE
added 2017/04/12 2:59 p.m.90 views

CVE-2017-0163

A remote code execution vulnerability exists when Windows Hyper-V Network Switch running on a host server fails to properly validate input from an authenticated user on a guest operating system, aka "Hyper-V Remote Code Execution Vulnerability." This CVE ID is unique from CVE-2017-0162, CVE-2017-01...

7.6CVSS7.9AI score0.00421EPSS
CVE
CVE
added 2017/06/15 1:29 a.m.90 views

CVE-2017-0285

Uniscribe in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, Windows Server 2016, Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, and Microsoft Office Word Viewer allows improper disclosure of ...

5CVSS4.9AI score0.17084EPSS
CVE
CVE
added 2017/06/15 1:29 a.m.90 views

CVE-2017-0296

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to elevate privilege when tdx.sys fails to check the length of a buffer prior to copying memory t...

7.8CVSS5.7AI score0.00273EPSS
CVE
CVE
added 2018/01/04 2:29 p.m.90 views

CVE-2018-0788

The Windows Adobe Type Manager Font Driver (Atmfd.dll) in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, and Windows Server 2012 and R2 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "OpenType Font Driver Elevation of Pri...

7CVSS6AI score0.00765EPSS
CVE
CVE
added 2018/03/14 5:29 p.m.90 views

CVE-2018-0926

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memo...

5.5CVSS4.7AI score0.11699EPSS
CVE
CVE
added 2019/10/10 2:15 p.m.90 views

CVE-2019-1358

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1359.

9.3CVSS8.8AI score0.58897EPSS
CVE
CVE
added 2019/11/12 7:15 p.m.90 views

CVE-2019-1406

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'.

9.3CVSS8.9AI score0.33652EPSS
CVE
CVE
added 2020/02/11 10:15 p.m.90 views

CVE-2020-0691

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0719, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0723, CVE-2020...

7.8CVSS7.7AI score0.00549EPSS
CVE
CVE
added 2020/02/11 10:15 p.m.90 views

CVE-2020-0720

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0719, CVE-2020-0721, CVE-2020-0722, CVE-2020-0723, CVE-2020-0724, CVE...

7.8CVSS7.7AI score0.00549EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.90 views

CVE-2020-0843

An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerabi...

7.8CVSS6.5AI score0.00646EPSS
CVE
CVE
added 2020/03/12 4:15 p.m.90 views

CVE-2020-0881

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0883.

9.3CVSS8.8AI score0.5256EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.90 views

CVE-2020-0922

A remote code execution vulnerability exists in the way that Microsoft COM for Windows handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.To exploit the vulnerability, a user would have to open a specially crafted file...

9.3CVSS8.7AI score0.129EPSS
CVE
CVE
added 2020/04/15 3:15 p.m.90 views

CVE-2020-0946

An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0937, CVE-2020-0939, CVE-2020-0945, CVE-2020-0947.

5.5CVSS5.6AI score0.27512EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.90 views

CVE-2020-1314

An elevation of privilege vulnerability exists in Windows Text Service Framework (TSF) when the TSF server fails to properly handle messages sent from TSF clients, aka 'Windows Text Service Framework Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.13831EPSS
CVE
CVE
added 2020/11/11 7:15 a.m.90 views

CVE-2020-17045

Windows KernelStream Information Disclosure Vulnerability

5.5CVSS7AI score0.0052EPSS
CVE
CVE
added 2021/01/12 8:15 p.m.90 views

CVE-2021-1693

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS
CVE
CVE
added 2021/04/13 8:15 p.m.90 views

CVE-2021-28328

Windows DNS Information Disclosure Vulnerability

6.5CVSS7.1AI score0.11531EPSS
CVE
CVE
added 2021/12/15 3:15 p.m.90 views

CVE-2021-43248

Windows Digital Media Receiver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00222EPSS
CVE
CVE
added 2022/11/09 10:15 p.m.90 views

CVE-2022-41116

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability

5.9CVSS6AI score0.00078EPSS
CVE
CVE
added 2023/07/11 6:15 p.m.90 views

CVE-2023-33164

Remote Procedure Call Runtime Denial of Service Vulnerability

6.5CVSS7.8AI score0.03672EPSS
CVE
CVE
added 2023/07/11 6:15 p.m.90 views

CVE-2023-35338

Windows Peer Name Resolution Protocol Denial of Service Vulnerability

7.5CVSS8.4AI score0.03356EPSS
CVE
CVE
added 2024/07/09 5:15 p.m.90 views

CVE-2024-38068

Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability

7.5CVSS8.4AI score0.05862EPSS
CVE
CVE
added 2024/08/13 6:15 p.m.90 views

CVE-2024-38120

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS9AI score0.06538EPSS
CVE
CVE
added 2025/02/11 6:15 p.m.90 views

CVE-2025-21200

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00381EPSS
CVE
CVE
added 2025/04/08 6:15 p.m.90 views

CVE-2025-26648

Sensitive data storage in improperly locked memory in Windows Kernel allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00082EPSS
CVE
CVE
added 2009/10/14 10:30 a.m.89 views

CVE-2009-2510

The CryptoAPI component in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, as used by Internet Explorer and other applications, does not properly handle a '\0' character in a domain ...

6.8CVSS5.8AI score0.17223EPSS
CVE
CVE
added 2017/03/17 12:59 a.m.89 views

CVE-2017-0039

Microsoft Windows Vista SP2 and Server 2008 SP2 mishandle dynamic link library (DLL) loading, which allows local users to gain privileges via a crafted application, aka "Library Loading Input Validation Remote Code Execution Vulnerability."

9.3CVSS6.5AI score0.13525EPSS
CVE
CVE
added 2017/03/17 12:59 a.m.89 views

CVE-2017-0042

Windows Media Player in Microsoft Windows 8.1; Windows Server 2012 R2; Windows RT 8.1; Windows 7 SP1; Windows 2008 SP2 and R2 SP1, Windows Server 2016; Windows Vista SP2; and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information via a crafted web site, aka "Windows...

3.1CVSS3.4AI score0.19033EPSS
CVE
CVE
added 2017/05/12 2:29 p.m.89 views

CVE-2017-0190

The GDI component in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory via a crafted web site, ak...

4.4CVSS5.2AI score0.01149EPSS
CVE
CVE
added 2017/04/12 2:59 p.m.89 views

CVE-2017-0192

The Adobe Type Manager Font Driver (ATMFD.dll) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold , 1511, 1607, and 1703 allows an attacker to gain sensitive information via a specially...

4.3CVSS5.4AI score0.22919EPSS
CVE
CVE
added 2017/05/12 2:29 p.m.89 views

CVE-2017-0270

Microsoft Server Message Block 1.0 (SMBv1) allows an information disclosure vulnerability in the way that Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 handles...

5.9CVSS6.1AI score0.27804EPSS
CVE
CVE
added 2017/10/13 1:29 p.m.89 views

CVE-2017-11781

The Microsoft Server Block Message (SMB) on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, allows a denial of service vulnerability when an attacker sends spec...

7.8CVSS8AI score0.21784EPSS
CVE
CVE
added 2019/09/11 10:15 p.m.89 views

CVE-2019-1267

An elevation of privilege vulnerability exists in Microsoft Compatibility Appraiser where a configuration file, with local privileges, is vulnerable to symbolic link and hard link attacks, aka 'Microsoft Compatibility Appraiser Elevation of Privilege Vulnerability'.

7.8CVSS7.8AI score0.00469EPSS
CVE
CVE
added 2019/11/12 7:15 p.m.89 views

CVE-2019-1395

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1393, CVE-2019-1394, CVE-2019-1396, CVE-2019-1408, CVE-2019-1434.

7.8CVSS7.6AI score0.00817EPSS
CVE
CVE
added 2019/11/12 7:15 p.m.89 views

CVE-2019-1435

An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1407, CVE-2019-1433, CVE-2019-1437, CVE-2019-1438.

7.8CVSS8.5AI score0.00404EPSS
CVE
CVE
added 2019/11/12 7:15 p.m.89 views

CVE-2019-1441

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Win32k Graphics Remote Code Execution Vulnerability'.

9.3CVSS9.4AI score0.20625EPSS
CVE
CVE
added 2019/12/10 10:15 p.m.89 views

CVE-2019-1470

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Information Disclosure Vulnerability'.

6CVSS6.3AI score0.00946EPSS
Total number of security vulnerabilities3446