Windows Server 2008 Security Vulnerabilities and Issues — Page 4 of Windows Server 2008 CVE List

Lucene search

MicrosoftWindows Server 2008

258 matches found

CVE•added 2025/04/08 6:15 p.m.•72 views

CVE-2025-26673

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

7.5CVSS7AI score0.12218EPSS

CVE•added 2025/01/14 6:15 p.m.•71 views

CVE-2025-21227

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00133EPSS

CVE•added 2025/01/14 6:15 p.m.•71 views

CVE-2025-21243

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00674EPSS

CVE•added 2025/01/14 6:15 p.m.•71 views

CVE-2025-21246

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00461EPSS

CVE•added 2025/01/14 6:15 p.m.•71 views

CVE-2025-21277

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.04087EPSS

CVE•added 2025/01/14 6:15 p.m.•70 views

CVE-2025-21258

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00133EPSS

CVE•added 2025/01/14 6:15 p.m.•70 views

CVE-2025-21268

MapUrlToZone Security Feature Bypass Vulnerability

4.3CVSS4.6AI score0.00096EPSS

CVE•added 2025/01/14 6:15 p.m.•70 views

CVE-2025-21306

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00626EPSS

CVE•added 2025/02/11 6:15 p.m.•70 views

CVE-2025-21410

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00381EPSS

CVE•added 2025/01/14 6:15 p.m.•69 views

CVE-2025-21287

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00159EPSS

CVE•added 2025/01/14 6:15 p.m.•69 views

CVE-2025-21336

Windows Cryptographic Information Disclosure Vulnerability

5.6CVSS5.3AI score0.00069EPSS

CVE•added 2025/01/14 6:15 p.m.•69 views

CVE-2025-21339

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.02401EPSS

CVE•added 2025/02/11 6:15 p.m.•69 views

CVE-2025-21350

Windows Kerberos Denial of Service Vulnerability

5.9CVSS6.9AI score0.00278EPSS

CVE•added 2025/01/14 6:15 p.m.•68 views

CVE-2025-21250

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00626EPSS

CVE•added 2025/05/13 5:15 p.m.•67 views

CVE-2025-29837

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to disclose information locally.

5.5CVSS6.7AI score0.00074EPSS

CVE•added 2025/01/14 6:15 p.m.•66 views

CVE-2025-21272

Windows COM Server Information Disclosure Vulnerability

6.5CVSS6.3AI score0.0009EPSS

CVE•added 2025/01/14 6:15 p.m.•65 views

CVE-2025-21220

Microsoft Message Queuing Information Disclosure Vulnerability

7.5CVSS7.3AI score0.00599EPSS

CVE•added 2025/01/14 6:15 p.m.•65 views

CVE-2025-21249

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00133EPSS

CVE•added 2025/01/14 6:16 p.m.•65 views

CVE-2025-21411

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.02401EPSS

CVE•added 2025/06/10 5:21 p.m.•64 views

CVE-2025-32715

Out-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.2AI score0.00064EPSS

CVE•added 2025/05/13 5:16 p.m.•63 views

CVE-2025-32707

Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00079EPSS

CVE•added 2025/06/10 5:24 p.m.•61 views

CVE-2025-47955

Improper privilege management in Windows Remote Access Connection Manager allows an authorized attacker to elevate privileges locally.

7.8CVSS7.7AI score0.00052EPSS

CVE•added 2025/01/14 6:15 p.m.•60 views

CVE-2025-21300

Windows upnphost.dll Denial of Service Vulnerability

7.5CVSS7.5AI score0.01023EPSS

CVE•added 2025/05/13 5:15 p.m.•60 views

CVE-2025-29969

Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attacker to execute code over a network.

7.5CVSS7.6AI score0.00073EPSS

CVE•added 2025/05/13 5:15 p.m.•59 views

CVE-2025-29954

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

5.9CVSS5.7AI score0.0059EPSS

CVE•added 2025/05/13 5:15 p.m.•58 views

CVE-2025-24063

Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

7.8CVSS7.8AI score0.00066EPSS

CVE•added 2025/05/13 5:15 p.m.•58 views

CVE-2025-29962

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00083EPSS

CVE•added 2025/06/10 5:23 p.m.•58 views

CVE-2025-33075

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.00064EPSS

CVE•added 2025/02/11 6:15 p.m.•57 views

CVE-2025-21352

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00288EPSS

CVE•added 2025/06/10 5:21 p.m.•55 views

CVE-2025-32712

Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

7.8CVSS8AI score0.00057EPSS

CVE•added 2025/01/14 6:16 p.m.•54 views

CVE-2025-21389

Windows upnphost.dll Denial of Service Vulnerability

7.5CVSS7.5AI score0.01023EPSS

CVE•added 2025/05/13 5:15 p.m.•54 views

CVE-2025-29967

Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.

8.8CVSS8.1AI score0.0017EPSS

CVE•added 2025/06/10 5:22 p.m.•53 views

CVE-2025-33066

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00072EPSS

CVE•added 2025/06/10 5:22 p.m.•52 views

CVE-2025-33056

Improper access control in Microsoft Local Security Authority Server (lsasrv) allows an unauthorized attacker to deny service over a network.

7.5CVSS7.3AI score0.00133EPSS

CVE•added 2025/05/13 5:15 p.m.•51 views

CVE-2025-29835

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.5AI score0.0009EPSS

CVE•added 2025/05/13 5:16 p.m.•51 views

CVE-2025-30388

Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00079EPSS

CVE•added 2025/01/14 6:15 p.m.•50 views

CVE-2025-21331

Windows Installer Elevation of Privilege Vulnerability

7.3CVSS7.2AI score0.00106EPSS

CVE•added 2025/05/13 5:15 p.m.•50 views

CVE-2025-29836

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.5AI score0.00074EPSS

CVE•added 2025/05/13 5:15 p.m.•50 views

CVE-2025-29839

Out-of-bounds read in Windows File Server allows an unauthorized attacker to disclose information locally.

4CVSS6.6AI score0.00052EPSS

CVE•added 2025/05/13 5:15 p.m.•50 views

CVE-2025-29959

Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.4AI score0.00229EPSS

CVE•added 2025/06/10 5:22 p.m.•50 views

CVE-2025-32724

Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny service over a network.

7.5CVSS7.4AI score0.11772EPSS

CVE•added 2025/06/10 5:22 p.m.•50 views

CVE-2025-33064

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00089EPSS

CVE•added 2025/06/10 5:21 p.m.•49 views

CVE-2025-32713

Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.8AI score0.00057EPSS

CVE•added 2025/05/13 5:15 p.m.•48 views

CVE-2025-29960

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.3AI score0.00074EPSS

CVE•added 2025/05/13 5:15 p.m.•48 views

CVE-2025-29961

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.3AI score0.00074EPSS

CVE•added 2025/06/10 5:22 p.m.•48 views

CVE-2025-33057

Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network.

6.5CVSS6.3AI score0.00187EPSS

CVE•added 2025/05/13 5:16 p.m.•47 views

CVE-2025-30385

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00066EPSS

CVE•added 2025/06/10 5:21 p.m.•47 views

CVE-2025-32716

Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00057EPSS

CVE•added 2025/05/13 5:15 p.m.•46 views

CVE-2025-29832

Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.5AI score0.00074EPSS

CVE•added 2025/05/13 5:15 p.m.•46 views

CVE-2025-29957

Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker to deny service locally.

6.2CVSS7AI score0.0043EPSS

Total number of security vulnerabilities258