Windows Server 2008 Security Vulnerabilities and Issues — Page 7 of Windows Server 2008 CVE List

Lucene search

MicrosoftWindows Server 2008

3447 matches found

cve•added 2024/01/09 6:15 p.m.•254 views

CVE-2024-20652

Windows HTML Platforms Security Feature Bypass Vulnerability

8.1CVSS8AI score0.03082EPSS

cve•added 2024/09/10 5:15 p.m.•254 views

CVE-2024-38217

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS7.3AI score0.13392EPSS

In wild

cve•added 2019/04/09 9:29 p.m.•253 views

CVE-2019-0805

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0836, CVE-2019-0841.

7.8CVSS6.7AI score0.85917EPSS

In wild

cve•added 2021/12/15 3:15 p.m.•253 views

CVE-2021-43217

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

9.8CVSS9.1AI score0.25196EPSS

In wild

cve•added 2025/06/10 5:23 p.m.•251 views

CVE-2025-33073

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

8.8CVSS8.7AI score0.0096EPSS

Web

cve•added 2024/08/13 6:15 p.m.•250 views

CVE-2024-38118

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

5.5CVSS5.2AI score0.00541EPSS

cve•added 2009/10/14 10:30 a.m.•249 views

CVE-2009-2524

Integer underflow in the NTLM authentication feature in the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows remote attackers to cause a deni...

7.8CVSS6.5AI score0.46383EPSS

cve•added 2019/10/10 2:15 p.m.•249 views

CVE-2019-1339

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1342.

7.8CVSS8.5AI score0.06219EPSS

In wild

cve•added 2020/08/17 7:15 p.m.•247 views

CVE-2020-1337

An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; ...

7.8CVSS7.8AI score0.53476EPSS

In wild

cve•added 2024/03/12 5:15 p.m.•247 views

CVE-2024-21437

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.03014EPSS

cve•added 2023/04/11 9:15 p.m.•246 views

CVE-2023-21729

Remote Procedure Call Runtime Information Disclosure Vulnerability

5.3CVSS4.9AI score0.01489EPSS

cve•added 2025/03/11 5:16 p.m.•246 views

CVE-2025-24993

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.02222EPSS

In wild

cve•added 2016/04/12 11:59 p.m.•245 views

CVE-2016-0143

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vu...

7.8CVSS6.8AI score0.11623EPSS

In wild

cve•added 2017/11/15 3:29 a.m.•245 views

CVE-2017-11835

Microsoft graphics in Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1 allows an attacker to potentially read data that was not intended to be disclosed due to the way that the Microsoft Windows Embedded OpenType (EOT) font engine parses specially crafted embedded fonts, aka "Windows EOT Font E...

5.5CVSS4.7AI score0.02124EPSS

cve•added 2020/10/16 11:15 p.m.•245 views

CVE-2020-16916

An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit this vulnerability, an attacker would first have to log on to the system. An atta...

7.8CVSS8.2AI score0.00744EPSS

In wild

cve•added 2022/03/09 5:15 p.m.•244 views

CVE-2022-23293

Windows Fast FAT File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00293EPSS

cve•added 2019/07/15 7:15 p.m.•243 views

CVE-2019-1073

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1071.

5.5CVSS5.8AI score0.00647EPSS

cve•added 2021/12/15 3:15 p.m.•243 views

CVE-2021-43883

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.08752EPSS

In wild

cve•added 2022/05/18 11:15 p.m.•243 views

CVE-2022-30138

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00726EPSS

cve•added 2016/08/09 9:59 p.m.•242 views

CVE-2016-3308

The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privi...

7.8CVSS7.5AI score0.51566EPSS

In wild

cve•added 2024/03/12 5:15 p.m.•242 views

CVE-2024-26162

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.0223EPSS

cve•added 2024/03/12 5:15 p.m.•242 views

CVE-2024-26166

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01471EPSS

cve•added 2020/06/09 8:15 p.m.•241 views

CVE-2020-1246

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS

In wild

cve•added 2020/06/09 8:15 p.m.•241 views

CVE-2020-1262

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS

In wild

cve•added 2023/11/14 6:15 p.m.•241 views

CVE-2023-36424

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.17769EPSS

cve•added 2024/02/13 6:15 p.m.•241 views

CVE-2024-21358

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.0192EPSS

cve•added 2024/02/13 6:15 p.m.•241 views

CVE-2024-21372

Windows OLE Remote Code Execution Vulnerability

8.8CVSS9AI score0.0153EPSS

cve•added 2024/02/13 6:15 p.m.•240 views

CVE-2024-21350

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.0061EPSS

cve•added 2024/02/13 6:15 p.m.•240 views

CVE-2024-21370

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.0192EPSS

cve•added 2025/03/11 5:16 p.m.•240 views

CVE-2025-24991

Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.

5.5CVSS6.5AI score0.02442EPSS

In wild

cve•added 2017/03/17 12:59 a.m.•239 views

CVE-2017-0025

The kernel-mode drivers in Microsoft Windows Vista; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k E...

7.8CVSS6.2AI score0.14476EPSS

In wild

cve•added 2022/09/13 7:15 p.m.•239 views

CVE-2022-33679

Windows Kerberos Elevation of Privilege Vulnerability

8.1CVSS8.8AI score0.78364EPSS

cve•added 2024/02/13 6:15 p.m.•239 views

CVE-2024-21359

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01901EPSS

cve•added 2024/02/13 6:16 p.m.•239 views

CVE-2024-21420

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01343EPSS

cve•added 2017/06/15 1:29 a.m.•238 views

CVE-2017-8552

A kernel-mode driver in Microsoft Windows XP SP3, Windows XP x64 XP2, Windows Server 2003 SP2, Windows Vista, Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, and Windows 8 allows an elevation of privilege when it fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vuln...

7.8CVSS7.6AI score0.17937EPSS

In wild

cve•added 2023/11/14 6:15 p.m.•238 views

CVE-2023-36397

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.03225EPSS

cve•added 2020/09/11 5:15 p.m.•237 views

CVE-2020-1013

An elevation of privilege vulnerability exists when Microsoft Windows processes group policy updates. An attacker who successfully exploited this vulnerability could potentially escalate permissions or perform additional privileged actions on the target machine.To exploit this vulnerability, an att...

9.3CVSS8.1AI score0.1795EPSS

cve•added 2022/06/15 10:15 p.m.•237 views

CVE-2022-30160

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.03305EPSS

cve•added 2024/02/13 6:15 p.m.•237 views

CVE-2024-21369

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.00852EPSS

cve•added 2024/12/12 2:4 a.m.•237 views

CVE-2024-49113

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

7.5CVSS7.5AI score0.86574EPSS

Web

cve•added 2020/07/14 11:15 p.m.•236 views

CVE-2020-1043

A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1032, CVE-2020-1036,...

9CVSS9.2AI score0.01059EPSS

In wild

cve•added 2021/01/12 8:15 p.m.•236 views

CVE-2021-1678

Windows Print Spooler Spoofing Vulnerability

8.8CVSS8AI score0.53619EPSS

Web

cve•added 2017/03/17 12:59 a.m.•235 views

CVE-2017-0047

The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka "Windows GDI ...

7.8CVSS6.2AI score0.14476EPSS

In wild

cve•added 2019/10/10 2:15 p.m.•235 views

CVE-2019-1342

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1339.

7.8CVSS8.5AI score0.06219EPSS

In wild

cve•added 2022/08/09 8:15 p.m.•235 views

CVE-2022-34691

Active Directory Domain Services Elevation of Privilege Vulnerability

8.8CVSS9.1AI score0.0122EPSS

cve•added 2024/02/13 6:15 p.m.•235 views

CVE-2024-21361

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01901EPSS

cve•added 2024/03/12 5:15 p.m.•235 views

CVE-2024-26174