Windows Server 2008 Security Vulnerabilities and Issues — Page 9 of Windows Server 2008 CVE List

A kernel-mode driver in Microsoft Windows XP SP3, Windows XP x64 XP2, Windows Server 2003 SP2, Windows Vista, Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, and Windows 8 allows an elevation of privilege when it fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vuln...

7.8CVSS7.6AI score0.18325EPSS

CVE•added 2022/04/15 7:15 p.m.•208 views

CVE-2022-26788

PowerShell Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00406EPSS

CVE•added 2022/04/15 7:15 p.m.•208 views

CVE-2022-26903

Windows Graphics Component Remote Code Execution Vulnerability

9.3CVSS8.8AI score0.01609EPSS

CVE•added 2022/07/12 11:15 p.m.•208 views

CVE-2022-30223

Windows Hyper-V Information Disclosure Vulnerability

5.7CVSS6.6AI score0.03907EPSS

CVE•added 2024/02/13 6:15 p.m.•208 views

CVE-2024-21355

Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability

7CVSS7.2AI score0.0009EPSS

CVE•added 2020/07/14 11:15 p.m.•207 views

CVE-2020-1043

A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1032, CVE-2020-1036,...

9CVSS9.2AI score0.01001EPSS

CVE•added 2025/06/10 5:23 p.m.•207 views

CVE-2025-33073

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

8.8CVSS8.7AI score0.00326EPSS

CVE•added 2016/10/14 2:59 a.m.•206 views

CVE-2016-7182

The Graphics component in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; Office 2007 SP3; Office 2010 SP2; Word Viewer; Skype for Business 2016; Lync 2013 SP1; Lync 2010; ...

10CVSS8.7AI score0.35426EPSS

CVE•added 2017/03/17 12:59 a.m.•206 views

CVE-2017-0025

The kernel-mode drivers in Microsoft Windows Vista; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k E...

7.8CVSS6.2AI score0.12861EPSS

CVE•added 2019/10/10 2:15 p.m.•205 views

CVE-2019-1342

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1339.

7.8CVSS8.5AI score0.06219EPSS

CVE•added 2022/04/15 7:15 p.m.•205 views

CVE-2022-24541

Windows Server Service Remote Code Execution Vulnerability

9.3CVSS9.4AI score0.07634EPSS

CVE•added 2024/04/09 5:15 p.m.•205 views

CVE-2024-26234

Proxy Driver Spoofing Vulnerability

6.7CVSS7.4AI score0.02069EPSS

CVE•added 2017/03/17 12:59 a.m.•204 views

CVE-2017-0047

The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka "Windows GDI ...

7.8CVSS6.2AI score0.12861EPSS

CVE•added 2020/10/16 11:15 p.m.•204 views

CVE-2020-16891

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating system that could caus...

8.8CVSS8.7AI score0.00539EPSS

CVE•added 2021/10/13 1:15 a.m.•204 views

CVE-2021-41335

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00462EPSS

CVE•added 2022/06/15 10:15 p.m.•204 views

CVE-2022-30141

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.3CVSS8.5AI score0.09953EPSS

CVE•added 2023/04/11 9:15 p.m.•204 views

CVE-2023-28219

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.07471EPSS

CVE•added 2023/11/14 6:15 p.m.•204 views

CVE-2023-36017

Windows Scripting Engine Memory Corruption Vulnerability

8.8CVSS8.9AI score0.02717EPSS

CVE•added 2023/11/14 6:15 p.m.•204 views

CVE-2023-36425

Windows Distributed File System (DFS) Remote Code Execution Vulnerability

8CVSS8.9AI score0.00207EPSS

CVE•added 2015/02/11 3:0 a.m.•202 views

CVE-2015-0008

The UNC implementation in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not include authentication from the server to the client, which allows remote ...

8.3CVSS8.1AI score0.09423EPSS

CVE•added 2022/07/12 11:15 p.m.•202 views

CVE-2022-21845

Windows Kernel Information Disclosure Vulnerability

4.7CVSS6.1AI score0.00891EPSS

CVE•added 2022/08/09 8:15 p.m.•202 views

CVE-2022-34714

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

8.1CVSS9AI score0.00171EPSS

CVE•added 2023/08/08 6:15 p.m.•202 views

CVE-2023-35385

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.03195EPSS

CVE•added 2020/07/14 11:15 p.m.•201 views

CVE-2020-1041

9CVSS9.2AI score0.01001EPSS

CVE•added 2021/08/12 6:15 p.m.•201 views

CVE-2021-34535

Remote Desktop Client Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02515EPSS

CVE•added 2022/05/10 9:15 p.m.•201 views

CVE-2022-22013

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.0999EPSS

CVE•added 2022/05/10 9:15 p.m.•201 views

CVE-2022-22015

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability

6.5CVSS7.7AI score0.09009EPSS

CVE•added 2023/01/10 10:15 p.m.•201 views

CVE-2023-21557

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

9.1CVSS7.5AI score0.00554EPSS

CVE•added 2023/01/10 10:15 p.m.•201 views

CVE-2023-21563

BitLocker Security Feature Bypass Vulnerability

6.8CVSS7AI score0.00639EPSS

CVE•added 2021/08/12 6:15 p.m.•200 views

CVE-2021-36958

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or de...

9.3CVSS8.5AI score0.04045EPSS

CVE•added 2021/12/15 3:15 p.m.•200 views

CVE-2021-43226

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.20161EPSS

CVE•added 2024/02/13 6:15 p.m.•200 views

CVE-2024-21363

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

7.8CVSS8.1AI score0.00381EPSS

CVE•added 2024/01/09 6:15 p.m.•199 views

CVE-2024-21307

Remote Desktop Client Remote Code Execution Vulnerability

7.5CVSS8.1AI score0.0019EPSS

CVE•added 2020/02/11 10:15 p.m.•198 views

CVE-2020-0686

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0683.

7.8CVSS8AI score0.27418EPSS

CVE•added 2022/01/11 9:15 p.m.•198 views

CVE-2022-21893

Remote Desktop Protocol Remote Code Execution Vulnerability

8.5CVSS8.9AI score0.05377EPSS

CVE•added 2022/08/09 8:15 p.m.•198 views

CVE-2022-35769

Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability

7.5CVSS8.4AI score0.03028EPSS

CVE•added 2022/05/10 9:15 p.m.•197 views

CVE-2022-29132

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00205EPSS

CVE•added 2023/06/14 12:15 a.m.•197 views

CVE-2023-32014

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.04719EPSS

CVE•added 2013/08/14 11:10 a.m.•196 views

CVE-2013-3175

Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allow remote attackers to execute arbitrary code via a malformed asynchronous RPC request, aka "Remote Procedure Call Vulne...

10CVSS7.5AI score0.6087EPSS

CVE•added 2020/02/11 10:15 p.m.•196 views

CVE-2020-0668

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0669, CVE-2020-0670, CVE-2020-0671, CVE-2020-0672.

7.8CVSS7.7AI score0.79504EPSS

CVE•added 2023/01/10 10:15 p.m.•196 views

CVE-2023-21556

Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00689EPSS

CVE•added 2024/01/09 6:15 p.m.•196 views

CVE-2024-20653

Microsoft Common Log File System Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.0329EPSS

CVE•added 2020/05/21 11:15 p.m.•195 views

CVE-2020-1143

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1054.

7.8CVSS7.8AI score0.80387EPSS

CVE•added 2021/09/15 12:15 p.m.•195 views

CVE-2021-38671

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8AI score0.0043EPSS

CVE•added 2022/03/09 5:15 p.m.•195 views

CVE-2022-23297

Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00325EPSS

Total number of security vulnerabilities3407