Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2008*

2508 matches found

CVE
CVEadded 2017/05/12 2:29 p.m.102 views

CVE-2017-0276

Microsoft Server Message Block 1.0 (SMBv1) allows an information disclosure vulnerability in the way that Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 handles...

5.9CVSS6.1AI score0.27804EPSS
CVE
CVEadded 2018/04/12 1:29 a.m.102 views

CVE-2018-8116

A denial of service vulnerability exists in the way that Windows handles objects in memory, aka "Microsoft Graphics Component Denial of Service Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016,...

5.5CVSS6.4AI score0.00496EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.102 views

CVE-2019-0901

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895,...

9.3CVSS8.1AI score0.29592EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.102 views

CVE-2019-1219

An information disclosure vulnerability exists when the Windows Transaction Manager improperly handles objects in memory, aka 'Windows Transaction Manager Information Disclosure Vulnerability'.

5.5CVSS6.2AI score0.00955EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.102 views

CVE-2019-1249

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1241, CVE-2019-1242, CVE-2019-1243, CVE-2019-1246, CVE-2019-1247,...

9.3CVSS8.2AI score0.35463EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.102 views

CVE-2019-1268

An elevation of privilege exists when Winlogon does not properly handle file path information, aka 'Winlogon Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.00372EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.102 views

CVE-2020-1008

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992,...

9.3CVSS8AI score0.33652EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.102 views

CVE-2020-1009

An elevation of privilege vulnerability exists in the way that the Microsoft Store Install Service handles file operations in protected locations, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0934, CVE-2020-0983, CVE-2020-1011, CVE-2020-1015.

7.8CVSS7.7AI score0.08877EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.102 views

CVE-2020-1436

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely, aka 'Windows Font Library Remote Code Execution Vulnerabilit...

8.8CVSS9.3AI score0.10033EPSS
CVE
CVEadded 2021/06/08 11:15 p.m.102 views

CVE-2021-31953

Windows Filter Manager Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.00665EPSS
CVE
CVEadded 2021/10/13 1:15 a.m.102 views

CVE-2021-38662

Windows Fast FAT File System Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00572EPSS
CVE
CVEadded 2022/04/15 7:15 p.m.102 views

CVE-2022-24498

Windows iSCSI Target Service Information Disclosure Vulnerability

6.5CVSS7.6AI score0.05173EPSS
CVE
CVEadded 2022/09/13 7:15 p.m.102 views

CVE-2022-34730

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.02358EPSS
CVE
CVEadded 2022/09/13 7:15 p.m.102 views

CVE-2022-34732

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.02358EPSS
CVE
CVEadded 2023/05/31 7:15 p.m.102 views

CVE-2022-35743

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00312EPSS
CVE
CVEadded 2023/05/31 7:15 p.m.102 views

CVE-2022-35752

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

8.1CVSS9AI score0.02251EPSS
CVE
CVEadded 2022/08/09 8:15 p.m.102 views

CVE-2022-35767

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

8.1CVSS9AI score0.00171EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.102 views

CVE-2022-44678

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00341EPSS
CVE
CVEadded 2023/07/11 6:15 p.m.102 views

CVE-2023-35366

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.02051EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.102 views

CVE-2024-49085

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.02689EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.102 views

CVE-2025-21251

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.01023EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.102 views

CVE-2025-21297

Windows Remote Desktop Services Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.01027EPSS
CVE
CVEadded 2009/09/08 10:30 p.m.101 views

CVE-2009-1925

The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 does not properly manage state information, which allows remote attackers to execute arbitrary code by sending packets to a listening service, and thereby triggering misinterpretation of an unspecif...

10CVSS7.9AI score0.41899EPSS
CVE
CVEadded 2013/01/09 6:9 p.m.101 views

CVE-2013-0006

Microsoft XML Core Services (aka MSXML) 3.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML Integer Truncation Vulnerability."

9.3CVSS7.5AI score0.59737EPSS
CVE
CVEadded 2016/11/10 6:59 a.m.101 views

CVE-2016-3338

The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to gain privileges via a crafted appl...

9.3CVSS7.5AI score0.1385EPSS
CVE
CVEadded 2016/09/14 10:59 a.m.101 views

CVE-2016-3345

The SMBv1 server in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Authenticated...

9CVSS8.9AI score0.31921EPSS
CVE
CVEadded 2017/07/11 9:29 p.m.101 views

CVE-2017-8577

Win32k in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability when it fails to properly handle objects in memory, aka ...

7CVSS6.9AI score0.12071EPSS
CVE
CVEadded 2019/10/10 2:15 p.m.101 views

CVE-2019-1319

An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00397EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.101 views

CVE-2020-0956

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0957, CVE-2020-0958.

7.8CVSS8AI score0.00274EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.101 views

CVE-2020-0999

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992,...

9.3CVSS8AI score0.33652EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.101 views

CVE-2020-1272

An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows Installer Eleva...

7.8CVSS8.1AI score0.00889EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.101 views

CVE-2022-21924

Workstation Service Remote Protocol Security Feature Bypass Vulnerability

5.4CVSS7.2AI score0.00866EPSS
CVE
CVEadded 2022/04/15 7:15 p.m.101 views

CVE-2022-24544

Windows Kerberos Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00281EPSS
CVE
CVEadded 2022/04/15 7:15 p.m.101 views

CVE-2022-26787

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00373EPSS
CVE
CVEadded 2022/10/11 7:15 p.m.101 views

CVE-2022-37999

Windows Group Policy Preference Client Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00255EPSS
CVE
CVEadded 2022/10/11 7:15 p.m.101 views

CVE-2022-38022

Windows Kernel Elevation of Privilege Vulnerability

3.3CVSS6AI score0.00255EPSS
CVE
CVEadded 2023/07/11 6:15 p.m.101 views

CVE-2023-35330

Windows Extended Negotiation Denial of Service Vulnerability

7.5CVSS8.4AI score0.01077EPSS
CVE
CVEadded 2024/06/11 5:15 p.m.101 views

CVE-2024-30091

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.04331EPSS
CVE
CVEadded 2024/10/08 6:15 p.m.101 views

CVE-2024-43599

Remote Desktop Client Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.04453EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.101 views

CVE-2024-49089

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

7.2CVSS7.2AI score0.05272EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.101 views

CVE-2024-49096

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.07271EPSS
CVE
CVEadded 2025/04/08 6:15 p.m.101 views

CVE-2025-26647

Improper input validation in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network.

8.8CVSS7AI score0.00139EPSS
CVE
CVEadded 2009/08/12 5:30 p.m.100 views

CVE-2009-1930

The Telnet service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote Telnet servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, aka "Telnet Credential Reflection ...

10CVSS7.5AI score0.46181EPSS
CVE
CVEadded 2016/06/16 1:59 a.m.100 views

CVE-2016-3225

The SMB server component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application that forwards an authentication requ...

7.8CVSS7.6AI score0.2738EPSS
CVE
CVEadded 2016/12/20 6:59 a.m.100 views

CVE-2016-7274

Uniscribe in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to execute arbitrary code via a crafted web site, aka "Windows ...

9.3CVSS8.8AI score0.44912EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.100 views

CVE-2017-0077

The kernel-mode drivers in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow a local authenticated attacker to execute a specially crafted application to obtain informatio...

7.8CVSS7.4AI score0.04643EPSS
CVE
CVEadded 2017/04/12 2:59 p.m.100 views

CVE-2017-0182

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch running on a Windows 10, Windows Server 2008 R2, Windows 8.1, Windows Server 2012 R2, or Windows Server 2016 host server fails to properly validate input from a privileged user on a guest operating system, aka "Hyper-V D...

6.3CVSS5.9AI score0.00584EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.100 views

CVE-2017-0278

The Microsoft Server Message Block 1.0 (SMBv1) server on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to execute remote code by the way it ...

7CVSS7.7AI score0.05522EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.100 views

CVE-2019-0734

An elevation of privilege vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully decode and replace authentication request using Kerberos, allowing an attacker to be validated as an Administrator.The update addresses this vulnerability by changing how th...

9.3CVSS7.6AI score0.08355EPSS
CVE
CVEadded 2019/07/15 7:15 p.m.100 views

CVE-2019-1093

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1097.

5.5CVSS5.8AI score0.0143EPSS
Total number of security vulnerabilities2508