Windows Server 2008@- Security Vulnerabilities and Issues — Page 3 of Windows Server 2008@- CVE List

The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation hav...

7.8CVSS7.7AI score0.05017EPSS

In wild

CVE•added 2023/09/12 5:15 p.m.•664 views

CVE-2023-38142

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.04835EPSS

CVE•added 2023/09/12 5:15 p.m.•656 views

CVE-2023-38160

Windows TCP/IP Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00221EPSS

CVE•added 2024/10/08 6:15 p.m.•646 views

CVE-2024-43572

Microsoft Management Console Remote Code Execution Vulnerability

7.8CVSS8.6AI score0.52877EPSS

In wild

CVE•added 2023/05/09 6:15 p.m.•640 views

CVE-2023-24932

Secure Boot Security Feature Bypass Vulnerability

6.7CVSS6.9AI score0.00863EPSS

In wild

CVE•added 2023/10/10 6:15 p.m.•631 views

CVE-2023-36584

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS7.3AI score0.20094EPSS

In wild

CVE•added 2025/04/08 6:16 p.m.•615 views

CVE-2025-29824

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.01252EPSS

In wild

CVE•added 2019/09/03 6:15 p.m.•608 views

CVE-2019-1125

An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacker who successfully exploited the vulnerability could read privileged data across trust boundaries.To exploit this vulnerability, an attacker would have to log on to an a...

5.6CVSS6.8AI score0.13742EPSS

CVE•added 2023/07/11 6:15 p.m.•594 views

CVE-2023-36874

Windows Error Reporting Service Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.62953EPSS

In wild

CVE•added 2022/05/10 9:15 p.m.•585 views

CVE-2022-29130

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.13776EPSS

CVE•added 2022/07/12 11:15 p.m.•577 views

CVE-2022-30209

Windows IIS Server Elevation of Privilege Vulnerability

7.4CVSS7.9AI score0.05027EPSS

CVE•added 2021/05/11 8:15 p.m.•564 views

CVE-2020-24588

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802...

3.5CVSS6.4AI score0.00584EPSS

CVE•added 2023/03/14 5:15 p.m.•556 views

CVE-2023-23415

Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.03976EPSS

CVE•added 2008/10/23 10:0 p.m.•531 views

CVE-2008-4250

The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote attackers to execute arbitrary code via a crafted RPC request that triggers the overflow during path canonicalization, as exploited in the wild by...

10CVSS9.5AI score0.94126EPSS

CVE•added 2022/11/09 10:15 p.m.•519 views

CVE-2022-37967

Windows Kerberos Elevation of Privilege Vulnerability

7.2CVSS7.9AI score0.02345EPSS

CVE•added 2018/03/14 5:29 p.m.•512 views

CVE-2018-0886

The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows a remote code execu...

7.6CVSS7AI score0.91551EPSS

CVE•added 2023/07/11 6:15 p.m.•512 views

CVE-2023-32046

Windows MSHTML Platform Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.78924EPSS

In wild

CVE•added 2023/09/12 5:15 p.m.•502 views

CVE-2023-38144

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01242EPSS

CVE•added 2023/11/14 6:15 p.m.•500 views

CVE-2023-36025

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS9.5AI score0.90295EPSS

In wild

CVE•added 2024/11/12 6:15 p.m.•494 views

CVE-2024-38203

Windows Package Library Manager Information Disclosure Vulnerability

6.2CVSS5.8AI score0.00199EPSS

CVE•added 2008/10/20 5:59 p.m.•493 views

CVE-2008-4609

The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state ...

7.1CVSS8.8AI score0.00465EPSS

CVE•added 2023/09/12 5:15 p.m.•493 views

CVE-2023-36801

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6AI score0.00248EPSS

CVE•added 2016/04/12 11:59 p.m.•490 views

CVE-2016-0165

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vu...

7.8CVSS6.8AI score0.11623EPSS

In wild

CVE•added 2023/04/11 9:15 p.m.•490 views

CVE-2023-28229

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

7CVSS7AI score0.07065EPSS

In wild

CVE•added 2024/07/09 5:15 p.m.•490 views

CVE-2024-38077

Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.85029EPSS

CVE•added 2023/09/12 5:15 p.m.•471 views

CVE-2023-38161

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00071EPSS

CVE•added 2024/12/12 2:4 a.m.•470 views

CVE-2024-49138

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.5AI score0.84734EPSS

In wild

CVE•added 2023/11/14 6:15 p.m.•462 views

CVE-2023-36036

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.00997EPSS

In wild

CVE•added 2024/03/12 5:15 p.m.•462 views

CVE-2024-26169

Windows Error Reporting Service Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.22048EPSS

In wild

CVE•added 2024/09/10 5:15 p.m.•461 views

CVE-2024-38014

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.0957EPSS

In wild

CVE•added 2023/09/12 5:15 p.m.•454 views

CVE-2023-36804

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00071EPSS

CVE•added 2023/09/12 5:15 p.m.•451 views

CVE-2023-38143

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01242EPSS

CVE•added 2023/09/12 5:15 p.m.•447 views

CVE-2023-38141

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00315EPSS

CVE•added 2019/08/14 9:15 p.m.•445 views

CVE-2019-1181

A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. A...

10CVSS9.7AI score0.684EPSS

CVE•added 2023/09/12 5:15 p.m.•444 views

CVE-2023-38152

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6AI score0.0239EPSS

CVE•added 2023/10/10 6:15 p.m.•440 views

CVE-2023-35349

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.01159EPSS

CVE•added 2023/09/12 5:15 p.m.•440 views

CVE-2023-38139

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00584EPSS

CVE•added 2022/11/09 10:15 p.m.•432 views

CVE-2022-37966

Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability

8.1CVSS8.5AI score0.01079EPSS

CVE•added 2023/10/10 6:15 p.m.•422 views

CVE-2023-36577

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.00191EPSS

CVE•added 2024/03/12 5:15 p.m.•412 views

CVE-2024-21429

Windows USB Hub Driver Remote Code Execution Vulnerability

6.8CVSS7.2AI score0.00233EPSS

CVE•added 2024/02/13 6:15 p.m.•409 views

CVE-2024-21340

Windows Kernel Information Disclosure Vulnerability

4.6CVSS5.3AI score0.00131EPSS

CVE•added 2023/10/10 6:15 p.m.•397 views

CVE-2023-36589

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

7.3CVSS8.4AI score0.00423EPSS

CVE•added 2023/10/10 6:15 p.m.•397 views

CVE-2023-36602

Windows TCP/IP Denial of Service Vulnerability

7.5CVSS8.4AI score0.03748EPSS

CVE•added 2023/08/08 6:15 p.m.•395 views

CVE-2023-20569

A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure.

4.7CVSS6.6AI score0.00633EPSS

CVE•added 2023/10/10 6:15 p.m.•395 views

CVE-2023-36567

Windows Deployment Services Information Disclosure Vulnerability

7.5CVSS8.2AI score0.05289EPSS

CVE•added 2023/10/10 6:15 p.m.•395 views

CVE-2023-41767

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2023/10/10 6:15 p.m.•392 views

CVE-2023-36436

Windows MSHTML Platform Remote Code Execution Vulnerability