Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2008-

2548 matches found

CVE
CVEadded 2020/03/12 4:15 p.m.90 views

CVE-2020-0843

An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerabi...

7.8CVSS6.5AI score0.00646EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.90 views

CVE-2020-0881

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0883.

9.3CVSS8.8AI score0.5256EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.90 views

CVE-2020-0922

A remote code execution vulnerability exists in the way that Microsoft COM for Windows handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.To exploit the vulnerability, a user would have to open a specially crafted file...

9.3CVSS8.7AI score0.129EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.90 views

CVE-2020-0946

An information disclosure vulnerability exists when Media Foundation improperly handles objects in memory, aka 'Media Foundation Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0937, CVE-2020-0939, CVE-2020-0945, CVE-2020-0947.

5.5CVSS5.6AI score0.24868EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.90 views

CVE-2020-1314

An elevation of privilege vulnerability exists in Windows Text Service Framework (TSF) when the TSF server fails to properly handle messages sent from TSF clients, aka 'Windows Text Service Framework Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.13831EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.90 views

CVE-2020-17045

Windows KernelStream Information Disclosure Vulnerability

5.5CVSS7AI score0.00606EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.90 views

CVE-2021-1693

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS
CVE
CVEadded 2023/07/11 6:15 p.m.90 views

CVE-2023-33164

Remote Procedure Call Runtime Denial of Service Vulnerability

6.5CVSS7.8AI score0.03672EPSS
CVE
CVEadded 2023/07/11 6:15 p.m.90 views

CVE-2023-35338

Windows Peer Name Resolution Protocol Denial of Service Vulnerability

7.5CVSS8.4AI score0.03356EPSS
CVE
CVEadded 2024/07/09 5:15 p.m.90 views

CVE-2024-38068

Windows Online Certificate Status Protocol (OCSP) Server Denial of Service Vulnerability

7.5CVSS8.4AI score0.23444EPSS
CVE
CVEadded 2024/08/13 6:15 p.m.90 views

CVE-2024-38120

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS9AI score0.06538EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.90 views

CVE-2025-21200

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00381EPSS
CVE
CVEadded 2011/06/16 8:55 p.m.89 views

CVE-2011-1249

The Ancillary Function Driver (AFD) in afd.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly validate user-mode input, which allows local users to gain privileges v...

7.2CVSS6.3AI score0.39393EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.89 views

CVE-2017-0270

Microsoft Server Message Block 1.0 (SMBv1) allows an information disclosure vulnerability in the way that Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 handles...

5.9CVSS6.1AI score0.27804EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.89 views

CVE-2019-1395

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1393, CVE-2019-1394, CVE-2019-1396, CVE-2019-1408, CVE-2019-1434.

7.8CVSS7.6AI score0.00817EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.89 views

CVE-2019-1441

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Win32k Graphics Remote Code Execution Vulnerability'.

9.3CVSS9.4AI score0.20625EPSS
CVE
CVEadded 2019/12/10 10:15 p.m.89 views

CVE-2019-1470

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Information Disclosure Vulnerability'.

6CVSS6.3AI score0.00946EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.89 views

CVE-2020-0753

An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0754.

7.8CVSS8.1AI score0.1948EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.89 views

CVE-2020-0907

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'.

9.3CVSS8.3AI score0.27362EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.89 views

CVE-2020-0912

An elevation of privilege vulnerability exists when the Windows Function Discovery SSDP Provider improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privil...

7.8CVSS7.7AI score0.00317EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.89 views

CVE-2020-1254

An elevation of privilege vulnerability exists when Windows Modules Installer Service improperly handles class object members.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows Modules Installer Service Elevation of Privilege Vulnerability'.

7.8CVSS8.1AI score0.00397EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.89 views

CVE-2021-1679

Windows CryptoAPI Denial of Service Vulnerability

6.5CVSS7.3AI score0.04105EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.89 views

CVE-2021-28309

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00403EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.89 views

CVE-2022-44673

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

7CVSS7.4AI score0.04577EPSS
CVE
CVEadded 2023/07/11 6:15 p.m.89 views

CVE-2023-32034

Remote Procedure Call Runtime Denial of Service Vulnerability

7.5CVSS7.8AI score0.03672EPSS
CVE
CVEadded 2023/07/11 6:15 p.m.89 views

CVE-2023-32045

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS8.4AI score0.03228EPSS
CVE
CVEadded 2023/07/11 6:15 p.m.89 views

CVE-2023-33169

Remote Procedure Call Runtime Denial of Service Vulnerability

7.5CVSS7.8AI score0.03672EPSS
CVE
CVEadded 2023/07/11 6:15 p.m.89 views

CVE-2023-35351

Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability

6.6CVSS8.1AI score0.00293EPSS
CVE
CVEadded 2024/07/09 5:15 p.m.89 views

CVE-2024-38017

Microsoft Message Queuing Information Disclosure Vulnerability

5.5CVSS7AI score0.00538EPSS
CVE
CVEadded 2024/07/09 5:15 p.m.89 views

CVE-2024-38071

Windows Remote Desktop Licensing Service Denial of Service Vulnerability

7.5CVSS8.5AI score0.20182EPSS
CVE
CVEadded 2024/08/13 6:15 p.m.89 views

CVE-2024-38122

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

5.5CVSS5.2AI score0.00707EPSS
CVE
CVEadded 2024/08/13 6:15 p.m.89 views

CVE-2024-38151

Windows Kernel Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00348EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.89 views

CVE-2024-49127

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00334EPSS
CVE
CVEadded 2009/10/14 10:30 a.m.88 views

CVE-2009-2510

The CryptoAPI component in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, as used by Internet Explorer and other applications, does not properly handle a '\0' character in a domain ...

6.8CVSS5.8AI score0.17223EPSS
CVE
CVEadded 2015/01/13 10:59 p.m.88 views

CVE-2015-0015

Microsoft Windows Server 2003 SP2, Server 2008 SP2 and R2 SP1, and Server 2012 Gold and R2 allow remote attackers to cause a denial of service (system hang and RADIUS outage) via crafted username strings to (1) Internet Authentication Service (IAS) or (2) Network Policy Server (NPS), aka "Network P...

7.8CVSS6.7AI score0.38142EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.88 views

CVE-2019-1394

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1393, CVE-2019-1395, CVE-2019-1396, CVE-2019-1408, CVE-2019-1434.

7.8CVSS7.6AI score0.00817EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.88 views

CVE-2019-1396

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1393, CVE-2019-1394, CVE-2019-1395, CVE-2019-1408, CVE-2019-1434.

7.8CVSS7.6AI score0.00817EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.88 views

CVE-2019-1435

An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1407, CVE-2019-1433, CVE-2019-1437, CVE-2019-1438.

7.8CVSS8.5AI score0.00404EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.88 views

CVE-2019-1438

An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1407, CVE-2019-1433, CVE-2019-1435, CVE-2019-1437.

7.8CVSS8.5AI score0.00404EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.88 views

CVE-2020-0719

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0723, CVE-2020-0724, CVE...

7.8CVSS7.7AI score0.00549EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.88 views

CVE-2020-0772

An elevation of privilege vulnerability exists when Windows Error Reporting improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is unique from CV...

7.8CVSS8.7AI score0.0038EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.88 views

CVE-2020-0856

An information disclosure vulnerability exists when Active Directory integrated DNS (ADIDNS) mishandles objects in memory. An authenticated attacker who successfully exploited this vulnerability would be able to read sensitive information about the target system.To exploit this condition, an authen...

6.5CVSS7.2AI score0.18824EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.88 views

CVE-2020-1038

A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.To exploit this vulnerability, an attacker would have to log on to an affected system...

5.5CVSS6.8AI score0.00702EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.88 views

CVE-2020-1074

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.3AI score0.31961EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.88 views

CVE-2020-1245

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; o...

7.8CVSS7.8AI score0.0047EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.88 views

CVE-2020-1371

An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Event Logging Service Elevation of Privilege Vulnerability'. This CVE ID i...

7.8CVSS8.6AI score0.00827EPSS
CVE
CVEadded 2020/10/16 11:15 p.m.88 views

CVE-2020-16900

An elevation of privilege vulnerability exists when the Windows Event System improperly handles objects in memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The ...

7.8CVSS7.7AI score0.00263EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.88 views

CVE-2021-26875

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00378EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.88 views

CVE-2021-28446

Windows Portmapping Information Disclosure Vulnerability

7.1CVSS6.6AI score0.0099EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.88 views

CVE-2021-38626

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00249EPSS
Total number of security vulnerabilities2548