Windows Server 2008@- Security Vulnerabilities and Issues — Page 9 of Windows Server 2008@- CVE List

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; ...

9.3CVSS9.1AI score0.33915EPSS

CVE•added 2020/01/14 11:15 p.m.•180 views

CVE-2020-0642

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0624.

7.8CVSS8.5AI score0.15527EPSS

CVE•added 2022/05/10 9:15 p.m.•180 views

CVE-2022-29139

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.09164EPSS

CVE•added 2023/01/10 10:15 p.m.•180 views

CVE-2023-21552

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.0176EPSS

CVE•added 2019/07/15 7:15 p.m.•179 views

CVE-2019-1094

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1095, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116.

6.5CVSS6.1AI score0.12437EPSS

CVE•added 2020/08/17 7:15 p.m.•179 views

CVE-2020-1530

An elevation of privilege vulnerability exists when Windows Remote Access improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The security updat...

7.8CVSS8.3AI score0.00594EPSS

CVE•added 2021/11/10 1:18 a.m.•179 views

CVE-2021-38666

Remote Desktop Client Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.24022EPSS

CVE•added 2023/01/10 10:15 p.m.•179 views

CVE-2023-21535

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

8.1CVSS8.1AI score0.00139EPSS

CVE•added 2015/09/09 12:59 a.m.•178 views

CVE-2015-2518

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.34211EPSS

CVE•added 2019/01/08 9:29 p.m.•178 views

CVE-2019-0538

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka "Jet Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...

9.3CVSS8AI score0.35437EPSS

CVE•added 2022/10/11 7:15 p.m.•178 views

CVE-2022-41081

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.02655EPSS

CVE•added 2023/01/10 10:15 p.m.•178 views

CVE-2023-21726

Windows Credential Manager User Interface Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00139EPSS

CVE•added 2022/01/11 9:15 p.m.•177 views

CVE-2022-21920

Windows Kerberos Elevation of Privilege Vulnerability

9CVSS8.9AI score0.04087EPSS

CVE•added 2022/04/15 7:15 p.m.•177 views

CVE-2022-26815

Windows DNS Server Remote Code Execution Vulnerability

9CVSS6.9AI score0.08193EPSS

CVE•added 2023/11/14 6:15 p.m.•177 views

CVE-2023-36423

Microsoft Remote Registry Service Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.00574EPSS

CVE•added 2015/09/09 12:59 a.m.•176 views

CVE-2015-2511

6.9CVSS8.5AI score0.34211EPSS

CVE•added 2019/07/15 7:15 p.m.•176 views

CVE-2019-1096

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'.

5.5CVSS5.6AI score0.23126EPSS

CVE•added 2023/04/11 9:15 p.m.•176 views

CVE-2023-21727

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02829EPSS

CVE•added 2023/03/14 5:15 p.m.•176 views

CVE-2023-23405

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.0116EPSS

CVE•added 2023/04/11 9:15 p.m.•176 views

CVE-2023-28218

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

7CVSS7AI score0.24655EPSS

CVE•added 2024/06/11 5:15 p.m.•176 views

CVE-2024-30063

Windows Distributed File System (DFS) Remote Code Execution Vulnerability

6.7CVSS8.1AI score0.00293EPSS

CVE•added 2020/10/16 11:15 p.m.•175 views

CVE-2020-16933

A security feature bypass vulnerability exists in Microsoft Word software when it fails to properly handle .LNK files. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the file co...

8.8CVSS6.6AI score0.0284EPSS

CVE•added 2022/07/12 11:15 p.m.•175 views

CVE-2022-22025

Windows Internet Information Services Cachuri Module Denial of Service Vulnerability

7.5CVSS7.9AI score0.42999EPSS

CVE•added 2024/01/09 6:15 p.m.•175 views

CVE-2024-20657

Windows Group Policy Elevation of Privilege Vulnerability

7CVSS7.2AI score0.00269EPSS

CVE•added 2010/04/14 4:0 p.m.•174 views

CVE-2010-0480

Multiple stack-based buffer overflows in the MPEG Layer-3 audio codecs in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to execute arbitrary code via a crafted AVI file, aka "MPEG Layer-3 Audio Decoder Stac...

9.3CVSS7.5AI score0.81749EPSS

CVE•added 2022/10/11 7:15 p.m.•174 views

CVE-2022-37986

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00258EPSS

CVE•added 2022/10/11 7:15 p.m.•174 views

CVE-2022-38044

Windows CD-ROM File System Driver Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.24597EPSS

CVE•added 2025/01/14 6:15 p.m.•174 views

CVE-2025-21302

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00461EPSS

CVE•added 2009/07/29 5:30 p.m.•173 views

CVE-2009-2493

The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1; and Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2; does not properly r...

9.3CVSS7.2AI score0.47797EPSS

CVE•added 2023/02/14 8:15 p.m.•173 views

CVE-2023-21690

Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.22726EPSS

CVE•added 2023/05/09 6:15 p.m.•173 views

CVE-2023-28283

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.1CVSS9AI score0.00681EPSS

CVE•added 2023/06/14 12:15 a.m.•173 views

CVE-2023-32015

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.02721EPSS

CVE•added 2025/01/14 6:15 p.m.•173 views

CVE-2025-21263

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00132EPSS

CVE•added 2022/09/13 7:15 p.m.•172 views

CVE-2022-34729

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.03937EPSS

CVE•added 2023/04/11 9:15 p.m.•172 views

CVE-2023-28220

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.05722EPSS

CVE•added 2024/01/09 6:15 p.m.•171 views

CVE-2024-20680

Windows Message Queuing Client (MSMQC) Information Disclosure

6.5CVSS6.3AI score0.0339EPSS

CVE•added 2024/04/09 5:16 p.m.•171 views

CVE-2024-29066

Windows Distributed File System (DFS) Remote Code Execution Vulnerability

7.2CVSS7.8AI score0.00642EPSS

CVE•added 2022/10/11 7:15 p.m.•170 views

CVE-2022-38029

Windows ALPC Elevation of Privilege Vulnerability

7CVSS7.6AI score0.04077EPSS

CVE•added 2023/03/14 5:15 p.m.•170 views

CVE-2023-24869

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.0116EPSS

CVE•added 2024/04/09 5:15 p.m.•170 views

CVE-2024-26179

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01643EPSS

CVE•added 2019/08/14 9:15 p.m.•169 views

CVE-2019-1155

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.8AI score0.09677EPSS

CVE•added 2019/09/11 10:15 p.m.•169 views

CVE-2019-1244

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1245, CVE-2019-1251.

6.5CVSS6.2AI score0.27638EPSS

CVE•added 2020/10/16 11:15 p.m.•169 views

CVE-2020-16923

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.To exploit the vulnerability, a user would have to open a specially crafted f...

7.8CVSS8.3AI score0.08517EPSS

CVE•added 2022/07/12 11:15 p.m.•169 views

CVE-2022-22027

Windows Fax Service Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01926EPSS

CVE•added 2022/06/15 10:15 p.m.•169 views

CVE-2022-30151

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

7CVSS7.7AI score0.00326EPSS

CVE•added 2022/10/11 7:15 p.m.•169 views

CVE-2022-37976

Active Directory Certificate Services Elevation of Privilege Vulnerability