Windows Server 2008@r2 Security Vulnerabilities and Issues — Page 19 of Windows Server 2008@r2 CVE List

Lucene search

MicrosoftWindows Server 2008r2

3052 matches found

CVE•added 2018/01/04 2:29 p.m.•132 views

CVE-2018-0754

The Windows Adobe Type Manager Font Driver (Atmfd.dll) in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerab...

5.5CVSS5.2AI score0.00779EPSS

CVE•added 2018/02/15 2:29 a.m.•132 views

CVE-2018-0829

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory a...

4.7CVSS4.9AI score0.11699EPSS

CVE•added 2018/11/14 1:29 a.m.•132 views

CVE-2018-8562

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server...

7.8CVSS7.2AI score0.00678EPSS

CVE•added 2019/01/08 9:29 p.m.•132 views

CVE-2019-0576

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka "Jet Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...

9.3CVSS8AI score0.35437EPSS

CVE•added 2019/03/06 12:0 a.m.•132 views

CVE-2019-0596

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0595, CVE-2019-0597, CVE-2019-0598, CVE-2019-0599, CVE-2019-0625.

9.3CVSS8.4AI score0.32161EPSS

CVE•added 2019/03/06 12:0 a.m.•132 views

CVE-2019-0599

9.3CVSS8.4AI score0.32161EPSS

CVE•added 2019/04/09 9:29 p.m.•132 views

CVE-2019-0845

A remote code execution vulnerability exists when the IOleCvt interface renders ASP webpage content, aka 'Windows IOleCvt Interface Remote Code Execution Vulnerability'.

9.3CVSS8.9AI score0.22095EPSS

CVE•added 2020/01/14 11:15 p.m.•132 views

CVE-2020-0630

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627...

7.8CVSS7.7AI score0.00511EPSS

CVE•added 2020/02/11 10:15 p.m.•132 views

CVE-2020-0729

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'.

8.8CVSS8.2AI score0.29862EPSS

CVE•added 2021/04/13 8:15 p.m.•132 views

CVE-2021-28434

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS

CVE•added 2021/06/08 11:15 p.m.•132 views

CVE-2021-31968

Windows Remote Desktop Services Denial of Service Vulnerability

7.5CVSS8.4AI score0.1792EPSS

CVE•added 2022/12/13 7:15 p.m.•132 views

CVE-2022-41076

PowerShell Remote Code Execution Vulnerability

8.5CVSS8.6AI score0.35406EPSS

CVE•added 2022/12/13 7:15 p.m.•132 views

CVE-2022-44676

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00111EPSS

CVE•added 2023/01/10 10:15 p.m.•132 views

CVE-2023-21546

Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00144EPSS

CVE•added 2023/03/14 5:15 p.m.•132 views

CVE-2023-23422

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00336EPSS

CVE•added 2023/04/11 9:15 p.m.•132 views

CVE-2023-24887

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

8.8CVSS9.1AI score0.0304EPSS

CVE•added 2024/05/14 5:16 p.m.•132 views

CVE-2024-30027

NTFS Elevation of Privilege Vulnerability

7.8CVSS6.4AI score0.00377EPSS

CVE•added 2024/11/12 6:15 p.m.•132 views

CVE-2024-49046

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00232EPSS

CVE•added 2025/01/14 6:15 p.m.•132 views

CVE-2025-21310

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE•added 2018/04/12 1:29 a.m.•131 views

CVE-2018-1013

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Win...

9.3CVSS7.3AI score0.41385EPSS

CVE•added 2018/11/14 1:29 a.m.•131 views

CVE-2018-8565

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka "Win32k Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2...

5.5CVSS6.4AI score0.0263EPSS

CVE•added 2019/01/08 9:29 p.m.•131 views

CVE-2019-0581

9.3CVSS8AI score0.35437EPSS

CVE•added 2019/03/06 12:0 a.m.•131 views

CVE-2019-0597

9.3CVSS8.4AI score0.32161EPSS

CVE•added 2019/06/12 2:29 p.m.•131 views

CVE-2019-0722

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating system that could caus...

9CVSS8.1AI score0.13264EPSS

CVE•added 2019/04/09 9:29 p.m.•131 views

CVE-2019-0851

9.3CVSS8.4AI score0.2548EPSS

CVE•added 2019/08/14 9:15 p.m.•131 views

CVE-2019-1144

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; ...

9.3CVSS9.1AI score0.41601EPSS

Web

CVE•added 2020/01/14 11:15 p.m.•131 views

CVE-2020-0639

An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0615.

5.5CVSS6.6AI score0.00681EPSS

CVE•added 2020/08/17 7:15 p.m.•131 views

CVE-2020-1516

An elevation of privilege vulnerability exists when the Windows Work Folders Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The sec...

7.8CVSS8.1AI score0.00387EPSS

CVE•added 2020/11/11 7:15 a.m.•131 views

CVE-2020-17001

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00529EPSS

CVE•added 2021/10/13 1:15 a.m.•131 views

CVE-2021-36953

Windows TCP/IP Denial of Service Vulnerability

7.5CVSS7.9AI score0.06695EPSS

CVE•added 2022/11/09 10:15 p.m.•131 views

CVE-2022-41047

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02344EPSS

CVE•added 2023/02/14 8:15 p.m.•131 views

CVE-2023-21799

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9AI score0.00211EPSS

CVE•added 2023/02/14 8:15 p.m.•131 views

CVE-2023-21813

Windows Secure Channel Denial of Service Vulnerability

7.5CVSS7.4AI score0.03441EPSS

CVE•added 2023/03/14 5:15 p.m.•131 views

CVE-2023-24908

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.0116EPSS

CVE•added 2025/01/14 6:15 p.m.•131 views

CVE-2025-21260

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE•added 2014/02/12 4:50 a.m.•130 views

CVE-2014-0263

The Direct2D implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a large 2D geometric figure that is encountered with Internet Explorer, aka ...

9.3CVSS7.5AI score0.4649EPSS

CVE•added 2017/02/20 4:59 p.m.•130 views

CVE-2017-0038

gdi32.dll in Graphics Device Interface (GDI) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information from process heap...

5.5CVSS4.7AI score0.82234EPSS

CVE•added 2018/03/14 5:29 p.m.•130 views

CVE-2018-0868

Windows Installer in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how input is ...

7CVSS6.1AI score0.00835EPSS

CVE•added 2018/09/13 12:29 a.m.•130 views

CVE-2018-8442

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

5.5CVSS5.7AI score0.03012EPSS

CVE•added 2019/03/06 12:0 a.m.•130 views

CVE-2019-0660

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/05/16 7:29 p.m.•130 views

CVE-2019-0882

6.5CVSS6.2AI score0.25343EPSS

CVE•added 2019/07/15 7:15 p.m.•130 views

CVE-2019-1082

An elevation of privilege vulnerability exists in Microsoft Windows where a certain DLL, with Local Service privilege, is vulnerable to race planting a customized DLL.An attacker who successfully exploited this vulnerability could potentially elevate privilege to SYSTEM.The update addresses this vu...

7.8CVSS6.2AI score0.00372EPSS

CVE•added 2019/08/14 9:15 p.m.•130 views

CVE-2019-1145

9.3CVSS9.1AI score0.3187EPSS

CVE•added 2019/10/10 2:15 p.m.•130 views

CVE-2019-1364

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1362.

7.8CVSS7.6AI score0.08038EPSS

CVE•added 2021/02/25 11:15 p.m.•130 views

CVE-2021-24078

Windows DNS Server Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.12438EPSS

CVE•added 2021/11/10 1:19 a.m.•130 views

CVE-2021-42285

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00253EPSS

CVE•added 2022/11/09 10:15 p.m.•130 views

CVE-2022-41086

Windows Group Policy Elevation of Privilege Vulnerability