Windows Server 2008@r2 Security Vulnerabilities and Issues — Page 28 of Windows Server 2008@r2 CVE List

Lucene search

MicrosoftWindows Server 2008r2

3052 matches found

CVE•added 2024/09/10 5:15 p.m.•113 views

CVE-2024-43455

Windows Remote Desktop Licensing Service Spoofing Vulnerability

9.8CVSS9.2AI score0.0541EPSS

CVE•added 2017/03/17 12:59 a.m.•112 views

CVE-2017-0114

Uniscribe in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Uniscribe Information Disclosure Vulnerability." CVE-2017-0085, CVE-2017-0091, CVE-2017-0092, CVE-...

4.3CVSS4.5AI score0.13744EPSS

CVE•added 2017/06/15 1:29 a.m.•112 views

CVE-2017-0288

Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows improper disclosure of memory contents, aka "Windows Graphics Information Disclosure Vulnerability". This CV...

5CVSS5.1AI score0.24455EPSS

CVE•added 2018/02/15 2:29 a.m.•112 views

CVE-2018-0820

The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are han...

7.8CVSS5.4AI score0.03404EPSS

CVE•added 2018/07/11 12:29 a.m.•112 views

CVE-2018-8282

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Wind...

7.8CVSS6.7AI score0.00503EPSS

CVE•added 2020/02/11 10:15 p.m.•112 views

CVE-2020-0731

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0719, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0723, CVE...

7.8CVSS7.7AI score0.00549EPSS

CVE•added 2020/03/12 4:15 p.m.•112 views

CVE-2020-0822

An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations, aka 'Windows Language Pack Installer Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00511EPSS

CVE•added 2020/06/09 8:15 p.m.•112 views

CVE-2020-1247

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1251, CVE-2020-1253, CVE-2020-1310.

7.8CVSS7AI score0.00589EPSS

CVE•added 2020/08/17 7:15 p.m.•112 views

CVE-2020-1484

An elevation of privilege vulnerability exists when the Windows Work Folders Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The sec...

7.8CVSS8.1AI score0.00399EPSS

CVE•added 2020/12/10 12:15 a.m.•112 views

CVE-2020-16959

Windows Backup Engine Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01076EPSS

CVE•added 2021/01/12 8:15 p.m.•112 views

CVE-2021-1655

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS

CVE•added 2021/01/12 8:15 p.m.•112 views

CVE-2021-1700

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9CVSS8.3AI score0.07046EPSS

CVE•added 2021/01/12 8:15 p.m.•112 views

CVE-2021-1701

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9CVSS8.3AI score0.07046EPSS

CVE•added 2021/04/13 8:15 p.m.•112 views

CVE-2021-27095

Windows Media Video Decoder Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01263EPSS

CVE•added 2021/04/13 8:15 p.m.•112 views

CVE-2021-28343

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS

CVE•added 2021/09/15 12:15 p.m.•112 views

CVE-2021-36959

Windows Authenticode Spoofing Vulnerability

5.5CVSS6.8AI score0.02097EPSS

CVE•added 2022/10/11 7:15 p.m.•112 views

CVE-2022-24504

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00263EPSS

CVE•added 2022/09/13 7:15 p.m.•112 views

CVE-2022-35840

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.10301EPSS

CVE•added 2022/11/09 10:15 p.m.•112 views

CVE-2022-41044

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00121EPSS

CVE•added 2022/12/13 7:15 p.m.•112 views

CVE-2022-41121

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00188EPSS

CVE•added 2023/02/14 8:15 p.m.•112 views

CVE-2023-21693

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

5.7CVSS5.5AI score0.00634EPSS

CVE•added 2023/04/11 9:15 p.m.•112 views

CVE-2023-28272

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00386EPSS

CVE•added 2023/07/11 6:15 p.m.•112 views

CVE-2023-32038

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.00379EPSS

CVE•added 2024/05/14 5:16 p.m.•112 views

CVE-2024-30014

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

7.5CVSS7AI score0.01729EPSS

CVE•added 2024/05/14 5:17 p.m.•112 views

CVE-2024-30029

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

7.5CVSS7AI score0.01744EPSS

CVE•added 2024/11/12 6:15 p.m.•112 views

CVE-2024-43634

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

6.8CVSS6.7AI score0.0037EPSS

CVE•added 2025/02/11 6:15 p.m.•112 views

CVE-2025-21376

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00512EPSS

CVE•added 2025/04/08 6:16 p.m.•112 views

CVE-2025-29810

Improper access control in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network.

7.5CVSS7.1AI score0.00023EPSS

CVE•added 2016/02/10 11:59 a.m.•111 views

CVE-2016-0042

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandle DLL loading, which allows local users to gain privileges via a crafted application, aka "Windows DLL Loading Remote Co...

7.8CVSS7.8AI score0.01111EPSS

CVE•added 2016/04/12 11:59 p.m.•111 views

CVE-2016-0145

The font library in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold and 1511; Office 2007 SP3 and 2010 SP2; Word Viewer; .NET Framework 3.0 SP2, 3.5, and 3.5.1; Skype for Business 2016; Lyn...

9.3CVSS7.7AI score0.74815EPSS

CVE•added 2016/08/09 9:59 p.m.•111 views

CVE-2016-3237

Kerberos in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows man-in-the-middle attackers to bypass authentication via vectors related to a fallback to NTLM authent...

7.5CVSS7.4AI score0.13119EPSS

CVE•added 2018/05/09 7:29 p.m.•111 views

CVE-2018-8127

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Serv...

5.5CVSS5.3AI score0.0233EPSS

CVE•added 2018/09/13 12:29 a.m.•111 views

CVE-2018-8443

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

5.5CVSS5.7AI score0.03012EPSS

CVE•added 2018/09/13 12:29 a.m.•111 views

CVE-2018-8446

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

5.5CVSS5.7AI score0.03012EPSS

CVE•added 2019/06/12 2:29 p.m.•111 views

CVE-2019-1012

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

6.5CVSS5.6AI score0.07622EPSS

CVE•added 2019/09/11 10:15 p.m.•111 views

CVE-2019-1243

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1241, CVE-2019-1242, CVE-2019-1246, CVE-2019-1247, CVE-2019-1248,...

9.3CVSS8.5AI score0.35463EPSS

CVE•added 2019/09/11 10:15 p.m.•111 views

CVE-2019-1290

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-0788, CVE-2019-1291.

9.3CVSS8.8AI score0.32912EPSS

CVE•added 2020/02/11 10:15 p.m.•111 views

CVE-2020-0657

An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.00511EPSS

CVE•added 2020/04/15 3:15 p.m.•111 views

CVE-2020-0889

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992, CVE-2020-0994,...

9.3CVSS8AI score0.33652EPSS

CVE•added 2020/09/11 5:15 p.m.•111 views

CVE-2020-1285

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or dele...

9.3CVSS8.7AI score0.14135EPSS

CVE•added 2020/06/09 8:15 p.m.•111 views

CVE-2020-1317

An elevation of privilege vulnerability exists when Group Policy improperly checks access, aka 'Group Policy Elevation of Privilege Vulnerability'.

9CVSS8.2AI score0.13405EPSS

CVE•added 2021/01/12 8:15 p.m.•111 views

CVE-2021-1709

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00275EPSS

CVE•added 2021/04/13 8:15 p.m.•111 views

CVE-2021-28331

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS

CVE•added 2021/09/15 12:15 p.m.•111 views

CVE-2021-36962

Windows Installer Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00478EPSS

CVE•added 2023/05/31 7:15 p.m.•111 views

CVE-2022-35750

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.04896EPSS

CVE•added 2022/10/11 7:15 p.m.•111 views

CVE-2022-37975

Windows Group Policy Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.05362EPSS

CVE•added 2023/04/11 9:15 p.m.•111 views

CVE-2023-28254

Windows DNS Server Remote Code Execution Vulnerability

7.2CVSS7.2AI score0.01EPSS

CVE•added 2024/08/13 6:15 p.m.•111 views

CVE-2024-38198

Windows Print Spooler Elevation of Privilege Vulnerability

7.5CVSS7.6AI score0.01448EPSS

CVE•added 2017/03/17 12:59 a.m.•110 views

CVE-2017-0062

The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information from process memory via a ...

4.7CVSS4.3AI score0.14618EPSS

CVE•added 2017/04/12 2:59 p.m.•110 views

CVE-2017-0180

A remote code execution vulnerability exists when Windows Hyper-V Network Switch running on a host server fails to properly validate input from an authenticated user on a guest operating system, aka "Hyper-V Remote Code Execution Vulnerability." This CVE ID is unique from CVE-2017-0162, CVE-2017-01...

7.6CVSS7.9AI score0.00421EPSS

Total number of security vulnerabilities3052