Windows Server 2008@r2 Security Vulnerabilities and Issues — Page 7 of Windows Server 2008@r2 CVE List

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, W...

7.8CVSS7.4AI score0.94013EPSS

CVE•added 2024/02/13 6:15 p.m.•232 views

CVE-2024-21352

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.02032EPSS

CVE•added 2024/03/12 5:15 p.m.•232 views

CVE-2024-26173

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00368EPSS

CVE•added 2024/03/12 5:15 p.m.•231 views

CVE-2024-21446

NTFS Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00117EPSS

CVE•added 2019/04/09 9:29 p.m.•230 views

CVE-2019-0730

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0731, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.

7.8CVSS6.7AI score0.85917EPSS

CVE•added 2023/06/14 12:15 a.m.•230 views

CVE-2023-29363

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.05856EPSS

CVE•added 2024/02/13 6:15 p.m.•230 views

CVE-2024-21375

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01718EPSS

CVE•added 2024/03/12 5:15 p.m.•230 views

CVE-2024-21450

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01541EPSS

CVE•added 2020/11/11 7:15 a.m.•228 views

CVE-2020-1599

Windows Spoofing Vulnerability

5.5CVSS7.2AI score0.05733EPSS

CVE•added 2024/04/09 5:15 p.m.•228 views

CVE-2024-29050

Windows Cryptographic Services Remote Code Execution Vulnerability

8.4CVSS8.8AI score0.18715EPSS

CVE•added 2021/07/14 6:15 p.m.•227 views

CVE-2021-34494

Windows DNS Server Remote Code Execution Vulnerability

8.8CVSS8.4AI score0.01306EPSS

CVE•added 2019/04/09 12:29 a.m.•226 views

CVE-2019-0704

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0703, CVE-2019-0821.

6.5CVSS6.8AI score0.14208EPSS

CVE•added 2019/04/09 9:29 p.m.•226 views

CVE-2019-0731

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0796, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.

7.8CVSS6.7AI score0.85917EPSS

CVE•added 2023/11/14 6:15 p.m.•226 views

CVE-2023-36402

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.00166EPSS

CVE•added 2024/03/12 5:15 p.m.•226 views

CVE-2024-21451

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.01028EPSS

CVE•added 2020/07/14 11:15 p.m.•225 views

CVE-2020-1042

A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1032, CVE-2020-1036,...

9CVSS9.2AI score0.01001EPSS

CVE•added 2022/03/09 5:15 p.m.•225 views

CVE-2022-24459

Windows Fax and Scan Service Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.0033EPSS

CVE•added 2024/02/13 6:15 p.m.•225 views

CVE-2024-21368

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01901EPSS

CVE•added 2025/03/11 5:16 p.m.•225 views

CVE-2025-24985

Integer overflow or wraparound in Windows Fast FAT Driver allows an unauthorized attacker to execute code locally.

7.8CVSS7.8AI score0.00925EPSS

CVE•added 2017/07/11 9:29 p.m.•224 views

CVE-2017-8563

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to Kerberos falling back to NT LAN Manager (NTLM) Authentication Pro...

8.1CVSS7.1AI score0.17921EPSS

CVE•added 2020/06/09 8:15 p.m.•224 views

CVE-2020-1299

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'.

9.3CVSS8.4AI score0.32912EPSS

CVE•added 2023/05/09 6:15 p.m.•224 views

CVE-2023-24903

Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability

8.1CVSS8.1AI score0.00645EPSS

CVE•added 2024/02/13 6:15 p.m.•224 views

CVE-2024-21349

Microsoft ActiveX Data Objects Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.01901EPSS

CVE•added 2024/02/13 6:15 p.m.•224 views

CVE-2024-21360

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.0192EPSS

CVE•added 2024/02/13 6:15 p.m.•224 views

CVE-2024-21367

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01901EPSS

CVE•added 2024/09/10 5:15 p.m.•224 views

CVE-2024-30073

Windows Security Zone Mapping Security Feature Bypass Vulnerability

7.8CVSS8.6AI score0.00389EPSS

CVE•added 2025/01/14 6:16 p.m.•224 views

CVE-2025-21413

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.02401EPSS

CVE•added 2019/04/09 9:29 p.m.•223 views

CVE-2019-0805

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0796, CVE-2019-0836, CVE-2019-0841.

7.8CVSS6.7AI score0.85917EPSS

CVE•added 2022/04/15 7:15 p.m.•223 views

CVE-2022-24533

Remote Desktop Protocol Remote Code Execution Vulnerability

8.5CVSS8.9AI score0.07596EPSS

CVE•added 2024/02/13 6:15 p.m.•223 views

CVE-2024-21347

Microsoft ODBC Driver Remote Code Execution Vulnerability

7.5CVSS7.9AI score0.00966EPSS

CVE•added 2024/02/13 6:15 p.m.•223 views

CVE-2024-21391

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.02032EPSS

CVE•added 2024/02/13 6:15 p.m.•223 views

CVE-2024-21406

Windows Printing Service Spoofing Vulnerability

7.5CVSS7.7AI score0.01257EPSS

CVE•added 2024/09/10 5:15 p.m.•223 views

CVE-2024-38217

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS7.3AI score0.14086EPSS

CVE•added 2019/03/06 12:0 a.m.•222 views

CVE-2019-0633

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0630.

9CVSS9.3AI score0.33738EPSS

CVE•added 2021/12/15 3:15 p.m.•222 views

CVE-2021-43217

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

9.8CVSS9.1AI score0.25196EPSS

CVE•added 2022/03/09 5:15 p.m.•222 views

CVE-2022-23281

Windows Common Log File System Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00475EPSS

CVE•added 2023/10/10 6:15 p.m.•222 views

CVE-2023-29348

Windows Remote Desktop Gateway (RD Gateway) Information Disclosure Vulnerability

7.5CVSS7.5AI score0.0069EPSS

CVE•added 2024/03/12 5:15 p.m.•222 views

CVE-2024-21441

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.0114EPSS

CVE•added 2024/03/12 5:15 p.m.•222 views

CVE-2024-26159

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.01587EPSS

CVE•added 2024/03/12 5:15 p.m.•222 views

CVE-2024-26176

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00188EPSS

CVE•added 2025/01/14 6:15 p.m.•222 views

CVE-2025-21230

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.01541EPSS

CVE•added 2017/05/12 2:29 p.m.•221 views

CVE-2017-0214

Windows COM in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation privilege vulnerability when Windows fails to properly validate input before l...

7CVSS5.9AI score0.91805EPSS

CVE•added 2020/06/09 8:15 p.m.•221 views

CVE-2020-1301

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 (SMBv1) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'.

8.8CVSS8.5AI score0.34234EPSS

CVE•added 2021/08/12 6:15 p.m.•221 views

CVE-2021-36936

Windows Print Spooler Remote Code Execution Vulnerability

9.8CVSS9AI score0.03552EPSS

CVE•added 2024/03/12 5:15 p.m.•221 views

CVE-2024-21436

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00341EPSS

CVE•added 2020/06/09 8:15 p.m.•220 views

CVE-2020-1300

A remote code execution vulnerability exists when Microsoft Windows fails to properly handle cabinet files.To exploit the vulnerability, an attacker would have to convince a user to either open a specially crafted cabinet file or spoof a network printer and trick a user into installing a malicious ...

8.8CVSS8.3AI score0.40477EPSS

CVE•added 2019/10/10 2:15 p.m.•219 views

CVE-2019-1339

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1342.

7.8CVSS8.5AI score0.06219EPSS

Total number of security vulnerabilities3008