Windows Server 2008@r2 Security Vulnerabilities and Issues — Page 8 of Windows Server 2008@r2 CVE List

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vu...

7.8CVSS6.8AI score0.11623EPSS

CVE•added 2022/02/09 5:15 p.m.•216 views

CVE-2022-21989

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.02022EPSS

CVE•added 2024/04/09 5:15 p.m.•216 views

CVE-2024-20678

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.03975EPSS

CVE•added 2021/05/11 7:15 p.m.•215 views

CVE-2021-28476

Windows Hyper-V Remote Code Execution Vulnerability

9.9CVSS9.7AI score0.63205EPSS

CVE•added 2022/05/10 9:15 p.m.•215 views

CVE-2022-22019

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.02889EPSS

CVE•added 2024/03/12 5:15 p.m.•215 views

CVE-2024-21444

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.0059EPSS

CVE•added 2020/10/16 11:15 p.m.•214 views

CVE-2020-16916

An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit this vulnerability, an attacker would first have to log on to the system. An atta...

7.8CVSS8.2AI score0.00744EPSS

CVE•added 2022/09/13 7:15 p.m.•214 views

CVE-2022-33679

Windows Kerberos Elevation of Privilege Vulnerability

8.1CVSS8.8AI score0.78364EPSS

CVE•added 2023/01/10 10:15 p.m.•214 views

CVE-2023-21746

Windows NTLM Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.4367EPSS

CVE•added 2024/02/13 6:15 p.m.•214 views

CVE-2024-21405

Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability

7CVSS7.2AI score0.00075EPSS

CVE•added 2025/03/11 5:16 p.m.•214 views

CVE-2025-24993

Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.03226EPSS

CVE•added 2019/07/15 7:15 p.m.•213 views

CVE-2019-0887

A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

8.5CVSS8AI score0.54304EPSS

CVE•added 2024/02/13 6:15 p.m.•213 views

CVE-2024-21357

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

8.1CVSS8.9AI score0.15049EPSS

CVE•added 2012/03/13 9:55 p.m.•212 views

CVE-2012-0152

The Remote Desktop Protocol (RDP) service in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows remote attackers to cause a denial of service (application hang) via a series of crafted packets, aka "Terminal Server Denial of Service Vulnerability."

4.3CVSS8.7AI score0.85393EPSS

CVE•added 2020/06/09 8:15 p.m.•212 views

CVE-2020-1262

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS

CVE•added 2021/12/15 3:15 p.m.•212 views

CVE-2021-43883

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.08752EPSS

CVE•added 2024/03/12 5:15 p.m.•212 views

CVE-2024-21439

Windows Telephony Server Elevation of Privilege Vulnerability

7CVSS7.6AI score0.001EPSS

CVE•added 2024/12/12 2:4 a.m.•212 views

CVE-2024-49113

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

7.5CVSS7.5AI score0.87357EPSS

CVE•added 2020/06/09 8:15 p.m.•211 views

CVE-2020-1246

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS

CVE•added 2022/07/12 11:15 p.m.•211 views

CVE-2022-22024

Windows Fax Service Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01141EPSS

CVE•added 2016/08/09 9:59 p.m.•210 views

CVE-2016-3308

The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privi...

7.8CVSS7.5AI score0.49455EPSS

CVE•added 2022/03/09 5:15 p.m.•210 views

CVE-2022-24454

Windows Security Support Provider Interface Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00227EPSS

CVE•added 2022/07/12 11:15 p.m.•210 views

CVE-2022-30221

Windows Graphics Component Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01237EPSS

CVE•added 2022/10/11 7:15 p.m.•210 views

CVE-2022-37981

Windows Event Logging Service Denial of Service Vulnerability

4.3CVSS6.3AI score0.04734EPSS

CVE•added 2025/03/11 5:16 p.m.•210 views

CVE-2025-24991

Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.

5.5CVSS6.5AI score0.03535EPSS

CVE•added 2024/04/09 5:15 p.m.•209 views

CVE-2024-26214

Microsoft WDAC SQL Server ODBC Driver Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01643EPSS

CVE•added 2017/06/15 1:29 a.m.•208 views

CVE-2017-8552

A kernel-mode driver in Microsoft Windows XP SP3, Windows XP x64 XP2, Windows Server 2003 SP2, Windows Vista, Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, and Windows 8 allows an elevation of privilege when it fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vuln...

7.8CVSS7.6AI score0.18325EPSS

CVE•added 2022/04/15 7:15 p.m.•208 views

CVE-2022-26788

PowerShell Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00406EPSS

CVE•added 2022/04/15 7:15 p.m.•208 views

CVE-2022-26903

Windows Graphics Component Remote Code Execution Vulnerability

9.3CVSS8.8AI score0.01609EPSS

CVE•added 2022/07/12 11:15 p.m.•208 views

CVE-2022-30223

Windows Hyper-V Information Disclosure Vulnerability

5.7CVSS6.6AI score0.03907EPSS

CVE•added 2020/07/14 11:15 p.m.•207 views

CVE-2020-1043

A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1032, CVE-2020-1036,...

9CVSS9.2AI score0.01001EPSS

CVE•added 2025/06/10 5:23 p.m.•207 views

CVE-2025-33073

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.

8.8CVSS8.7AI score0.00326EPSS

CVE•added 2016/10/14 2:59 a.m.•206 views

CVE-2016-7182

The Graphics component in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; Office 2007 SP3; Office 2010 SP2; Word Viewer; Skype for Business 2016; Lync 2013 SP1; Lync 2010; ...

10CVSS8.7AI score0.35426EPSS

CVE•added 2017/03/17 12:59 a.m.•206 views

CVE-2017-0025

The kernel-mode drivers in Microsoft Windows Vista; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k E...

7.8CVSS6.2AI score0.12861EPSS

CVE•added 2019/10/10 2:15 p.m.•205 views

CVE-2019-1342

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1315, CVE-2019-1339.

7.8CVSS8.5AI score0.06219EPSS

CVE•added 2022/04/15 7:15 p.m.•205 views

CVE-2022-24541

Windows Server Service Remote Code Execution Vulnerability

9.3CVSS9.4AI score0.07634EPSS

CVE•added 2024/04/09 5:15 p.m.•205 views

CVE-2024-26234

Proxy Driver Spoofing Vulnerability

6.7CVSS7.4AI score0.02069EPSS

CVE•added 2017/03/17 12:59 a.m.•204 views

CVE-2017-0047

The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka "Windows GDI ...

7.8CVSS6.2AI score0.12861EPSS

CVE•added 2020/10/16 11:15 p.m.•204 views

CVE-2020-16891

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerability, an attacker could run a specially crafted application on a guest operating system that could caus...

8.8CVSS8.7AI score0.00539EPSS

CVE•added 2021/10/13 1:15 a.m.•204 views

CVE-2021-41335

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00462EPSS

CVE•added 2022/06/15 10:15 p.m.•204 views

CVE-2022-30141

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.3CVSS8.5AI score0.09953EPSS

CVE•added 2023/04/11 9:15 p.m.•204 views

CVE-2023-28219

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability