Windows Server 2008 Security Vulnerabilities and Issues — Windows Server 2008 CVE List

Lucene search

MicrosoftWindows Server 2008

314 matches found

CVE•added 2019/04/09 12:29 a.m.•1089 views

CVE-2019-0703

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0704, CVE-2019-0821.

6.5CVSS6.8AI score0.14208EPSS

In wild

CVE•added 2017/03/17 12:59 a.m.•885 views

CVE-2017-0022

Microsoft XML Core Services (MSXML) in Windows 10 Gold, 1511, and 1607; Windows 7 SP1; Windows 8.1; Windows RT 8.1; Windows Server 2008 SP2 and R2 SP1; Windows Server 2012 Gold and R2; Windows Server 2016; and Windows Vista SP2 improperly handles objects in memory, allowing attackers to test for fi...

6.5CVSS4.3AI score0.34723EPSS

In wild

CVE•added 2016/10/14 2:59 a.m.•878 views

CVE-2016-3298

Microsoft Internet Explorer 9 through 11 and the Internet Messaging API in Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allow remote attackers to determine the existence of arbitrary files via a crafted web site, aka "Internet Explorer Information Disclosure Vulnerabilit...

6.5CVSS5.4AI score0.27734EPSS

In wild

CVE•added 2023/10/10 6:15 p.m.•747 views

CVE-2023-36563

Microsoft WordPad Information Disclosure Vulnerability

6.5CVSS7.1AI score0.00841EPSS

In wild

CVE•added 2023/05/09 6:15 p.m.•633 views

CVE-2023-24932

Secure Boot Security Feature Bypass Vulnerability

6.7CVSS6.9AI score0.00782EPSS

In wild

CVE•added 2024/11/12 6:15 p.m.•494 views

CVE-2024-38203

Windows Package Library Manager Information Disclosure Vulnerability

6.2CVSS5.8AI score0.00176EPSS

CVE•added 2016/04/12 11:59 p.m.•426 views

CVE-2016-0128

The SAM and LSAD protocol implementations in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 do not properly establish an RPC channel, which allows man-in-the-middle attackers ...

6.8CVSS6.4AI score0.78649EPSS

CVE•added 2024/03/12 5:15 p.m.•412 views

CVE-2024-21429

Windows USB Hub Driver Remote Code Execution Vulnerability

6.8CVSS7.2AI score0.00233EPSS

CVE•added 2022/07/12 11:15 p.m.•372 views

CVE-2022-22048

BitLocker Security Feature Bypass Vulnerability

6.6CVSS7.2AI score0.00729EPSS

In wild

CVE•added 2023/10/10 6:15 p.m.•372 views

CVE-2023-36564

Windows Search Security Feature Bypass Vulnerability

6.5CVSS7.8AI score0.00135EPSS

CVE•added 2023/10/10 6:15 p.m.•367 views

CVE-2023-36706

Windows Deployment Services Information Disclosure Vulnerability

6.5CVSS7.6AI score0.0608EPSS

CVE•added 2024/11/12 6:15 p.m.•353 views

CVE-2024-43451

NTLM Hash Disclosure Spoofing Vulnerability

6.5CVSS6.5AI score0.89638EPSS

In wild

CVE•added 2017/03/17 12:59 a.m.•330 views

CVE-2017-0055

Microsoft Internet Information Server (IIS) in Windows Vista SP2; Windows Server 2008 SP2 and R2; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to perform cross-site scripting and run scr...

6.1CVSS5.4AI score0.01387EPSS

CVE•added 2021/06/08 11:15 p.m.•319 views

CVE-2021-26414

Windows DCOM Server Security Feature Bypass

6.5CVSS6.9AI score0.14238EPSS

CVE•added 2017/09/13 1:29 a.m.•315 views

CVE-2017-8628

Microsoft Bluetooth Driver in Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703 allows a spoofing vulnerability due to Microsoft's implementation of the Bluetooth stack, aka "Microsoft Bluetooth Driver Spoofing Vulnerability".

6.8CVSS7AI score0.0067EPSS

CVE•added 2025/03/11 5:16 p.m.•282 views

CVE-2025-24054

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS6.5AI score0.31507EPSS

In wildWeb

CVE•added 2023/05/09 6:15 p.m.•279 views

CVE-2023-29324

Windows MSHTML Platform Security Feature Bypass Vulnerability

6.5CVSS8AI score0.02256EPSS

CVE•added 2019/04/09 3:29 a.m.•267 views

CVE-2019-0821

6.5CVSS6.8AI score0.14208EPSS

In wild

CVE•added 2019/04/09 12:29 a.m.•257 views

CVE-2019-0704

6.5CVSS6.8AI score0.14208EPSS

In wild

CVE•added 2024/02/13 6:15 p.m.•220 views

CVE-2024-21356

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

6.5CVSS6.8AI score0.0533EPSS

CVE•added 2015/09/09 12:59 a.m.•215 views

CVE-2015-2517

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.39088EPSS

In wild

CVE•added 2023/01/10 10:15 p.m.•210 views

CVE-2023-21563

BitLocker Security Feature Bypass Vulnerability

6.8CVSS7AI score0.00475EPSS

CVE•added 2015/09/09 12:59 a.m.•209 views

CVE-2015-2518

6.9CVSS8.5AI score0.39088EPSS

In wild

CVE•added 2015/09/09 12:59 a.m.•208 views

CVE-2015-2511

6.9CVSS8.5AI score0.39088EPSS

In wild

CVE•added 2024/04/09 5:15 p.m.•206 views

CVE-2024-26234

Proxy Driver Spoofing Vulnerability

6.7CVSS7.4AI score0.01963EPSS

CVE•added 2022/05/10 9:15 p.m.•204 views

CVE-2022-22015

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability

6.5CVSS7.7AI score0.09009EPSS

CVE•added 2023/05/09 6:15 p.m.•192 views

CVE-2023-24954

Microsoft SharePoint Server Information Disclosure Vulnerability

6.5CVSS6.4AI score0.02411EPSS

CVE•added 2023/07/11 6:15 p.m.•190 views

CVE-2023-35321

Windows Deployment Services Denial of Service Vulnerability

6.5CVSS7.8AI score0.0363EPSS

CVE•added 2022/03/09 5:15 p.m.•188 views

CVE-2022-23253

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability

6.5CVSS7.3AI score0.18159EPSS

CVE•added 2024/01/09 6:15 p.m.•188 views

CVE-2024-21314

Microsoft Message Queuing Information Disclosure Vulnerability

6.5CVSS6.2AI score0.04684EPSS

CVE•added 2024/01/09 6:15 p.m.•183 views

CVE-2024-20663

Windows Message Queuing Client (MSMQC) Information Disclosure

6.5CVSS6.3AI score0.03672EPSS

CVE•added 2022/07/12 11:15 p.m.•181 views

CVE-2022-22042

Windows Hyper-V Information Disclosure Vulnerability

6.5CVSS7.1AI score0.18303EPSS

CVE•added 2019/07/15 7:15 p.m.•180 views

CVE-2019-1094

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1095, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116.

6.5CVSS6.1AI score0.12437EPSS

CVE•added 2024/06/11 5:15 p.m.•177 views

CVE-2024-30063

Windows Distributed File System (DFS) Remote Code Execution Vulnerability

6.7CVSS8.1AI score0.00348EPSS

CVE•added 2025/01/14 6:15 p.m.•174 views

CVE-2025-21263

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00149EPSS

CVE•added 2017/08/08 9:29 p.m.•172 views

CVE-2017-0174

Windows NetBIOS in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a denial of service vulnerability when it improperly handles NetBIOS packets, aka "Windows NetBIOS De...

6.5CVSS6.9AI score0.00479EPSS

CVE•added 2024/01/09 6:15 p.m.•172 views

CVE-2024-20680

Windows Message Queuing Client (MSMQC) Information Disclosure

6.5CVSS6.3AI score0.0339EPSS

CVE•added 2019/09/11 10:15 p.m.•170 views

CVE-2019-1244

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1245, CVE-2019-1251.

6.5CVSS6.2AI score0.27638EPSS

CVE•added 2022/07/12 11:15 p.m.•170 views

CVE-2022-22023

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability

6.9CVSS7.3AI score0.00399EPSS

CVE•added 2024/01/09 6:15 p.m.•170 views

CVE-2024-20664

Microsoft Message Queuing Information Disclosure Vulnerability

6.5CVSS6.2AI score0.04684EPSS

CVE•added 2022/05/10 9:15 p.m.•167 views

CVE-2022-29112

Windows Graphics Component Information Disclosure Vulnerability