Windows Server 2008 Security Vulnerabilities and Issues — Windows Server 2008 CVE List

Lucene search

MicrosoftWindows Server 2008

312 matches found

CVE•added 2019/04/09 12:29 a.m.•1058 views

CVE-2019-0703

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0704, CVE-2019-0821.

6.5CVSS6.8AI score0.14208EPSS

CVE•added 2017/03/17 12:59 a.m.•884 views

CVE-2017-0022

Microsoft XML Core Services (MSXML) in Windows 10 Gold, 1511, and 1607; Windows 7 SP1; Windows 8.1; Windows RT 8.1; Windows Server 2008 SP2 and R2 SP1; Windows Server 2012 Gold and R2; Windows Server 2016; and Windows Vista SP2 improperly handles objects in memory, allowing attackers to test for fi...

6.5CVSS4.3AI score0.48804EPSS

CVE•added 2016/10/14 2:59 a.m.•877 views

CVE-2016-3298

Microsoft Internet Explorer 9 through 11 and the Internet Messaging API in Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allow remote attackers to determine the existence of arbitrary files via a crafted web site, aka "Internet Explorer Information Disclosure Vulnerabilit...

6.5CVSS5.4AI score0.27734EPSS

CVE•added 2023/10/10 6:15 p.m.•716 views

CVE-2023-36563

Microsoft WordPad Information Disclosure Vulnerability

6.5CVSS7.1AI score0.00725EPSS

CVE•added 2023/05/09 6:15 p.m.•596 views

CVE-2023-24932

Secure Boot Security Feature Bypass Vulnerability

6.7CVSS6.9AI score0.00536EPSS

CVE•added 2024/11/12 6:15 p.m.•492 views

CVE-2024-38203

Windows Package Library Manager Information Disclosure Vulnerability

6.2CVSS5.8AI score0.00125EPSS

CVE•added 2016/04/12 11:59 p.m.•422 views

CVE-2016-0128

The SAM and LSAD protocol implementations in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 do not properly establish an RPC channel, which allows man-in-the-middle attackers ...

6.8CVSS6.4AI score0.34582EPSS

CVE•added 2024/03/12 5:15 p.m.•411 views

CVE-2024-21429

Windows USB Hub Driver Remote Code Execution Vulnerability

6.8CVSS7.2AI score0.00311EPSS

CVE•added 2023/10/10 6:15 p.m.•370 views

CVE-2023-36564

Windows Search Security Feature Bypass Vulnerability

6.5CVSS7.8AI score0.00135EPSS

CVE•added 2023/10/10 6:15 p.m.•366 views

CVE-2023-36706

Windows Deployment Services Information Disclosure Vulnerability

6.5CVSS7.6AI score0.0608EPSS

CVE•added 2022/07/12 11:15 p.m.•338 views

CVE-2022-22048

BitLocker Security Feature Bypass Vulnerability

6.6CVSS7.2AI score0.00265EPSS

CVE•added 2017/03/17 12:59 a.m.•325 views

CVE-2017-0055

Microsoft Internet Information Server (IIS) in Windows Vista SP2; Windows Server 2008 SP2 and R2; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to perform cross-site scripting and run scr...

6.1CVSS5.4AI score0.01387EPSS

CVE•added 2021/06/08 11:15 p.m.•315 views

CVE-2021-26414

Windows DCOM Server Security Feature Bypass

6.5CVSS6.9AI score0.08955EPSS

CVE•added 2017/09/13 1:29 a.m.•314 views

CVE-2017-8628

Microsoft Bluetooth Driver in Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703 allows a spoofing vulnerability due to Microsoft's implementation of the Bluetooth stack, aka "Microsoft Bluetooth Driver Spoofing Vulnerability".

6.8CVSS7AI score0.0067EPSS

CVE•added 2024/11/12 6:15 p.m.•310 views

CVE-2024-43451

NTLM Hash Disclosure Spoofing Vulnerability

6.5CVSS6.5AI score0.89087EPSS

CVE•added 2023/05/09 6:15 p.m.•276 views

CVE-2023-29324

Windows MSHTML Platform Security Feature Bypass Vulnerability

6.5CVSS8AI score0.02256EPSS

CVE•added 2019/04/09 3:29 a.m.•236 views

CVE-2019-0821

6.5CVSS6.8AI score0.14208EPSS

CVE•added 2025/03/11 5:16 p.m.•234 views

CVE-2025-24054

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS6.5AI score0.38746EPSS

CVE•added 2019/04/09 12:29 a.m.•225 views

CVE-2019-0704

6.5CVSS6.8AI score0.14208EPSS

CVE•added 2024/02/13 6:15 p.m.•218 views

CVE-2024-21356

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

6.5CVSS6.8AI score0.0533EPSS

CVE•added 2024/04/09 5:15 p.m.•205 views

CVE-2024-26234

Proxy Driver Spoofing Vulnerability

6.7CVSS7.4AI score0.02069EPSS

CVE•added 2022/05/10 9:15 p.m.•201 views

CVE-2022-22015

Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability

6.5CVSS7.7AI score0.09009EPSS

CVE•added 2023/01/10 10:15 p.m.•201 views

CVE-2023-21563

BitLocker Security Feature Bypass Vulnerability

6.8CVSS7AI score0.00639EPSS

CVE•added 2023/05/09 6:15 p.m.•191 views

CVE-2023-24954

Microsoft SharePoint Server Information Disclosure Vulnerability

6.5CVSS6.4AI score0.02411EPSS

CVE•added 2023/07/11 6:15 p.m.•188 views

CVE-2023-35321

Windows Deployment Services Denial of Service Vulnerability

6.5CVSS7.8AI score0.0363EPSS

CVE•added 2024/01/09 6:15 p.m.•187 views

CVE-2024-21314

Microsoft Message Queuing Information Disclosure Vulnerability

6.5CVSS6.2AI score0.04684EPSS

CVE•added 2022/03/09 5:15 p.m.•185 views

CVE-2022-23253

Windows Point-to-Point Tunneling Protocol Denial of Service Vulnerability

6.5CVSS7.3AI score0.25443EPSS

CVE•added 2015/09/09 12:59 a.m.•182 views

CVE-2015-2517

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

6.9CVSS8.5AI score0.34211EPSS

CVE•added 2024/01/09 6:15 p.m.•182 views

CVE-2024-20663

Windows Message Queuing Client (MSMQC) Information Disclosure

6.5CVSS6.3AI score0.03672EPSS

CVE•added 2019/07/15 7:15 p.m.•179 views

CVE-2019-1094

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1095, CVE-2019-1098, CVE-2019-1099, CVE-2019-1100, CVE-2019-1101, CVE-2019-1116.

6.5CVSS6.1AI score0.12437EPSS

CVE•added 2022/07/12 11:15 p.m.•179 views

CVE-2022-22042

Windows Hyper-V Information Disclosure Vulnerability

6.5CVSS7.1AI score0.17685EPSS

CVE•added 2015/09/09 12:59 a.m.•176 views

CVE-2015-2518

6.9CVSS8.5AI score0.34211EPSS

CVE•added 2024/06/11 5:15 p.m.•176 views

CVE-2024-30063

Windows Distributed File System (DFS) Remote Code Execution Vulnerability

6.7CVSS8.1AI score0.00293EPSS

CVE•added 2015/09/09 12:59 a.m.•175 views

CVE-2015-2511

6.9CVSS8.5AI score0.34211EPSS

CVE•added 2025/01/14 6:15 p.m.•173 views

CVE-2025-21263

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00132EPSS

CVE•added 2024/01/09 6:15 p.m.•171 views

CVE-2024-20680

Windows Message Queuing Client (MSMQC) Information Disclosure

6.5CVSS6.3AI score0.0339EPSS

CVE•added 2017/08/08 9:29 p.m.•170 views

CVE-2017-0174

Windows NetBIOS in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a denial of service vulnerability when it improperly handles NetBIOS packets, aka "Windows NetBIOS De...

6.5CVSS6.9AI score0.00483EPSS

CVE•added 2019/09/11 10:15 p.m.•169 views

CVE-2019-1244

An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1245, CVE-2019-1251.

6.5CVSS6.2AI score0.27638EPSS

CVE•added 2024/01/09 6:15 p.m.•169 views

CVE-2024-20664

Microsoft Message Queuing Information Disclosure Vulnerability

6.5CVSS6.2AI score0.03428EPSS

CVE•added 2022/07/12 11:15 p.m.•168 views

CVE-2022-22023

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability

6.9CVSS7.3AI score0.00348EPSS

CVE•added 2022/05/10 9:15 p.m.•166 views

CVE-2022-29112

Windows Graphics Component Information Disclosure Vulnerability