Windows Server 2008 Security Vulnerabilities and Issues — Windows Server 2008 CVE List

Lucene search

MicrosoftWindows Server 2008

449 matches found

CVE•added 2024/06/11 5:15 p.m.•4117 views

CVE-2024-30078

Windows Wi-Fi Driver Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.26605EPSS

CVE•added 2013/12/11 12:55 a.m.•3070 views

CVE-2013-3900

Why is Microsoft republishing a CVE from 2013?We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the format i...

8.8CVSS7.4AI score0.72892EPSS

CVE•added 2021/09/15 12:15 p.m.•1453 views

CVE-2021-40444

<p>Microsoft is investigating reports of a remote code execution vulnerability in MSHTML that affects Microsoft Windows. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability by using specially-crafted Microsoft Office documents.</p><p>An attacker could craft a malicious...

8.8CVSS7.3AI score0.94291EPSS

CVE•added 2021/11/10 1:19 a.m.•1253 views

CVE-2021-42287

Active Directory Domain Services Elevation of Privilege Vulnerability

8.8CVSS8.2AI score0.93954EPSS

CVE•added 2015/09/09 12:59 a.m.•1225 views

CVE-2015-2546

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

8.2CVSS8.5AI score0.34211EPSS

CVE•added 2020/04/15 3:15 p.m.•1204 views

CVE-2020-1020

A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could e...

8.8CVSS8.2AI score0.8787EPSS

CVE•added 2022/05/10 9:15 p.m.•1149 views

CVE-2022-26925

Windows LSA Spoofing Vulnerability

8.1CVSS7.5AI score0.29421EPSS

CVE•added 2021/06/08 11:15 p.m.•1142 views

CVE-2021-33742

Windows MSHTML Platform Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.57248EPSS

CVE•added 2015/06/10 1:59 a.m.•871 views

CVE-2015-2360

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges or cause a denial o...

8.8CVSS6.5AI score0.05865EPSS

CVE•added 2022/11/09 10:15 p.m.•822 views

CVE-2022-41128

Windows Scripting Languages Remote Code Execution Vulnerability

8.8CVSS8.3AI score0.71181EPSS

CVE•added 2011/12/30 1:55 a.m.•777 views

CVE-2011-3416

The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 allows remote authenticated users to obtain access to arbitrary user accounts via a crafted username, aka "ASP.Net Forms Authentication Bypass Vulnerability."

8.5CVSS6AI score0.86632EPSS

CVE•added 2022/11/09 10:15 p.m.•713 views

CVE-2022-38023

Netlogon RPC Elevation of Privilege Vulnerability

8.1CVSS8.3AI score0.0032EPSS

CVE•added 2023/11/14 6:15 p.m.•460 views

CVE-2023-36025

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS9.5AI score0.90662EPSS

CVE•added 2023/10/10 6:15 p.m.•421 views

CVE-2023-36577

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.00191EPSS

CVE•added 2023/10/10 6:15 p.m.•394 views

CVE-2023-41767

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2023/10/10 6:15 p.m.•385 views

CVE-2023-41765

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2022/03/09 5:15 p.m.•380 views

CVE-2022-21990

Remote Desktop Client Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.15329EPSS

CVE•added 2023/10/10 6:15 p.m.•380 views

CVE-2023-36697

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

8CVSS8.1AI score0.00144EPSS

CVE•added 2023/10/10 6:15 p.m.•380 views

CVE-2023-38166

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2023/10/10 6:15 p.m.•379 views

CVE-2023-41771

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2023/10/10 6:15 p.m.•379 views

CVE-2023-41773

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2023/04/11 9:15 p.m.•376 views

CVE-2023-28231

DHCP Server Service Remote Code Execution Vulnerability

8.8CVSS9.1AI score0.73805EPSS

CVE•added 2023/10/10 6:15 p.m.•375 views

CVE-2023-41768

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2023/10/10 6:15 p.m.•375 views

CVE-2023-41769

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2022/11/09 10:15 p.m.•374 views

CVE-2022-37966

Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability

8.1CVSS8.5AI score0.00747EPSS

CVE•added 2023/10/10 6:15 p.m.•370 views

CVE-2023-41774

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2023/10/10 6:15 p.m.•368 views

CVE-2023-41770

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2024/03/12 5:15 p.m.•341 views

CVE-2024-26161

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.2AI score0.01432EPSS

CVE•added 2021/11/10 1:19 a.m.•317 views

CVE-2021-42291

Active Directory Domain Services Elevation of Privilege Vulnerability

8.8CVSS8AI score0.0056EPSS

CVE•added 2023/05/09 6:15 p.m.•313 views

CVE-2023-29325

Windows OLE Remote Code Execution Vulnerability

8.1CVSS8.8AI score0.2384EPSS

CVE•added 2024/09/10 5:15 p.m.•295 views

CVE-2024-43461

Windows MSHTML Platform Spoofing Vulnerability

8.8CVSS9.3AI score0.07059EPSS

CVE•added 2018/05/09 7:29 p.m.•283 views

CVE-2018-0824

A remote code execution vulnerability exists in "Microsoft COM for Windows" when it fails to properly handle serialized objects, aka "Microsoft COM for Windows Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2...

8.8CVSS7.9AI score0.8545EPSS

CVE•added 2024/01/09 6:15 p.m.•274 views

CVE-2024-20674

Windows Kerberos Security Feature Bypass Vulnerability

8.8CVSS8.4AI score0.13849EPSS

CVE•added 2022/04/15 7:15 p.m.•270 views

CVE-2022-24528

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.01418EPSS

CVE•added 2022/04/15 7:15 p.m.•268 views

CVE-2022-24500

Windows SMB Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.38179EPSS

CVE•added 2025/06/10 5:22 p.m.•264 views

CVE-2025-33053

External control of file name or path in Internet Shortcut Files allows an unauthorized attacker to execute code over a network.

8.8CVSS8.8AI score0.16466EPSS

CVE•added 2018/12/12 12:29 a.m.•253 views

CVE-2018-8639

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server...

8.4CVSS8.5AI score0.20396EPSS

CVE•added 2024/01/09 6:15 p.m.•253 views

CVE-2024-20652

Windows HTML Platforms Security Feature Bypass Vulnerability

8.1CVSS8AI score0.02334EPSS

CVE•added 2024/03/12 5:15 p.m.•241 views

CVE-2024-26166

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.01432EPSS

CVE•added 2024/02/13 6:15 p.m.•240 views

CVE-2024-21358

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability