Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
MicrosoftWindows Server 2012

3486 matches found

CVE
CVEadded 2024/06/11 5:15 p.m.4117 views

CVE-2024-30078

Windows Wi-Fi Driver Remote Code Execution Vulnerability

8.8CVSS9.4AI score0.23029EPSS
CVE
CVEadded 2020/08/17 7:15 p.m.3628 views

CVE-2020-1472

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability could run a specially crafted application on a d...

10CVSS8.2AI score0.94448EPSS
CVE
CVEadded 2017/04/12 2:59 p.m.3617 views

CVE-2017-0199

Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office/WordPad Remote Code...

9.3CVSS8.3AI score0.94366EPSS
CVE
CVEadded 2013/12/11 12:55 a.m.3069 views

CVE-2013-3900

Why is Microsoft republishing a CVE from 2013?We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the format i...

8.8CVSS7.4AI score0.72892EPSS
CVE
CVEadded 2021/07/02 10:15 p.m.2463 views

CVE-2021-34527

<p>A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or...

9CVSS9AI score0.94349EPSS
CVE
CVEadded 2024/02/14 4:15 p.m.2269 views

CVE-2023-50387

Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG ...

7.5CVSS7.7AI score0.36401EPSS
CVE
CVEadded 2018/05/09 7:29 p.m.2084 views

CVE-2018-8174

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windo...

7.6CVSS8.1AI score0.94283EPSS
CVE
CVEadded 2022/06/01 8:15 p.m.2069 views

CVE-2022-30190

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, vi...

9.3CVSS8.5AI score0.93412EPSS
CVE
CVEadded 2021/06/08 11:15 p.m.2027 views

CVE-2021-1675

Windows Print Spooler Remote Code Execution Vulnerability

9.3CVSS8.8AI score0.94349EPSS
CVE
CVEadded 2021/08/12 6:15 p.m.1762 views

CVE-2021-36942

Windows LSA Spoofing Vulnerability

7.5CVSS7.2AI score0.93632EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.1650 views

CVE-2020-1350

A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests, aka 'Windows DNS Server Remote Code Execution Vulnerability'.

10CVSS9.6AI score0.93595EPSS
CVE
CVEadded 2021/11/10 1:19 a.m.1641 views

CVE-2021-42278

Active Directory Domain Services Elevation of Privilege Vulnerability

7.5CVSS8.2AI score0.94019EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.1452 views

CVE-2021-40444

<p>Microsoft is investigating reports of a remote code execution vulnerability in MSHTML that affects Microsoft Windows. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability by using specially-crafted Microsoft Office documents.</p><p>An attacker could craft a malicious...

8.8CVSS7.3AI score0.94291EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.1384 views

CVE-2020-0787

An elevation of privilege vulnerability exists when the Windows Background Intelligent Transfer Service (BITS) improperly handles symbolic links, aka 'Windows Background Intelligent Transfer Service Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.59671EPSS
CVE
CVEadded 2015/04/14 8:59 p.m.1376 views

CVE-2015-1635

HTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted HTTP requests, aka "HTTP.sys Remote Code Execution Vulnerability."

10CVSS9.6AI score0.9431EPSS
CVE
CVEadded 2021/10/13 1:15 a.m.1373 views

CVE-2021-40449

Win32k Elevation of Privilege Vulnerability

7.8CVSS8AI score0.8338EPSS
CVE
CVEadded 2014/05/14 11:13 a.m.1340 views

CVE-2014-1812

The Group Policy implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 does not properly handle distribution of passwords, which allows remote authenticated users to obtain sensitive credential i...

9CVSS8.6AI score0.77741EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.1329 views

CVE-2017-8464

Windows Shell in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows local users or remote attackers to execute arbitrary code via a crafted .LNK file,...

9.3CVSS7.2AI score0.93709EPSS
CVE
CVEadded 2022/04/15 7:15 p.m.1326 views

CVE-2022-24521

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.9AI score0.02729EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.1257 views

CVE-2017-0213

Windows COM Aggregate Marshaler in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation privilege vulnerability when an attacker runs a specially ...

7.3CVSS5.9AI score0.91805EPSS
CVE
CVEadded 2021/11/10 1:19 a.m.1252 views

CVE-2021-42287

Active Directory Domain Services Elevation of Privilege Vulnerability

8.8CVSS8.2AI score0.93954EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.1247 views

CVE-2020-0986

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266, CVE-2020-1269, CVE-2020...

7.8CVSS7.7AI score0.19295EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.1242 views

CVE-2020-17087

Windows Kernel Local Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.15084EPSS
CVE
CVEadded 2023/07/11 7:15 p.m.1232 views

CVE-2023-36884

Windows Search Remote Code Execution Vulnerability

7.5CVSS9.1AI score0.93071EPSS
CVE
CVEadded 2016/04/12 11:59 p.m.1226 views

CVE-2016-0167

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vu...

7.8CVSS6.8AI score0.11623EPSS
CVE
CVEadded 2015/09/09 12:59 a.m.1224 views

CVE-2015-2546

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption E...

8.2CVSS8.5AI score0.37248EPSS
CVE
CVEadded 2014/11/11 10:55 p.m.1221 views

CVE-2014-6332

OleAut32.dll in OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted web site, as demonstra...

9.3CVSS8.8AI score0.94069EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.1207 views

CVE-2017-0147

The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory ...

7.5CVSS5.7AI score0.92418EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.1204 views

CVE-2020-1020

A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could e...

8.8CVSS8.2AI score0.8787EPSS
CVE
CVEadded 2023/04/11 9:15 p.m.1204 views

CVE-2023-21554

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.92162EPSS
CVE
CVEadded 2022/02/09 5:15 p.m.1187 views

CVE-2022-22718

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.0674EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.1169 views

CVE-2020-0683

An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0686.

7.8CVSS8AI score0.27418EPSS
CVE
CVEadded 2021/11/10 1:19 a.m.1165 views

CVE-2021-41379

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS7AI score0.04121EPSS
CVE
CVEadded 2022/02/09 5:15 p.m.1165 views

CVE-2022-21999

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.70876EPSS
CVE
CVEadded 2021/06/08 11:15 p.m.1161 views

CVE-2021-31956

Windows NTFS Elevation of Privilege Vulnerability

9.3CVSS8.5AI score0.85551EPSS
CVE
CVEadded 2020/05/21 11:15 p.m.1149 views

CVE-2020-1054

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1143.

7.8CVSS7.8AI score0.80387EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.1148 views

CVE-2022-26925

Windows LSA Spoofing Vulnerability

8.1CVSS7.5AI score0.29421EPSS
CVE
CVEadded 2019/07/15 7:15 p.m.1147 views

CVE-2019-0880

A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Elevation of Privilege Vulnerability'.

7.8CVSS7.5AI score0.0137EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.1144 views

CVE-2017-0263

The kernel-mode drivers in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of P...

7.8CVSS7.6AI score0.18325EPSS
CVE
CVEadded 2021/08/12 6:15 p.m.1143 views

CVE-2021-34484

Windows User Profile Service Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.06173EPSS
CVE
CVEadded 2021/06/08 11:15 p.m.1141 views

CVE-2021-33742

Windows MSHTML Platform Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.57248EPSS
CVE
CVEadded 2019/04/09 9:29 p.m.1140 views

CVE-2019-0859

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0685, CVE-2019-0803.

7.8CVSS8.2AI score0.84886EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.1135 views

CVE-2019-1405

An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly allows COM object creation, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'.

7.8CVSS8.4AI score0.58623EPSS
CVE
CVEadded 2021/07/16 9:15 p.m.1133 views

CVE-2021-34448

Scripting Engine Memory Corruption Vulnerability

9.3CVSS7.4AI score0.02062EPSS
CVE
CVEadded 2021/06/08 11:15 p.m.1131 views

CVE-2021-31199

Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability

7.8CVSS7.2AI score0.00462EPSS
CVE
CVEadded 2021/07/14 6:15 p.m.1131 views

CVE-2021-31979

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.01032EPSS
CVE
CVEadded 2018/10/10 1:29 p.m.1128 views

CVE-2018-8453

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server...

7.8CVSS7.6AI score0.84016EPSS
CVE
CVEadded 2021/06/08 11:15 p.m.1127 views

CVE-2021-31201

Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability

7.8CVSS7.2AI score0.00172EPSS
CVE
CVEadded 2019/12/10 10:15 p.m.1124 views

CVE-2019-1458

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'.

7.8CVSS8.2AI score0.92947EPSS
CVE
CVEadded 2019/04/09 9:29 p.m.1123 views

CVE-2019-0803

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0685, CVE-2019-0859.

7.8CVSS8.2AI score0.84886EPSS
Total number of security vulnerabilities3486