Windows Server 2012@- Security Vulnerabilities and Issues — Page 3 of Windows Server 2012@- CVE List

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store ...

5.5CVSS5.9AI score0.46737EPSS

CVE•added 2023/10/10 6:15 p.m.•718 views

CVE-2023-36563

Microsoft WordPad Information Disclosure Vulnerability

6.5CVSS7.1AI score0.00725EPSS

CVE•added 2022/11/09 10:15 p.m.•715 views

CVE-2022-38023

Netlogon RPC Elevation of Privilege Vulnerability

8.1CVSS8.3AI score0.0032EPSS

CVE•added 2023/09/12 5:15 p.m.•663 views

CVE-2023-38142

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.04835EPSS

CVE•added 2023/02/14 8:15 p.m.•654 views

CVE-2023-23376

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.18778EPSS

CVE•added 2023/09/12 5:15 p.m.•653 views

CVE-2023-38160

Windows TCP/IP Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00221EPSS

CVE•added 2023/10/10 6:15 p.m.•646 views

CVE-2023-36434

Windows IIS Server Elevation of Privilege Vulnerability

9.8CVSS9.4AI score0.02926EPSS

CVE•added 2018/09/06 9:29 p.m.•638 views

CVE-2018-5391

The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation hav...

7.8CVSS7.7AI score0.01732EPSS

CVE•added 2022/04/15 7:15 p.m.•626 views

CVE-2022-26809

Remote Procedure Call Runtime Remote Code Execution Vulnerability

10CVSS9.6AI score0.92281EPSS

CVE•added 2024/10/08 6:15 p.m.•617 views

CVE-2024-43572

Microsoft Management Console Remote Code Execution Vulnerability

7.8CVSS8.6AI score0.56476EPSS

CVE•added 2023/10/10 6:15 p.m.•603 views

CVE-2023-36584

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS7.3AI score0.20094EPSS

CVE•added 2023/05/09 6:15 p.m.•598 views

CVE-2023-24932

Secure Boot Security Feature Bypass Vulnerability

6.7CVSS6.9AI score0.00727EPSS

CVE•added 2019/09/03 6:15 p.m.•590 views

CVE-2019-1125

An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacker who successfully exploited the vulnerability could read privileged data across trust boundaries.To exploit this vulnerability, an attacker would have to log on to an a...

5.6CVSS6.8AI score0.15102EPSS

CVE•added 2022/05/10 9:15 p.m.•583 views

CVE-2022-29130

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.06808EPSS

CVE•added 2022/07/12 11:15 p.m.•576 views

CVE-2022-30209

Windows IIS Server Elevation of Privilege Vulnerability

7.4CVSS7.9AI score0.01421EPSS

CVE•added 2023/07/11 6:15 p.m.•560 views

CVE-2023-36874

Windows Error Reporting Service Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.65811EPSS

CVE•added 2023/03/14 5:15 p.m.•553 views

CVE-2023-23415

Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.03976EPSS

CVE•added 2025/04/08 6:16 p.m.•549 views

CVE-2025-29824

Use after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.02117EPSS

CVE•added 2021/05/11 8:15 p.m.•521 views

CVE-2020-24588

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802...

3.5CVSS6.4AI score0.00848EPSS

CVE•added 2023/09/12 5:15 p.m.•515 views

CVE-2023-38162

DHCP Server Service Denial of Service Vulnerability

7.5CVSS7.5AI score0.0689EPSS

CVE•added 2023/09/12 5:15 p.m.•501 views

CVE-2023-38144

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01242EPSS

CVE•added 2018/03/14 5:29 p.m.•495 views

CVE-2018-0886

The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows a remote code execu...

7.6CVSS7AI score0.91013EPSS

CVE•added 2023/09/12 5:15 p.m.•492 views

CVE-2023-36801

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6AI score0.00248EPSS

CVE•added 2024/11/12 6:15 p.m.•492 views

CVE-2024-38203

Windows Package Library Manager Information Disclosure Vulnerability

6.2CVSS5.8AI score0.00125EPSS

CVE•added 2023/07/11 6:15 p.m.•484 views

CVE-2023-32046

Windows MSHTML Platform Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.797EPSS

CVE•added 2023/09/12 5:15 p.m.•470 views

CVE-2023-38161

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00071EPSS

CVE•added 2022/11/09 10:15 p.m.•465 views

CVE-2022-37967

Windows Kerberos Elevation of Privilege Vulnerability

7.2CVSS7.9AI score0.02202EPSS

CVE•added 2023/11/14 6:15 p.m.•462 views

CVE-2023-36025

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS9.5AI score0.90662EPSS

CVE•added 2016/04/12 11:59 p.m.•460 views

CVE-2016-0165

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vu...

7.8CVSS6.8AI score0.11623EPSS

CVE•added 2023/04/11 9:15 p.m.•460 views

CVE-2023-28229

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

7CVSS7AI score0.07065EPSS

CVE•added 2023/09/12 5:15 p.m.•460 views

CVE-2023-38149

Windows TCP/IP Denial of Service Vulnerability

7.5CVSS7.9AI score0.05411EPSS

CVE•added 2024/07/09 5:15 p.m.•458 views

CVE-2024-38077

Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.8355EPSS

CVE•added 2023/09/12 5:15 p.m.•453 views

CVE-2023-36804

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00071EPSS

CVE•added 2023/09/12 5:15 p.m.•449 views

CVE-2023-38143

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01242EPSS

CVE•added 2020/01/14 11:15 p.m.•446 views

CVE-2020-0609

A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability'. This CVE ...

10CVSS9.7AI score0.87813EPSS

CVE•added 2023/09/12 5:15 p.m.•446 views

CVE-2023-38141

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00315EPSS

CVE•added 2023/09/12 5:15 p.m.•443 views

CVE-2023-38152

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6AI score0.0239EPSS

CVE•added 2019/08/14 9:15 p.m.•439 views

CVE-2019-1181

A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. A...

10CVSS9.7AI score0.73187EPSS

CVE•added 2023/10/10 6:15 p.m.•439 views

CVE-2023-35349

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.01159EPSS

CVE•added 2023/09/12 5:15 p.m.•439 views

CVE-2023-38139

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00584EPSS

CVE•added 2024/12/12 2:4 a.m.•438 views

CVE-2024-49138

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.5AI score0.8442EPSS

CVE•added 2023/11/14 6:15 p.m.•434 views

CVE-2023-36036

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.00997EPSS

CVE•added 2024/09/10 5:15 p.m.•431 views

CVE-2024-38014

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.10523EPSS

CVE•added 2016/04/12 11:59 p.m.•422 views

CVE-2016-0128

The SAM and LSAD protocol implementations in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 do not properly establish an RPC channel, which allows man-in-the-middle attackers ...

6.8CVSS6.4AI score0.34582EPSS

CVE•added 2023/10/10 6:15 p.m.•421 views

CVE-2023-36577

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.00191EPSS

CVE•added 2024/03/12 5:15 p.m.•411 views

CVE-2024-21429

Windows USB Hub Driver Remote Code Execution Vulnerability

6.8CVSS7.2AI score0.00311EPSS

Total number of security vulnerabilities3157