Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2016

4166 matches found

CVE
CVEadded 2022/01/11 9:15 p.m.1103 views

CVE-2022-21919

Windows User Profile Service Elevation of Privilege Vulnerability

7CVSS8.2AI score0.00684EPSS
CVE
CVEadded 2019/07/29 2:13 p.m.1097 views

CVE-2019-1130

An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1129.

7.8CVSS7.7AI score0.08695EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.1085 views

CVE-2021-36955

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8AI score0.18971EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.1083 views

CVE-2020-1040

A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1032, CVE-2020-1036,...

9CVSS9.2AI score0.01001EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.1082 views

CVE-2017-8543

Microsoft Windows XP SP3, Windows XP x64 XP2, Windows Server 2003 SP2, Windows Vista, Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to take co...

10CVSS6.2AI score0.75599EPSS
CVE
CVEadded 2019/06/12 2:29 p.m.1081 views

CVE-2019-1069

An elevation of privilege vulnerability exists in the way the Task Scheduler Service validates certain file operations. An attacker who successfully exploited the vulnerability could gain elevated privileges on a victim system.To exploit the vulnerability, an attacker would require unprivileged cod...

7.8CVSS7.9AI score0.31928EPSS
CVE
CVEadded 2019/10/10 2:15 p.m.1074 views

CVE-2019-1315

An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1339, CVE-2019-1342.

7.8CVSS8.5AI score0.06219EPSS
CVE
CVEadded 2016/11/10 7:0 a.m.1073 views

CVE-2016-7255

The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win3...

7.8CVSS7.6AI score0.89359EPSS
CVE
CVEadded 2022/04/15 7:15 p.m.1073 views

CVE-2022-26904

Windows User Profile Service Elevation of Privilege Vulnerability

7CVSS8.2AI score0.27769EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.1071 views

CVE-2019-0863

An elevation of privilege vulnerability exists in the way Windows Error Reporting (WER) handles files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'.

7.8CVSS7.7AI score0.13544EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.1070 views

CVE-2017-0001

The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka "Windows GDI ...

7.8CVSS6.2AI score0.12861EPSS
CVE
CVEadded 2020/01/14 11:15 p.m.1070 views

CVE-2020-0610

A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability'. This CVE ...

10CVSS9.7AI score0.87813EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.1068 views

CVE-2020-0938

A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a specially-crafted multi-master font - Adobe Type 1 PostScript format.For all systems except Windows 10, an attacker who successfully exploited the vulnerability could e...

7.8CVSS8.2AI score0.8787EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.1067 views

CVE-2019-1215

An elevation of privilege vulnerability exists in the way that ws2ifsl.sys (Winsock) handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1253, CVE-2019-1278, CVE-2019-1303.

7.8CVSS8.1AI score0.19565EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.1065 views

CVE-2019-1214

An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.11567EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.1062 views

CVE-2020-1027

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0913, CVE-2020-1000, CVE-2020-1003.

7.8CVSS8AI score0.13396EPSS
CVE
CVEadded 2019/04/09 12:29 a.m.1061 views

CVE-2019-0703

An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0704, CVE-2019-0821.

6.5CVSS6.8AI score0.14208EPSS
CVE
CVEadded 2018/09/13 12:29 a.m.1055 views

CVE-2018-8440

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8....

7.8CVSS7.5AI score0.76175EPSS
CVE
CVEadded 2022/07/12 11:15 p.m.1054 views

CVE-2022-22047

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.00669EPSS
CVE
CVEadded 2019/01/08 9:29 p.m.1050 views

CVE-2019-0543

An elevation of privilege vulnerability exists when Windows improperly handles authentication requests, aka "Microsoft Windows Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Window...

7.8CVSS7.7AI score0.03524EPSS
CVE
CVEadded 2019/04/09 3:29 a.m.1046 views

CVE-2019-0797

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0808.

7.8CVSS8.2AI score0.52291EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.1044 views

CVE-2019-1385

An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to elevate privileges.T...

7.8CVSS8.3AI score0.00381EPSS
CVE
CVEadded 2018/08/15 5:29 p.m.1041 views

CVE-2018-8405

An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 1...

7.8CVSS7.7AI score0.14446EPSS
CVE
CVEadded 2023/04/11 9:15 p.m.1041 views

CVE-2023-28252

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.54704EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.1037 views

CVE-2017-0005

The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application, aka "Windows GDI ...

7.8CVSS6.2AI score0.12861EPSS
CVE
CVEadded 2022/08/09 8:15 p.m.1033 views

CVE-2022-34713

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability

7.8CVSS8.9AI score0.08936EPSS
CVE
CVEadded 2018/08/15 5:29 p.m.1026 views

CVE-2018-8406

An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE...

7.8CVSS7.7AI score0.14446EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.1024 views

CVE-2022-26923

Active Directory Domain Services Elevation of Privilege Vulnerability

9CVSS9.2AI score0.91618EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.1020 views

CVE-2019-0903

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.

9.3CVSS8AI score0.50678EPSS
CVE
CVEadded 2016/11/10 7:0 a.m.993 views

CVE-2016-7256

atmfd.dll in the Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to execute arbitrary code via a cra...

9.3CVSS8.8AI score0.50761EPSS
CVE
CVEadded 2018/12/12 12:29 a.m.967 views

CVE-2018-8611

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012...

7.8CVSS8.4AI score0.06406EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.938 views

CVE-2020-17049

A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD).To exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service t...

9CVSS6.8AI score0.20086EPSS
CVE
CVEadded 2024/08/13 6:15 p.m.905 views

CVE-2024-38063

Windows TCP/IP Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.88095EPSS
CVE
CVEadded 2023/01/10 10:15 p.m.875 views

CVE-2023-21674

Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability

8.8CVSS8.6AI score0.09979EPSS
CVE
CVEadded 2022/09/13 7:15 p.m.858 views

CVE-2022-37969

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.9AI score0.04824EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.843 views

CVE-2025-21298

Windows OLE Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.70558EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.825 views

CVE-2022-41128

Windows Scripting Languages Remote Code Execution Vulnerability

8.8CVSS8.3AI score0.71181EPSS
CVE
CVEadded 2023/03/14 5:15 p.m.822 views

CVE-2023-24880

Windows SmartScreen Security Feature Bypass Vulnerability

4.4CVSS7AI score0.90812EPSS
CVE
CVEadded 2022/10/11 7:15 p.m.805 views

CVE-2022-41033

Windows COM+ Event System Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00234EPSS
CVE
CVEadded 2023/02/14 9:15 p.m.799 views

CVE-2023-21823

Windows Graphics Component Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.03155EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.796 views

CVE-2019-1388

An elevation of privilege vulnerability exists in the Windows Certificate Dialog when it does not properly enforce user privileges, aka 'Windows Certificate Dialog Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.02925EPSS
CVE
CVEadded 2024/10/08 6:15 p.m.759 views

CVE-2024-38124

Windows Netlogon Elevation of Privilege Vulnerability

9CVSS9AI score0.00798EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.752 views

CVE-2022-41073

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00699EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.749 views

CVE-2022-41091

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS7AI score0.06229EPSS
CVE
CVEadded 2023/05/09 6:15 p.m.745 views

CVE-2023-29336

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.8AI score0.75481EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.744 views

CVE-2022-41049

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS6.8AI score0.28597EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.732 views

CVE-2022-41125

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00529EPSS
CVE
CVEadded 2018/05/22 12:29 p.m.727 views

CVE-2018-3639

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store ...

5.5CVSS5.9AI score0.46737EPSS
CVE
CVEadded 2023/10/10 6:15 p.m.719 views

CVE-2023-36563

Microsoft WordPad Information Disclosure Vulnerability

6.5CVSS7.1AI score0.00725EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.716 views

CVE-2022-38023

Netlogon RPC Elevation of Privilege Vulnerability

8.1CVSS8.3AI score0.0032EPSS
Total number of security vulnerabilities4166