Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2016

4264 matches found

CVE
CVEadded 2021/04/13 8:15 p.m.100 views

CVE-2021-28315

Windows Media Video Decoder Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01126EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.100 views

CVE-2021-28318

Windows GDI+ Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00542EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.100 views

CVE-2022-21860

Windows AppContracts API Server Elevation of Privilege Vulnerability

7CVSS8.1AI score0.00492EPSS
CVE
CVEadded 2022/05/10 9:15 p.m.100 views

CVE-2022-29105

Microsoft Windows Media Foundation Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.03165EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.100 views

CVE-2022-44675

Windows Bluetooth Driver Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.0637EPSS
CVE
CVEadded 2022/12/13 7:15 p.m.100 views

CVE-2022-44681

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00268EPSS
CVE
CVEadded 2023/04/11 9:15 p.m.100 views

CVE-2023-28241

Windows Secure Socket Tunneling Protocol (SSTP) Denial of Service Vulnerability

7.5CVSS7.4AI score0.03801EPSS
CVE
CVEadded 2024/08/13 6:15 p.m.100 views

CVE-2024-38185

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00479EPSS
CVE
CVEadded 2024/12/12 2:4 a.m.100 views

CVE-2024-49124

Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.00302EPSS
CVE
CVEadded 2025/04/08 6:15 p.m.100 views

CVE-2025-21191

Time-of-check time-of-use (toctou) race condition in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.

7CVSS7.1AI score0.00023EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.100 views

CVE-2025-21241

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00706EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.100 views

CVE-2025-21295

SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.01083EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.100 views

CVE-2025-26645

Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network.

8.8CVSS8.8AI score0.00459EPSS
CVE
CVEadded 2017/05/12 2:29 p.m.99 views

CVE-2017-0273

The Microsoft Server Message Block 1.0 (SMBv1) allows denial of service when an attacker sends specially crafted requests to the server, aka "Windows SMB Denial of Service Vulnerability". This CVE ID is unique from CVE-2017-0269 and CVE-2017-0280.

5.9CVSS6.2AI score0.09629EPSS
CVE
CVEadded 2018/02/15 2:29 a.m.99 views

CVE-2018-0844

The Windows Common Log File System (CLFS) driver in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability ...

7.8CVSS6.8AI score0.00344EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.99 views

CVE-2018-0901

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memo...

4.7CVSS4.7AI score0.11699EPSS
CVE
CVEadded 2018/03/14 5:29 p.m.99 views

CVE-2018-0904

The Windows kernel in Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows information disclosure vulnerability due to how memory addresses ar...

4.7CVSS5AI score0.03404EPSS
CVE
CVEadded 2018/04/12 1:29 a.m.99 views

CVE-2018-0960

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

5.5CVSS5.2AI score0.04687EPSS
CVE
CVEadded 2018/04/12 1:29 a.m.99 views

CVE-2018-0968

An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows Server 2012 R2, Win...

5.5CVSS5AI score0.04687EPSS
CVE
CVEadded 2018/04/12 1:29 a.m.99 views

CVE-2018-0970

An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2...

5.5CVSS5AI score0.04687EPSS
Web
CVE
CVEadded 2018/06/14 12:29 p.m.99 views

CVE-2018-0982

An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions, aka "Windows Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.

7CVSS7.6AI score0.11334EPSS
CVE
CVEadded 2018/05/21 1:29 p.m.99 views

CVE-2018-8142

A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-1035.

5.3CVSS5.4AI score0.00995EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.99 views

CVE-2019-0928

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'.

6.2CVSS6.6AI score0.0021EPSS
CVE
CVEadded 2019/06/12 2:29 p.m.99 views

CVE-2019-1046

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

5.5CVSS5.6AI score0.07622EPSS
CVE
CVEadded 2019/07/15 7:15 p.m.99 views

CVE-2019-1074

An elevation of privilege vulnerability exists in Microsoft Windows where certain folders, with local service privilege, are vulnerable to symbolic link attack. An attacker who successfully exploited this vulnerability could potentially access unauthorized information. The update addresses this vul...

5.5CVSS6.1AI score0.00372EPSS
CVE
CVEadded 2019/08/14 9:15 p.m.99 views

CVE-2019-1180

An elevation of privilege vulnerability exists in the way that the wcmsvc.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specially crafted...

7CVSS7.3AI score0.00229EPSS
CVE
CVEadded 2019/08/14 9:15 p.m.99 views

CVE-2019-1212

A memory corruption vulnerability exists in the Windows Server DHCP service when processing specially crafted packets. An attacker who successfully exploited the vulnerability could cause the DHCP server service to stop responding.To exploit the vulnerability, a remote unauthenticated attacker coul...

9.8CVSS8.5AI score0.1782EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.99 views

CVE-2019-1248

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1241, CVE-2019-1242, CVE-2019-1243, CVE-2019-1246, CVE-2019-1247,...

9.3CVSS8.5AI score0.35463EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.99 views

CVE-2019-1456

A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts, aka 'OpenType Font Parsing Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1419.

8.8CVSS9.3AI score0.23721EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.99 views

CVE-2020-0648

An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The...

7.8CVSS8.2AI score0.00542EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.99 views

CVE-2020-0684

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'.

8.8CVSS8.2AI score0.33494EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.99 views

CVE-2020-0840

An elevation of privilege vulnerability exists when Windows improperly handles hard links, aka 'Windows Hard Link Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0841, CVE-2020-0849, CVE-2020-0896.

7.8CVSS7.5AI score0.00397EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.99 views

CVE-2020-0965

A remoted code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory, aka 'Microsoft Windows Codecs Library Remote Code Execution Vulnerability'.

7.8CVSS8.2AI score0.01329EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.99 views

CVE-2020-0995

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0889, CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992,...

9.3CVSS8AI score0.33652EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.99 views

CVE-2020-1208

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1236.

9.3CVSS8.4AI score0.33652EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.99 views

CVE-2020-1333

An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points, aka 'Group Policy Services Policy Processing Elevation of Privilege Vulnerability'.

6.7CVSS7.7AI score0.00422EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.99 views

CVE-2020-1463

An elevation of privilege vulnerability exists in the way that the SharedStream Library handles objects in memory, aka 'Windows SharedStream Library Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00278EPSS
CVE
CVEadded 2020/10/16 11:15 p.m.99 views

CVE-2020-16974

An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The ...

7.8CVSS8.2AI score0.00542EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.99 views

CVE-2020-17038

Win32k Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.0073EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.99 views

CVE-2020-17055

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.07947EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.99 views

CVE-2021-1650

Windows Runtime C++ Template Library Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00279EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.99 views

CVE-2021-1694

Windows Update Stack Elevation of Privilege Vulnerability

9.8CVSS8AI score0.00761EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.99 views

CVE-2021-1695

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00548EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.99 views

CVE-2021-1696

Windows Graphics Component Information Disclosure Vulnerability

5.5CVSS6.6AI score0.12528EPSS
CVE
CVEadded 2021/02/25 11:15 p.m.99 views

CVE-2021-24079

Windows Backup Engine Information Disclosure Vulnerability

5.5CVSS7AI score0.00316EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.99 views

CVE-2021-26877

Windows DNS Server Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.08767EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.99 views

CVE-2021-28349

Windows GDI+ Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.00502EPSS
CVE
CVEadded 2021/06/08 11:15 p.m.99 views

CVE-2021-31960

Windows Bind Filter Driver Information Disclosure Vulnerability

5.5CVSS5.6AI score0.00403EPSS
CVE
CVEadded 2021/11/10 1:19 a.m.99 views

CVE-2021-42286

Windows Core Shell SI Host Extension Framework for Composable Shell Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00249EPSS
CVE
CVEadded 2022/03/09 5:15 p.m.99 views

CVE-2022-23290

Windows Inking COM Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00227EPSS
Total number of security vulnerabilities4264