Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2016

4166 matches found

CVE
CVEadded 2024/10/08 6:15 p.m.75 views

CVE-2024-43515

Internet Small Computer Systems Interface (iSCSI) Denial of Service Vulnerability

7.5CVSS8.2AI score0.06107EPSS
CVE
CVEadded 2024/10/08 6:15 p.m.75 views

CVE-2024-43516

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00488EPSS
CVE
CVEadded 2024/10/08 6:15 p.m.75 views

CVE-2024-43518

Windows Telephony Server Remote Code Execution Vulnerability

8.8CVSS9.1AI score0.04691EPSS
CVE
CVEadded 2024/11/12 6:15 p.m.75 views

CVE-2024-43645

Windows Defender Application Control (WDAC) Security Feature Bypass Vulnerability

7.8CVSS6.7AI score0.00201EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.75 views

CVE-2025-21265

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00132EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.75 views

CVE-2025-21281

Microsoft COM for Windows Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.0017EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.75 views

CVE-2025-21320

Windows Kernel Memory Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00092EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.75 views

CVE-2025-24072

Use after free in Microsoft Local Security Authority Server (lsasrv) allows an authorized attacker to elevate privileges locally.

7.8CVSS7.2AI score0.0009EPSS
CVE
CVEadded 2025/04/08 6:15 p.m.75 views

CVE-2025-24073

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.001EPSS
CVE
CVEadded 2025/04/08 6:15 p.m.75 views

CVE-2025-27469

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

7.5CVSS7AI score0.12218EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.74 views

CVE-2017-0026

The kernel-mode drivers in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." This vulnerability is different from those described in CVE-2017-0024, CVE-2017-0056, CVE-2...

7.8CVSS6AI score0.06734EPSS
CVE
CVEadded 2017/07/11 9:29 p.m.74 views

CVE-2017-8467

Graphics in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to the way it handles objects in memory, aka "Win32k Ele...

7CVSS6.9AI score0.00972EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.74 views

CVE-2017-8484

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an authenticated attacker to run a specially crafted application when the Windows kernel improperly initializ...

5CVSS4.7AI score0.15731EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.74 views

CVE-2017-8492

The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application. aka "Window...

5CVSS4.8AI score0.15731EPSS
CVE
CVEadded 2017/07/11 9:29 p.m.74 views

CVE-2017-8561

Windows kernel in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to the way it handles objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerabili...

7CVSS6.6AI score0.00359EPSS
CVE
CVEadded 2017/08/08 9:29 p.m.74 views

CVE-2017-8620

Windows Search in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability when it improperly handles objects in memory, aka "Windows S...

9.3CVSS8.6AI score0.71568EPSS
CVE
CVEadded 2017/09/13 1:29 a.m.74 views

CVE-2017-8720

The Microsoft Windows graphics component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability when the Win32k compon...

7.8CVSS7.2AI score0.01052EPSS
CVE
CVEadded 2018/06/14 12:29 p.m.74 views

CVE-2018-8216

A security feature bypass vulnerability exists in Device Guard that could allow an attacker to inject malicious code into a Windows PowerShell session, aka "Device Guard Code Integrity Policy Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10. This CVE ID is unique...

5.3CVSS5.2AI score0.01097EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.74 views

CVE-2020-0658

An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'.

5.5CVSS6.1AI score0.00571EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.74 views

CVE-2020-0723

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0719, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0724, CVE...

7.8CVSS7.7AI score0.00549EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.74 views

CVE-2020-0728

An information vulnerability exists when Windows Modules Installer Service improperly discloses file information, aka 'Windows Modules Installer Service Information Disclosure Vulnerability'.

5.5CVSS6.3AI score0.13946EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.74 views

CVE-2020-0748

An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The security update addre...

5.5CVSS5.2AI score0.00996EPSS
CVE
CVEadded 2020/02/11 10:15 p.m.74 views

CVE-2020-0751

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtua...

6CVSS6.6AI score0.00601EPSS
CVE
CVEadded 2020/05/21 11:15 p.m.74 views

CVE-2020-1125

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1077, CVE-2020-1086, CVE-2020-1090, CVE-2020-1139, CVE-2020-1149, CVE-2020-1151, CVE-2020-115...

7.8CVSS7.7AI score0.12134EPSS
CVE
CVEadded 2020/05/21 11:15 p.m.74 views

CVE-2020-1144

An elevation of privilege vulnerability exists when the Windows State Repository Service improperly handles objects in memory, aka 'Windows State Repository Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1124, CVE-2020-1131, CVE-2020-1134, CVE-2020-1184, CVE-2020...

7.8CVSS7.7AI score0.00278EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.74 views

CVE-2020-1360

An elevation of privilege vulnerability exists when the Windows Profile Service improperly handles file operations, aka 'Windows Profile Service Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00278EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.74 views

CVE-2020-1367

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1389, CVE-2020-1419, CVE-2020-1426.

5.5CVSS6.1AI score0.00842EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.74 views

CVE-2020-1375

An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka 'Windows COM Server Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.02383EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.74 views

CVE-2020-1388

An elevation of privilege vulnerability exists in the way that the psmsrv.dll handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1392, CVE-2020-1394, CVE-2020-1395.

7.8CVSS8.1AI score0.00694EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.74 views

CVE-2020-1431

An elevation of privilege vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.To exploit this vulnerability, an authenticated attacker would need to run a specially crafted application to elevate privileges.T...

7.8CVSS8.3AI score0.0044EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.74 views

CVE-2020-16854

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker would have to log on to ...

5.5CVSS5.8AI score0.00746EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.74 views

CVE-2021-24095

DirectX Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.0015EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.74 views

CVE-2021-26870

Windows Projected File System Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00513EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.74 views

CVE-2021-26887

An elevation of privilege vulnerability exists in Microsoft Windows when Folder redirection has been enabled via Group Policy. When folder redirection file server is co-located with Terminal server, an attacker who successfully exploited the vulnerability would be able to begin redirecting another ...

7.8CVSS7.4AI score0.00489EPSS
CVE
CVEadded 2021/03/11 4:15 p.m.74 views

CVE-2021-26892

Windows Extensible Firmware Interface Security Feature Bypass Vulnerability

6.2CVSS7.4AI score0.00748EPSS
CVE
CVEadded 2021/12/15 3:15 p.m.74 views

CVE-2021-43244

Windows Kernel Information Disclosure Vulnerability

6.5CVSS7AI score0.00418EPSS
CVE
CVEadded 2024/09/10 5:15 p.m.74 views

CVE-2024-38239

Windows Kerberos Elevation of Privilege Vulnerability

7.2CVSS8.1AI score0.11734EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.74 views

CVE-2025-21236

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00461EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.74 views

CVE-2025-21347

Windows Deployment Services Denial of Service Vulnerability

6CVSS7AI score0.0006EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.74 views

CVE-2025-24987

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to elevate privileges with a physical attack.

6.8CVSS6.5AI score0.00118EPSS
CVE
CVEadded 2025/04/08 6:15 p.m.74 views

CVE-2025-26667

Exposure of sensitive information to an unauthorized actor in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.7AI score0.00082EPSS
CVE
CVEadded 2025/04/08 6:15 p.m.74 views

CVE-2025-26687

Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.

7.5CVSS7.5AI score0.0006EPSS
CVE
CVEadded 2025/04/08 6:15 p.m.74 views

CVE-2025-26688

Stack-based buffer overflow in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.00066EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.73 views

CVE-2017-0024

The kernel-mode drivers in Microsoft Windows 10 1607 and Windows Server 2016 allow local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability." This vulnerability is different from those described in CVE-2017-0026, CVE-2017-0056, CVE-2017-0078, CVE-20...

7.8CVSS6AI score0.06734EPSS
CVE
CVEadded 2017/03/17 12:59 a.m.73 views

CVE-2017-0095

Hyper-V in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 does not properly validate vSMB packet data, which allows attackers to execute arbitrary code on a target OS, aka "Hyper-V vSMB Remote Code Execution Vulnerability." This vulnerability is different from that described in C...

7.9CVSS7.7AI score0.01164EPSS
CVE
CVEadded 2017/04/12 2:59 p.m.73 views

CVE-2017-0188

A Win32k information disclosure vulnerability exists in Windows 8.1, Windows RT 8.1, Windows Server 2012, Windows Server 2012 R2, Windows 10, and Windows Server 2016 when the win32k component improperly provides kernel information. An attacker who successfully exploited the vulnerability could obta...

3.3CVSS4.8AI score0.05109EPSS
CVE
CVEadded 2017/04/12 2:59 p.m.73 views

CVE-2017-0191

A denial of service vulnerability exists in the way that Windows 7, Windows 8.1, Windows 10, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, and Windows Server 2016 handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system t...

5.8CVSS6.1AI score0.01574EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.73 views

CVE-2017-0292

Windows PDF in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows remote code execution if a user opens a specially crafted PDF file, aka "Windows PDF Remote Code Execution Vulnerability". This CVE ID is unique from CVE-20...

9.3CVSS6.4AI score0.28742EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.73 views

CVE-2017-0298

A DCOM object in Helppane.exe in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016, when configured to run as the interactive user, allows an authenticated attacker to...

7.3CVSS5.8AI score0.00872EPSS
CVE
CVEadded 2017/06/15 1:29 a.m.73 views

CVE-2017-8462

The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to obtain information via a specially crafted application. aka "Window...

5CVSS4.8AI score0.15731EPSS
Total number of security vulnerabilities4166