Lucene search
+L
MicrosoftWindows Server 2016*

1691 matches found

CVE
CVE
added 2023/07/11 5:3 p.m.663 views

CVE-2023-36874

CVE-2023-36874 is a Windows Error Reporting Service privilege-escalation vulnerability. The root cause described in the sources is a filesystem/relative-path handling flaw: WER may invoke wermgr.exe using a relative path and does not validate symbolic links, allowing a non-system executable to be...

7.8CVSS8.7AI score0.42602EPSS
In wildWeb
CVE
CVE
added 2023/10/10 5:7 p.m.654 views

CVE-2023-36584

CVE-2023-36584 concerns a Windows Mark of the Web (MOTW) security feature bypass vulnerability. The MOTW bypass can cause a limited loss of integrity and availability of security features, as described by CISA KEV entries. The vulnerability is listed among known exploited vulnerabilities catalog ...

5.4CVSS7.3AI score0.03055EPSS
In wild
CVE
CVE
added 2024/08/08 1:59 a.m.605 views

CVE-2024-21302

Microsoft has fixed CVE-2024-21302 for Windows systems with Virtualization-Based Security (VBS). The elevation-of-privilege vulnerability allowed an administrator to replace current Windows system files with older versions, potentially reintroducing mitigated VBS vulnerabilities and exfiltrating ...

6.7CVSS5.8AI score0.01559EPSS
CVE
CVE
added 2025/09/09 5:1 p.m.582 views

CVE-2025-53799

CVE-2025-53799 affects the Windows Imaging Component. The vulnerability arises from use of an uninitialized resource in Imaging Component code, enabling local attackers to disclose information. The NCSC entry confirms the impact as Access to sensitive data with a CVSS-like rating around 5.5 (Medi...

5.5CVSS6.1AI score0.0073EPSS
CVE
CVE
added 2024/05/14 4:57 p.m.579 views

CVE-2024-30051

CVE-2024-30051 is an Elevation of Privilege in the Windows Desktop Window Manager (DWM) core library dwmcore.dll. The root cause is a heap-based buffer overflow in CCommandBuffer::Initialize caused by a size miscalculation (integer division) that can overflow the heap during a heap spray, allowin...

7.8CVSS6.4AI score0.05687EPSS
In wild
CVE
CVE
added 2025/09/09 5:1 p.m.568 views

CVE-2025-53803

CVE-2025-53803 affects the Windows Kernel. Reported as: error message generation could disclose sensitive information to an authorized local attacker. According to the available connected sources, the vulnerability is categorized under Windows Kernel with a documented impact of accessing sensitiv...

5.5CVSS5.9AI score0.00606EPSS
CVE
CVE
added 2024/06/11 4:59 p.m.563 views

CVE-2024-30088

CVE-2024-30088 is a Windows Kernel TOCTOU race condition that can lead to local privilege escalation via AuthzBasepCopyoutInternalSecurityAttributes. Publicly discussed exploits and PoCs exist (Windows kernel LPE PoCs and Metasploit module), and CISA lists it as a known-exploited vulnerability; a...

7CVSS6.9AI score0.68202EPSS
In wild
CVE
CVE
added 2024/11/12 5:54 p.m.562 views

CVE-2024-38203

Technical details for CVE-2024-38203 are not publicly available in the supplied documents. No specifics on affected products, root cause, or remediation are provided here; monitor the feeds for updates from Microsoft and vulnerability trackers.

6.2CVSS5.8AI score0.00677EPSS
CVE
CVE
added 2024/07/09 5:2 p.m.559 views

CVE-2024-38077

CVE-2024-38077 is a heap-based buffer overflow in the Windows Remote Desktop Licensing Service. The vulnerability occurs in CDataCoding::DecodeData() due to an incorrect calculation of the buffer size for Base64 data, enabling a remote attacker to trigger a heap overflow and achieve remote code e...

9.8CVSS9.6AI score0.75365EPSS
Web
CVE
CVE
added 2023/11/14 5:57 p.m.556 views

CVE-2023-36025

CVE-2023-36025 is a Windows SmartScreen Security Feature Bypass vulnerability. Affected product context is Microsoft Windows (SmartScreen). Root cause and impact are described as bypass of SmartScreen with high severity (CVSS v3.1: 8.8, HIGH) affecting confidentiality, integrity, and availability...

8.8CVSS9.5AI score0.88196EPSS
In wild
CVE
CVE
added 2026/06/09 5:6 p.m.525 views

CVE-2026-44815

CVE-2026-44815 is a stack-based buffer overflow in the Windows DHCP Client that enables remote code execution over the network. Affected component: Windows DHCP Client; root cause is a stack-based overflow. Consequences are remote code execution with high impact, as indicated by the CVSS vector (...

9.8CVSS6AI score0.011EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.521 views

CVE-2023-38144

CVE-2023-38144 is a Windows elevation-of-privilege flaw in the Common Log File System (CLFS) driver . The provided description confirms a local, privilege-escalation condition affecting the Windows CLFS driver, with a CVSS v3.1 base score 7.8 (LOCAL, LOW attack complexity, LOW privileges required...

7.8CVSS7.8AI score0.05356EPSS
CVE
CVE
added 2024/12/10 5:49 p.m.515 views

CVE-2024-49138

Summary (CVE-2024-49138): A heap-based buffer overflow in the Windows Common Log File System Driver (CLFS.sys) enables local Elevation of Privilege on Windows 11/23h2 (and other supported builds). Public PoCs and exploits exist (GitHub PoC repos and exploits referenced in multiple sources), with ...

7.8CVSS7.5AI score0.25414EPSS
In wild
CVE
CVE
added 2025/02/11 5:58 p.m.507 views

CVE-2025-21391

CVE-2025-21391 (Windows Storage Elevation of Privilege) describes a local privilege escalation in Windows Storage. The vulnerability allows an attacker with low privileges and no user interaction to elevate to SYSTEM by exploiting a link-following flaw in Windows Storage (root cause described as ...

7.1CVSS7.7AI score0.02258EPSS
In wild
CVE
CVE
added 2023/08/08 5:2 p.m.505 views

CVE-2023-20569

CVE-2023-20569 concerns a side-channel vulnerability in some AMD CPUs where an attacker may influence the return-address predictor, enabling speculative execution at attacker-controlled addresses and potential information disclosure. The vulnerability is discussed across multiple connected source...

4.7CVSS6.6AI score0.0616EPSS
CVE
CVE
added 2024/09/10 4:53 p.m.496 views

CVE-2024-38014

CVE-2024-38014 is a Windows Installer privilege-escalation vulnerability (local, CVSSv3.1: 7.8) that could allow an attacker with low privileges to gain SYSTEM-level access. The issue targets the Windows Installer component and is described in sources as an improper privilege-management flaw. Pub...

7.8CVSS8.7AI score0.06008EPSS
In wild
CVE
CVE
added 2025/03/11 4:59 p.m.494 views

CVE-2025-24071

CVE-2025-24071 affects Windows File Explorer via the .library-ms mechanism. When a user opens or extracts ZIP/RAR contents containing a crafted .library-ms, Explorer can trigger an SMB authentication to a remote server, leaking the user’s NTLM hash. No user interaction beyond extraction is requir...

6.5CVSS7.3AI score0.25068EPSS
CVE
CVE
added 2023/11/14 5:57 p.m.484 views

CVE-2023-36036

CVE-2023-36036 is a Windows Elevation of Privilege in the Windows Cloud Files Mini Filter Driver. The flaw is a local, privilege-escalation bug (privileges required: low) that can grant SYSTEM-level access and has high impact on confidentiality, integrity, and availability. Public analyses report...

7.8CVSS8.7AI score0.1667EPSS
In wild
CVE
CVE
added 2023/09/12 4:58 p.m.483 views

CVE-2023-38149

CVE-2023-38149 is a Windows TCP/IP Denial of Service vulnerability. The CVE entry describes a network-based issue with impact limited to Availability (I:H) and no Confidentiality/Integrity impact (C:N, I:N) per CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H, base score 7.5 (HIGH). Connected docume...

7.5CVSS7.9AI score0.04323EPSS
CVE
CVE
added 2023/06/13 11:26 p.m.482 views

CVE-2023-29360

CVE-2023-29360 is a Microsoft Streaming Service untrusted pointer dereference vulnerability that enables local elevation of privilege (attack vector: local, no user interaction; impact: confidentiality, integrity, and availability HIGH). The CVSSv3.1 score is 8.4 (HIGH). Connected materials inclu...

8.4CVSS9.1AI score0.22133EPSS
In wild
CVE
CVE
added 2024/10/08 5:35 p.m.482 views

CVE-2024-43573

CVE-2024-43573 is a Windows MSHTML Platform Spoofing vulnerability. Public sources confirm it affects MSHTML in Windows and that patches were released (Microsoft Update Guide). There is evidence of exploitation in the wild for MSHTML-related spoofing vulnerabilities, including references noting a...

8.1CVSS7.4AI score0.43679EPSS
In wild
CVE
CVE
added 2025/10/14 5:1 p.m.475 views

CVE-2025-55695

CVE-2025-55695 describes an out-of-bounds read vulnerability in the Windows WLAN Auto Config Service that enables an authorized local attacker to disclose information. The description in the initial document confirms the root cause (out-of-bounds read) and the impact (local information disclosure...

5.5CVSS6.1AI score0.00381EPSS
CVE
CVE
added 2025/10/14 5:0 p.m.473 views

CVE-2025-59294

CVE-2025-59294 affects Windows Taskbar Live. The description indicates exposure of sensitive information to an unauthorized actor under physical access, enabling information disclosure. Connected documents provide limited details: the exact vulnerable component context and remediation are not spe...

4.6CVSS5.8AI score0.00586EPSS
CVE
CVE
added 2025/11/11 5:59 p.m.470 views

CVE-2025-59513

Technical details about CVE-2025-59513 are not publicly available in the provided documents. Monitor for updates from Microsoft and the CVE entry for affected components, impact, and remediation.

5.5CVSS5AI score0.00457EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.468 views

CVE-2023-38143

Technical details for CVE-2023-38143 are not publicly provided in the supplied documents. Affected product/version, root cause, exploitability, and remediation are not specified here; monitor for official disclosures and vendor advisory updates.

7.8CVSS7.8AI score0.04373EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.461 views

CVE-2023-38139

CVE-2023-38139 is a Windows kernel vulnerability tied to registry hive refcount handling, contributing to hive memory corruption. The connected docs note refcount overflow risks in CM_KEY_SECURITY descriptors (and related loader logic), describing how overflow can trigger use-after-free and enabl...

7.8CVSS7.8AI score0.01021EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.461 views

CVE-2023-38141

Technical details for CVE-2023-38141 are not provided in the connected documents. The sources discuss Windows Registry/VRegDriver context but do not specify affected products/versions, root cause, impact, or fixes for this CVE. Monitor for official disclosures.

7.8CVSS7.8AI score0.00632EPSS
CVE
CVE
added 2023/09/12 4:58 p.m.457 views

CVE-2023-38140

CVE-2023-38140 is a Windows kernel/registry vulnerability tied to the VRegDriver callback path. The issue arises in the VrpPostEnumerateKey handler, which allocates a kernel-pool buffer using a length controlled by the user, fills it with data (potentially shorter than the allocation), and copies...

5.5CVSS6.5AI score0.01037EPSS
CVE
CVE
added 2025/09/09 5:1 p.m.453 views

CVE-2025-54917

CVE-2025-54917 is a network-exploitable issue in Windows MapUrlToZone that enables circumvention of a security mechanism. The CVSS v3.1 base score is 4.3 (NETWORK, LOW attack complexity, NONE privileges, UI required) with a LOW confidentiality impact. The Connected documents indicate this CVE map...

4.3CVSS6.3AI score0.00842EPSS
CVE
CVE
added 2024/06/11 4:59 p.m.451 views

CVE-2024-35250

CVE-2024-35250 is a Windows kernel‑mode driver LPE in ks.sys (Kernel Streaming core) caused by an untrusted pointer dereference. PoCs and exploits exist (e.g., PoCs on GitHub; KS driver) with active demonstrations, and exploitation has been observed in public material. Microsoft addressed the iss...

7.8CVSS7.7AI score0.25222EPSS
In wild
CVE
CVE
added 2024/03/12 4:57 p.m.443 views

CVE-2024-21429

The CVE-2024-21429 entry covers a remote code execution vulnerability in the Windows USB Hub Driver. According to the description, the issue affects the USB Hub Driver and could lead to arbitrary code execution with high impact on confidentiality, integrity, and availability. Exploitation details...

6.8CVSS7.2AI score0.00904EPSS
CVE
CVE
added 2024/11/12 5:54 p.m.443 views

CVE-2024-49039

CVE-2024-49039 is a Windows Task Scheduler privilege-escalation vulnerability. An authenticated local attacker can elevate privileges outside of AppContainer and access privileged RPC functions via the Task Scheduler, enabling local privilege escalation with high impact (CVE-2024-49039). There ar...

8.8CVSS8.6AI score0.13719EPSS
In wild
CVE
CVE
added 2024/02/13 6:2 p.m.435 views

CVE-2024-21340

Technical details for CVE-2024-21340 are not provided in the supplied documents. Monitor for updates.

4.6CVSS5.3AI score0.00752EPSS
CVE
CVE
added 2026/05/12 4:58 p.m.410 views

CVE-2026-41089

CVE-2026-41089 is a Windows Netlogon RCE via a stack-based buffer overflow in CLDAP handling. Affected: Windows Server 2012 through 2025 domain controllers. Mechanism (per provided PoCs): unauthenticated remote is possible by sending crafted CLDAP UDP packets; a 528-byte stack buffer overflow occ...

9.8CVSS6.1AI score0.72253EPSS
In wild
CVE
CVE
added 2024/07/09 5:2 p.m.408 views

CVE-2024-38112

CVE-2024-38112 Windows MSHTML Platform Spoofing is a Windows/MSHTML vulnerability exploited in the wild by the Void Banshee group. The issue involves spoofing UI within the MSHTML/IE rendering path, enabling code execution when a user opens a crafted .url payload that references an embedded MHTML...

7.5CVSS8.8AI score0.84345EPSS
In wild
CVE
CVE
added 2025/06/10 5:2 p.m.408 views

CVE-2025-33073

CVE-2025-33073 is a network-accessible elevation of privilege in the Windows SMB Client caused by improper access control in the SMB protocol stack. The initial description confirms privilege escalation with network access. Connected documents provide concrete exploit presence: PoCs and proof‑of‑...

8.8CVSS8.7AI score0.64987EPSS
In wild
CVE
CVE
added 2024/11/12 5:53 p.m.406 views

CVE-2024-43451

CVE-2024-43451 is a Windows NTLMv2 hash disclosure spoofing vulnerability. Affected: Windows; root cause: NTLM hash leakage occurs when the shell processes .URL shortcuts, triggering NTLM authentication over SMB to an attacker-controlled server. Impact: attackers can obtain NTLMv2 hashes and perf...

6.5CVSS6.5AI score0.81817EPSS
In wild
CVE
CVE
added 2025/03/11 4:59 p.m.406 views

CVE-2025-26633

CVE-2025-26633 is a local-privilege-escalation in Microsoft Management Console (MMC) caused by improper neutralization in how MMC loads language-twin .msc files. A malicious “evil twin” .msc in a language directory can execute payloads with the user’s privileges when a user opens a legitimate MMC...

7CVSS6.8AI score0.31894EPSS
In wild
CVE
CVE
added 2025/06/10 5:2 p.m.400 views

CVE-2025-33053

Summary of CVE-2025-33053 : A vulnerability in Windows WebDAV/Internet Shortcut handling allows remote code execution when a vulnerable host opens a crafted .url file that points to a WebDAV share. Exploitation relies on the WebClient service resolving UNC paths via WebDAV and may trigger arbitra...

8.8CVSS8.8AI score0.81558EPSS
In wild
CVE
CVE
added 2025/03/11 4:59 p.m.395 views

CVE-2025-24983

CVE-2025-24983 is a local privilege-escalation vulnerability in the Windows Win32k/Win32 Kernel Subsystem (use-after-free). Exploitation enables an authorized attacker to elevate privileges to SYSTEM locally (AV:L, AC:H, PR:L, UI:N, S:U, C/H/I/A:H). The CVSS base metrics indicate high impact to c...

7CVSS7.2AI score0.01298EPSS
In wild
CVE
CVE
added 2024/12/10 5:49 p.m.392 views

CVE-2024-49112

CVE-2024-49112 affects Windows LDAP on Domain Controllers. Connected sources describe an integer-overflow flaw in the LDAP server that can allow unauthenticated remote code execution via crafted CLDAP/LDAP traffic, leading to arbitrary code execution and potential DoS. Exploitation may require lo...

9.8CVSS9.7AI score0.70906EPSS
CVE
CVE
added 2024/10/08 5:36 p.m.391 views

CVE-2024-43583

CVE-2024-43583 is a Winlogon elevation of privilege vulnerability. Connected PoC details show an attacker with low local privileges can escalate to SYSTEM by abusing the Image File Execution Options (IFEO) registry hijack to replace a legitimate system process with a malicious payload. Affected W...

7.8CVSS8.4AI score0.01341EPSS
Web
CVE
CVE
added 2025/05/13 4:58 p.m.389 views

CVE-2025-30394

Technical details for CVE-2025-30394 are not publicly provided in the supplied documents. The description notes a memory locking issue causing a network denial of service, but no vendor/version/impact/fix specifics are available here. Monitor for updates.

5.9CVSS5.7AI score0.21026EPSS
CVE
CVE
added 2025/05/13 4:59 p.m.387 views

CVE-2025-29974

Technical details about CVE-2025-29974 are not publicly provided in the supplied documents. Monitor for updates from Microsoft and other security bulletins to obtain confirmed affected products, scope, and remediation.

5.7CVSS5.6AI score0.00564EPSS
CVE
CVE
added 2025/02/11 5:58 p.m.379 views

CVE-2025-21420

CVE-2025-21420 is evidenced by PoCs showing a Disk Cleanup Tool (cleanmgr.exe) elevation via a DLL sideload approach. The GitHub PoCs demonstrate loading dokan1.dll/dokannp1.dll to trigger arbitrary code paths, with the exploit chain listing SetProcessMitigationPolicy (ProcessRedirectionTrustPoli...

7.8CVSS8.1AI score0.03597EPSS
CVE
CVE
added 2025/02/11 5:58 p.m.376 views

CVE-2025-21337

CVE-2025-21337 is a Windows vulnerability categorized as an elevation of privileges (impact: obtaining elevated privileges) with a low base score (CVSS v3.1: 3.3) and local attack vector. The connected advisory from NCSC-2025-0047 aligns this CVE to a Windows component issue with a CVSS ~3.3 and ...

3.3CVSS6AI score0.00596EPSS
CVE
CVE
added 2024/10/08 5:35 p.m.375 views

CVE-2024-30092

CVE-2024-30092 corresponds to a Windows Hyper-V remote code execution vulnerability. Connected sources corroborate a Hyper-V RCE issue affecting Windows Hyper-V with an entry showing 8.0 base-vector severity and adjacent attack vector; Microsoft has released updates to fix vulnerabilities in Wind...

8CVSS8.3AI score0.00669EPSS
CVE
CVE
added 2026/01/13 5:56 p.m.370 views

CVE-2026-0386

CVE-2026-0386 : Windows Deployment Services has an improper access control vulnerability that can allow an adjacent-network attacker to execute code remotely. This entry is supported by multiple sources confirming the issue and indicating Microsoft has released January 2026 security updates to ad...

7.5CVSS7AI score0.00525EPSS
CVE
CVE
added 2023/08/08 5:6 p.m.368 views

CVE-2023-20588

CVE-2023-20588 is a division-by-zero vulnerability on some AMD Zen1 CPUs that could cause speculative data leakage and affect confidentiality. The connected Amazon Linux 2 advisory (ALAS2KERNEL-5.4-2025-116) confirms the Linux kernel fix for kernel-5.4 series (e.g., 5.4.254-169.358.amzn2.aarch64/...

5.5CVSS6.9AI score0.12405EPSS
CVE
CVE
added 2024/09/10 4:54 p.m.366 views

CVE-2024-43461

CVE-2024-43461 — Windows MSHTML Platform Spoofing Vulnerability : A UI misrepresentation in MSHTML that can be used to spoof a web page. Affected component: Windows MSHTML Platform. Underlying issue is a UI spoofing flaw; CVSSv3.1 score 8.8 ( NETWORK, LOW, NONE, UI: REQUIRED; Confidentiality/Inte...

8.8CVSS9.3AI score0.51883EPSS
In wild
Total number of security vulnerabilities1691