Windows Server 2016@* Security Vulnerabilities and Issues — Page 22 of Windows Server 2016@* CVE List

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0595, CVE-2019-0596, CVE-2019-0598, CVE-2019-0599, CVE-2019-0625.

9.3CVSS8.4AI score0.32161EPSS

CVE•added 2019/04/09 9:29 p.m.•131 views

CVE-2019-0851

9.3CVSS8.4AI score0.2548EPSS

CVE•added 2020/01/14 11:15 p.m.•131 views

CVE-2020-0639

An information disclosure vulnerability exists in the Windows Common Log File System (CLFS) driver when it fails to properly handle objects in memory, aka 'Windows Common Log File System Driver Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0615.

5.5CVSS6.6AI score0.00681EPSS

CVE•added 2021/07/14 6:15 p.m.•131 views

CVE-2021-33781

Azure AD Security Feature Bypass Vulnerability

8.1CVSS8.6AI score0.00848EPSS

CVE•added 2021/10/13 1:15 a.m.•131 views

CVE-2021-36953

Windows TCP/IP Denial of Service Vulnerability

7.5CVSS7.9AI score0.06695EPSS

CVE•added 2021/09/15 12:15 p.m.•131 views

CVE-2021-36974

Windows SMB Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00243EPSS

CVE•added 2022/11/09 10:15 p.m.•131 views

CVE-2022-41047

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02344EPSS

CVE•added 2023/02/14 8:15 p.m.•131 views

CVE-2023-21799

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9AI score0.00211EPSS

CVE•added 2023/02/14 8:15 p.m.•131 views

CVE-2023-21813

Windows Secure Channel Denial of Service Vulnerability

7.5CVSS7.4AI score0.03441EPSS

CVE•added 2023/03/14 5:15 p.m.•131 views

CVE-2023-24868

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.03462EPSS

CVE•added 2023/03/14 5:15 p.m.•131 views

CVE-2023-24908

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.1CVSS8.2AI score0.0116EPSS

CVE•added 2023/03/14 5:15 p.m.•131 views

CVE-2023-24911

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

4.3CVSS4.6AI score0.01968EPSS

CVE•added 2023/04/11 9:15 p.m.•131 views

CVE-2023-28267

Remote Desktop Protocol Client Information Disclosure Vulnerability

6.5CVSS6.5AI score0.00827EPSS

CVE•added 2025/01/14 6:15 p.m.•131 views

CVE-2025-21310

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE•added 2025/04/08 6:15 p.m.•131 views

CVE-2025-27480

Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.

8.1CVSS8AI score0.00101EPSS

Web

CVE•added 2017/02/20 4:59 p.m.•130 views

CVE-2017-0038

gdi32.dll in Graphics Device Interface (GDI) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sensitive information from process heap...

5.5CVSS4.7AI score0.82234EPSS

CVE•added 2019/03/06 12:0 a.m.•130 views

CVE-2019-0660

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/04/09 9:29 p.m.•130 views

CVE-2019-0814

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0848.

5.5CVSS6AI score0.00996EPSS

CVE•added 2019/05/16 7:29 p.m.•130 views

CVE-2019-0882

6.5CVSS6.2AI score0.25343EPSS

CVE•added 2019/07/15 7:15 p.m.•130 views

CVE-2019-1082

An elevation of privilege vulnerability exists in Microsoft Windows where a certain DLL, with Local Service privilege, is vulnerable to race planting a customized DLL.An attacker who successfully exploited this vulnerability could potentially elevate privilege to SYSTEM.The update addresses this vu...

7.8CVSS6.2AI score0.00372EPSS

CVE•added 2020/06/09 8:15 p.m.•130 views

CVE-2020-0915

An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, aka 'Windows GDI Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0916.

7.8CVSS8.1AI score0.00397EPSS

CVE•added 2021/10/13 1:15 a.m.•130 views

CVE-2021-41345

Storage Spaces Controller Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00631EPSS

CVE•added 2021/11/10 1:19 a.m.•130 views

CVE-2021-42285

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00253EPSS

CVE•added 2022/11/09 10:15 p.m.•130 views

CVE-2022-41086

Windows Group Policy Elevation of Privilege Vulnerability

6.4CVSS7.3AI score0.00048EPSS

CVE•added 2023/02/14 8:15 p.m.•130 views

CVE-2023-21685

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9AI score0.01231EPSS

CVE•added 2023/02/14 8:15 p.m.•130 views

CVE-2023-21798

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00414EPSS

CVE•added 2023/03/14 5:15 p.m.•130 views

CVE-2023-24865

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

6.5CVSS6.3AI score0.06058EPSS

CVE•added 2023/04/11 9:15 p.m.•130 views

CVE-2023-24885

Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability

8.8CVSS9.1AI score0.00569EPSS

CVE•added 2023/04/11 9:15 p.m.•130 views

CVE-2023-28228

Windows Spoofing Vulnerability

5.5CVSS5.7AI score0.00208EPSS

CVE•added 2024/05/14 5:17 p.m.•130 views

CVE-2024-30038

Win32k Elevation of Privilege Vulnerability

7.8CVSS6.4AI score0.10173EPSS

CVE•added 2024/12/12 2:4 a.m.•130 views

CVE-2024-49080

Windows IP Routing Management Snapin Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.03161EPSS

CVE•added 2025/01/14 6:15 p.m.•130 views

CVE-2025-21260

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE•added 2017/09/13 1:29 a.m.•129 views

CVE-2017-0161

The Windows NetBT Session Services component on Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability when it fails to maintain ce...

8.1CVSS7.7AI score0.14352EPSS

CVE•added 2017/04/12 2:59 p.m.•129 views

CVE-2017-0211

An elevation of privilege vulnerability exists in Windows 10, Windows 8.1, Windows RT 8.1, Windows Server 2012, Windows Server 2012 R2, and Windows Server 2016 versions of Microsoft Windows OLE when it fails an integrity-level check, aka "Windows OLE Elevation of Privilege Vulnerability."

5.5CVSS6.4AI score0.21417EPSS

CVE•added 2019/03/06 12:0 a.m.•129 views

CVE-2019-0602

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0660, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/03/06 12:0 a.m.•129 views

CVE-2019-0616

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/04/09 9:29 p.m.•129 views

CVE-2019-0802

6.5CVSS6.7AI score0.22134EPSS

CVE•added 2019/04/09 9:29 p.m.•129 views

CVE-2019-0839

An information disclosure vulnerability exists when the Terminal Services component improperly discloses the contents of its memory, aka 'Windows Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0838.

4.4CVSS5.7AI score0.00695EPSS

CVE•added 2019/07/29 1:57 p.m.•129 views

CVE-2019-1102

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.

9.3CVSS8.1AI score0.24741EPSS

CVE•added 2020/01/14 11:15 p.m.•129 views

CVE-2020-0612

A denial of service vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability'.

7.5CVSS8.2AI score0.09956EPSS

CVE•added 2020/08/17 7:15 p.m.•129 views

CVE-2020-1564

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8.8AI score0.09677EPSS

CVE•added 2021/06/08 11:15 p.m.•129 views

CVE-2021-31973

Windows GPSVC Elevation of Privilege Vulnerability

7.8CVSS8.4AI score0.00653EPSS

CVE•added 2021/07/14 6:15 p.m.•129 views

CVE-2021-34504

Windows Address Book Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01103EPSS

CVE•added 2022/06/15 10:15 p.m.•129 views

CVE-2022-30164

Kerberos AppContainer Security Feature Bypass Vulnerability