Windows Server 2016@* Security Vulnerabilities and Issues — Page 55 of Windows Server 2016@* CVE List

Lucene search

MicrosoftWindows Server 2016*

2944 matches found

CVE•added 2025/01/14 6:15 p.m.•70 views

CVE-2025-21323

Windows Kernel Memory Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00092EPSS

CVE•added 2025/02/11 6:15 p.m.•70 views

CVE-2025-21410

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00381EPSS

CVE•added 2017/03/17 12:59 a.m.•69 views

CVE-2017-0051

Microsoft Windows 10 1607 and Windows Server 2016 allow remote attackers to cause a denial of service (application hang) via a crafted Office document, aka "Microsoft Hyper-V Network Switch Denial of Service Vulnerability." This vulnerability is different from those described in CVE-2017-0074, CVE-...

5.4CVSS5.2AI score0.00651EPSS

CVE•added 2017/03/17 12:59 a.m.•69 views

CVE-2017-0098

Hyper-V in Microsoft Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows guest OS users, running as virtual machines, to cause a denial of service via a crafted application, aka "Hyper-V Denial of Service Vulnerability." This vulnerability is different from those described in CVE-2017-0...

5.4CVSS5.2AI score0.00651EPSS

CVE•added 2017/10/13 1:29 p.m.•69 views

CVE-2017-11823

The Microsoft Device Guard on Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a security feature bypass by the way it handles Windows PowerShell sessions, aka "Microsoft Windows Security Feature Bypass".

7.2CVSS7.7AI score0.0302EPSS

CVE•added 2017/09/13 1:29 a.m.•69 views

CVE-2017-8686

The Windows Server DHCP service in Windows Server 2012 Gold and R2, and Windows Server 2016 allows an attacker to either run arbitrary code on the DHCP failover server or cause the DHCP service to become nonresponsive, due to a memory corruption vulnerability in the Windows Server DHCP service, aka...

9.8CVSS8.3AI score0.06584EPSS

CVE•added 2020/02/11 10:15 p.m.•69 views

CVE-2020-0716

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0717.

5.5CVSS6AI score0.00978EPSS

CVE•added 2020/05/21 11:15 p.m.•69 views

CVE-2020-1088

An elevation of privilege vulnerability exists in Windows Error Reporting (WER) when WER handles and executes files, aka 'Windows Error Reporting Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1021, CVE-2020-1082.

7.8CVSS8.5AI score0.00285EPSS

CVE•added 2021/12/15 3:15 p.m.•69 views

CVE-2021-43227

Storage Spaces Controller Information Disclosure Vulnerability

5.5CVSS7AI score0.00512EPSS

CVE•added 2023/07/11 6:15 p.m.•69 views

CVE-2023-33172

Remote Procedure Call Runtime Denial of Service Vulnerability

7.5CVSS7.8AI score0.03672EPSS

CVE•added 2024/09/10 5:15 p.m.•69 views

CVE-2024-38244

Kernel Streaming Service Driver Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.01136EPSS

CVE•added 2024/10/08 6:15 p.m.•69 views

CVE-2024-38262

Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability

7.5CVSS8.5AI score0.00477EPSS

CVE•added 2024/09/10 5:15 p.m.•69 views

CVE-2024-43458

Windows Networking Information Disclosure Vulnerability

7.7CVSS7.4AI score0.02095EPSS

CVE•added 2024/10/08 6:15 p.m.•69 views

CVE-2024-43563

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00193EPSS

CVE•added 2025/01/14 6:15 p.m.•69 views

CVE-2025-21287

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00159EPSS

CVE•added 2025/01/14 6:15 p.m.•69 views

CVE-2025-21336

Windows Cryptographic Information Disclosure Vulnerability

5.6CVSS5.3AI score0.00069EPSS

CVE•added 2025/01/14 6:15 p.m.•69 views

CVE-2025-21339

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.02401EPSS

CVE•added 2025/02/11 6:15 p.m.•69 views

CVE-2025-21350

Windows Kerberos Denial of Service Vulnerability

5.9CVSS6.9AI score0.00278EPSS

CVE•added 2025/05/13 5:15 p.m.•69 views

CVE-2025-26677

Uncontrolled resource consumption in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.

7.5CVSS7.5AI score0.09379EPSS

CVE•added 2017/08/08 9:29 p.m.•68 views

CVE-2017-8624

CLFS in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to the way it handles objects in memory, aka "Windows CLFS Elevation...

7.8CVSS8.1AI score0.01092EPSS

CVE•added 2017/08/08 9:29 p.m.•68 views

CVE-2017-8666

Microsoft Win32k in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability when it fails to properly handle objects in memory, aka ...

5.5CVSS6.2AI score0.08EPSS

CVE•added 2017/09/13 1:29 a.m.•68 views

CVE-2017-8704

The Windows Hyper-V component on Microsoft Windows 10 1607 and Windows Server 2016 allows a denial of service vulnerability when it fails to properly validate input from an authenticated user on a guest operating system, aka "Hyper-V Denial of Service Vulnerability".

5.3CVSS5.9AI score0.00344EPSS

CVE•added 2019/11/12 7:15 p.m.•68 views

CVE-2019-1381

An information disclosure vulnerability exists when the Windows Servicing Stack allows access to unprivileged file locations, aka 'Microsoft Windows Information Disclosure Vulnerability'.

5.5CVSS6.5AI score0.0106EPSS

CVE•added 2019/11/12 7:15 p.m.•68 views

CVE-2019-1383

An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly handles file operations, aka 'Windows Data Sharing Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1379, CVE-2019-1417.

7.8CVSS8.5AI score0.0037EPSS

CVE•added 2020/03/12 4:15 p.m.•68 views

CVE-2020-0844

An elevation of privilege vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.0037EPSS

CVE•added 2020/03/12 4:15 p.m.•68 views

CVE-2020-0871

An information disclosure vulnerability exists when Windows Network Connections Service fails to properly handle objects in memory, aka 'Windows Network Connections Service Information Disclosure Vulnerability'.

5.5CVSS6.5AI score0.01687EPSS

CVE•added 2020/05/21 11:15 p.m.•68 views

CVE-2020-1076

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.

5.5CVSS6.8AI score0.00266EPSS

CVE•added 2020/05/21 11:15 p.m.•68 views

CVE-2020-1077

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1086, CVE-2020-1090, CVE-2020-1125, CVE-2020-1139, CVE-2020-1149, CVE-2020-1151, CVE-2020-115...

7.8CVSS7.7AI score0.12134EPSS

CVE•added 2020/05/21 11:15 p.m.•68 views

CVE-2020-1138

An elevation of privilege vulnerability exists when the Storage Service improperly handles file operations, aka 'Windows Storage Service Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00274EPSS

CVE•added 2020/05/21 11:15 p.m.•68 views

CVE-2020-1187

An elevation of privilege vulnerability exists when the Windows State Repository Service improperly handles objects in memory, aka 'Windows State Repository Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1124, CVE-2020-1131, CVE-2020-1134, CVE-2020-1144, CVE-2020...

7.8CVSS7.7AI score0.00278EPSS

CVE•added 2023/07/11 6:15 p.m.•68 views

CVE-2023-35329

Windows Authentication Denial of Service Vulnerability

6.5CVSS7.8AI score0.00792EPSS

CVE•added 2024/10/08 6:15 p.m.•68 views

CVE-2024-38261

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

7.8CVSS8.6AI score0.01039EPSS

CVE•added 2024/10/08 6:15 p.m.•68 views

CVE-2024-43544

Microsoft Simple Certificate Enrollment Protocol Denial of Service Vulnerability

7.5CVSS8.2AI score0.1574EPSS

CVE•added 2025/01/14 6:15 p.m.•68 views

CVE-2025-21250

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.00626EPSS

CVE•added 2025/01/14 6:15 p.m.•68 views

CVE-2025-21278

Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

6.2CVSS6.4AI score0.00072EPSS

CVE•added 2025/01/14 6:15 p.m.•68 views

CVE-2025-21321

Windows Kernel Memory Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00092EPSS

CVE•added 2025/02/11 6:15 p.m.•68 views

CVE-2025-21414

Windows Core Messaging Elevation of Privileges Vulnerability

7CVSS7.6AI score0.00093EPSS

CVE•added 2017/10/13 1:29 p.m.•67 views

CVE-2017-11769

The Microsoft Windows TRIE component on Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability in the way it handles loading dll files, aka "TRIE Remote Code Execution Vulnerability".

9.3CVSS8.9AI score0.3391EPSS

CVE•added 2017/07/11 9:29 p.m.•67 views

CVE-2017-8486

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an information disclosure due to the way it handles objects in memory, aka "Win32k Information Disclosure Vulner...

4.7CVSS5AI score0.01433EPSS

CVE•added 2017/06/29 1:29 p.m.•67 views

CVE-2017-8554

The kernel in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an authenticated attacker to obtain memory contents via a specially crafted application.

4.7CVSS4.5AI score0.0127EPSS

CVE•added 2017/07/11 9:29 p.m.•67 views

CVE-2017-8562

Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to Windows improperly handling calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privil...

7CVSS6.7AI score0.00474EPSS

CVE•added 2017/08/08 9:29 p.m.•67 views

CVE-2017-8664

Windows Hyper-V in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability when it fails to properly validate input from a privileged user on a guest operating system, aka "Windows Hype...

8.8CVSS8.8AI score0.00929EPSS

CVE•added 2017/10/13 1:29 p.m.•67 views

CVE-2017-8694

The Microsoft Windows Kernel Mode Driver on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability when it fails to prope...

7CVSS8AI score0.01133EPSS

CVE•added 2017/09/13 1:29 a.m.•67 views

CVE-2017-8714

The Windows Hyper-V component on Microsoft Windows 8.1, Windows Server 2012 Gold and R2,, Windows 10 1607, and Windows Server 2016 allows a remote code execution vulnerability when it fails to properly validate input from an authenticated user on a guest operating system, aka "Remote Desktop Virtua...

7.8CVSS7.2AI score0.01056EPSS

CVE•added 2020/03/12 4:15 p.m.•67 views

CVE-2020-0868

An elevation of privilege vulnerability exists when the Windows Update Orchestrator Service improperly handles file operations, aka 'Windows Update Orchestrator Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0867.

7.8CVSS8.5AI score0.0037EPSS

CVE•added 2020/05/21 11:15 p.m.•67 views

CVE-2020-1084

A Denial Of Service vulnerability exists when Connected User Experiences and Telemetry Service fails to validate certain function values.An attacker who successfully exploited this vulnerability could deny dependent security feature functionality.To exploit this vulnerability, an attacker would hav...

5.5CVSS6.9AI score0.00266EPSS

CVE•added 2023/12/12 6:15 p.m.•67 views

CVE-2023-36012

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6.5AI score0.00491EPSS

CVE•added 2024/12/12 2:4 a.m.•67 views

CVE-2024-49091

Windows Domain Name Service Remote Code Execution Vulnerability

7.2CVSS7.2AI score0.01005EPSS

CVE•added 2025/05/13 5:15 p.m.•67 views

CVE-2025-29837

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to disclose information locally.

5.5CVSS6.7AI score0.00074EPSS

CVE•added 2017/04/12 2:59 p.m.•66 views

CVE-2017-0159

A security feature bypass vulnerability exists in Windows 10 1607, Windows Server 2012 R2, and Windows 2016 when ADFS incorrectly treats requests coming from Extranet clients as Intranet requests, aka "ADFS Security Feature Bypass Vulnerability."

4.3CVSS5.7AI score0.04918EPSS

Total number of security vulnerabilities2944