Windows Server 2016@- Security Vulnerabilities and Issues — Page 12 of Windows Server 2016@- CVE List

A remote code execution vulnerability exists in Windows Domain Name System (DNS) servers when they fail to properly handle requests, aka "Windows DNS Server Heap Overflow Vulnerability." This affects Windows Server 2012 R2, Windows Server 2019, Windows Server 2016, Windows 10, Windows 10 Servers.

10CVSS9.5AI score0.14737EPSS

CVE•added 2019/06/12 2:29 p.m.•158 views

CVE-2019-1019

A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages.To exploit this vulnerability, an attacker could send a specially crafted authentication request. An attacker who successfully exploited this vulnerability could access anothe...

8.5CVSS7.1AI score0.04674EPSS

CVE•added 2020/12/10 12:15 a.m.•158 views

CVE-2020-16996

Kerberos Security Feature Bypass Vulnerability

6.5CVSS7AI score0.10507EPSS

CVE•added 2021/07/16 9:15 p.m.•158 views

CVE-2021-34444

Windows DNS Server Denial of Service Vulnerability

6.5CVSS7.3AI score0.03776EPSS

CVE•added 2022/07/12 11:15 p.m.•158 views

CVE-2022-22045

Windows.Devices.Picker.dll Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.0067EPSS

CVE•added 2022/07/12 11:15 p.m.•158 views

CVE-2022-30203

Windows Boot Manager Security Feature Bypass Vulnerability

7.4CVSS7.9AI score0.01082EPSS

CVE•added 2022/07/12 11:15 p.m.•158 views

CVE-2022-30222

Windows Shell Remote Code Execution Vulnerability

8.4CVSS8.8AI score0.0046EPSS

CVE•added 2022/08/09 8:15 p.m.•158 views

CVE-2022-34706

Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.02268EPSS

CVE•added 2023/01/10 10:15 p.m.•158 views

CVE-2023-21767

Windows Overlay Filter Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00198EPSS

CVE•added 2023/04/11 9:15 p.m.•158 views

CVE-2023-28297

Windows Remote Procedure Call Service (RPCSS) Elevation of Privilege Vulnerability

8.8CVSS8.7AI score0.01709EPSS

CVE•added 2018/04/12 1:29 a.m.•157 views

CVE-2018-1016

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Win...

9.3CVSS7.3AI score0.57782EPSS

CVE•added 2019/09/11 10:15 p.m.•157 views

CVE-2019-1291

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-0788, CVE-2019-1290.

9.3CVSS8.8AI score0.32912EPSS

CVE•added 2020/08/17 7:15 p.m.•157 views

CVE-2020-1537

An elevation of privilege vulnerability exists when the Windows Remote Access improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code execution on a victim system. An...

7.8CVSS8.3AI score0.00513EPSS

CVE•added 2022/01/11 9:15 p.m.•157 views

CVE-2022-21922

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9CVSS9.3AI score0.08026EPSS

CVE•added 2022/07/12 11:15 p.m.•157 views

CVE-2022-22026

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

8.8CVSS8.2AI score0.00284EPSS

CVE•added 2022/04/15 7:15 p.m.•157 views

CVE-2022-24479

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00414EPSS

CVE•added 2022/04/15 7:15 p.m.•157 views

CVE-2022-26796

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00175EPSS

CVE•added 2022/05/10 9:15 p.m.•157 views

CVE-2022-26935

Windows WLAN AutoConfig Service Information Disclosure Vulnerability

6.5CVSS7.6AI score0.00806EPSS

CVE•added 2022/11/09 10:15 p.m.•157 views

CVE-2022-41058

Windows Network Address Translation (NAT) Denial of Service Vulnerability

7.5CVSS7.9AI score0.03147EPSS

CVE•added 2023/05/09 6:15 p.m.•157 views

CVE-2023-24947

Windows Bluetooth Driver Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00141EPSS

CVE•added 2018/11/14 1:29 a.m.•156 views

CVE-2018-8550

An elevation of privilege exists in Windows COM Aggregate Marshaler, aka "Windows COM Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Serve...

7.8CVSS7.2AI score0.11772EPSS

CVE•added 2019/07/15 7:15 p.m.•156 views

CVE-2019-0785

A memory corruption vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP failover server, aka 'Windows DHCP Server Remote Code Execution Vulnerability'.

9.8CVSS7.9AI score0.26235EPSS

CVE•added 2021/06/08 11:15 p.m.•156 views

CVE-2021-31958

Windows NTLM Elevation of Privilege Vulnerability

8.8CVSS8.3AI score0.02565EPSS

CVE•added 2021/07/14 6:15 p.m.•156 views

CVE-2021-33779

Windows AD FS Security Feature Bypass Vulnerability

8.1CVSS7.9AI score0.0104EPSS

CVE•added 2021/07/16 9:15 p.m.•156 views

CVE-2021-34459

Windows AppContainer Elevation Of Privilege Vulnerability

7.8CVSS8.1AI score0.00305EPSS

CVE•added 2022/04/15 7:15 p.m.•156 views

CVE-2022-26816

Windows DNS Server Information Disclosure Vulnerability

6.5CVSS6.8AI score0.06793EPSS

CVE•added 2023/01/10 10:15 p.m.•156 views

CVE-2023-21683

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

7.5CVSS7.5AI score0.05786EPSS

CVE•added 2023/03/14 5:15 p.m.•156 views

CVE-2023-24910

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00208EPSS

CVE•added 2017/05/12 2:29 p.m.•155 views

CVE-2017-0267

Microsoft Server Message Block 1.0 (SMBv1) allows an information disclosure vulnerability in the way that Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 handles...

5.9CVSS6.1AI score0.27804EPSS

CVE•added 2018/03/14 5:29 p.m.•155 views

CVE-2018-0878

Windows Remote Assistance in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how X...

3.1CVSS5AI score0.45053EPSS

CVE•added 2019/01/08 9:29 p.m.•155 views

CVE-2019-0555

An elevation of privilege vulnerability exists in the Microsoft XmlDocument class that could allow an attacker to escape from the AppContainer sandbox in the browser, aka "Microsoft XmlDocument Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Serve...

7.8CVSS7.5AI score0.00818EPSS

CVE•added 2021/01/12 8:15 p.m.•155 views

CVE-2021-1658

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.3AI score0.01239EPSS

CVE•added 2021/09/15 12:15 p.m.•155 views

CVE-2021-40447

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8AI score0.0027EPSS

CVE•added 2022/04/15 7:15 p.m.•155 views

CVE-2022-26811

Windows DNS Server Remote Code Execution Vulnerability