Windows Server 2016@- Security Vulnerabilities and Issues — Page 2 of Windows Server 2016@- CVE List | Vulners.com

Lucene search

K

MicrosoftWindows Server 2016-

2649 matches found

CVE•added 2018/12/12 12:29 a.m.•977 views

CVE-2018-8611

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012...

7.8CVSS8.4AI score0.06406EPSS

CVE•added 2020/11/11 7:15 a.m.•970 views

CVE-2020-17049

A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD).To exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service t...

9CVSS6.8AI score0.21753EPSS

CVE•added 2023/03/14 5:15 p.m.•851 views

CVE-2023-24880

Windows SmartScreen Security Feature Bypass Vulnerability

4.4CVSS7AI score0.90812EPSS

CVE•added 2023/02/14 9:15 p.m.•829 views

CVE-2023-21823

Windows Graphics Component Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.03215EPSS

CVE•added 2019/11/12 7:15 p.m.•826 views

CVE-2019-1388

An elevation of privilege vulnerability exists in the Windows Certificate Dialog when it does not properly enforce user privileges, aka 'Windows Certificate Dialog Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.02651EPSS

CVE•added 2023/05/09 6:15 p.m.•773 views

CVE-2023-29336

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.8AI score0.71132EPSS

CVE•added 2018/05/22 12:29 p.m.•763 views

CVE-2018-3639

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store ...

5.5CVSS5.9AI score0.46737EPSS

CVE•added 2022/11/09 10:15 p.m.•760 views

CVE-2022-38023

Netlogon RPC Elevation of Privilege Vulnerability

8.1CVSS8.3AI score0.00295EPSS

CVE•added 2023/02/14 8:15 p.m.•686 views

CVE-2023-23376

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.18778EPSS

CVE•added 2023/09/12 5:15 p.m.•680 views

CVE-2023-36803

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.5AI score0.00692EPSS

CVE•added 2023/10/10 6:15 p.m.•676 views

CVE-2023-36434

Windows IIS Server Elevation of Privilege Vulnerability

9.8CVSS9.4AI score0.02926EPSS

CVE•added 2023/09/12 5:15 p.m.•671 views

CVE-2023-38147

Windows Miracast Wireless Display Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00084EPSS

CVE•added 2018/09/06 9:29 p.m.•669 views

CVE-2018-5391

The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation hav...

7.8CVSS7.7AI score0.05017EPSS

CVE•added 2023/05/09 6:15 p.m.•633 views

CVE-2023-24932

Secure Boot Security Feature Bypass Vulnerability

6.7CVSS6.9AI score0.00782EPSS

CVE•added 2022/04/15 7:15 p.m.•630 views

CVE-2022-26809

Remote Procedure Call Runtime Remote Code Execution Vulnerability

10CVSS9.6AI score0.92281EPSS

CVE•added 2019/09/03 6:15 p.m.•606 views

CVE-2019-1125

An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacker who successfully exploited the vulnerability could read privileged data across trust boundaries.To exploit this vulnerability, an attacker would have to log on to an a...

5.6CVSS6.8AI score0.13431EPSS

CVE•added 2022/05/10 9:15 p.m.•585 views

CVE-2022-29130

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.13776EPSS

CVE•added 2022/07/12 11:15 p.m.•577 views

CVE-2022-30209

Windows IIS Server Elevation of Privilege Vulnerability

7.4CVSS7.9AI score0.05027EPSS

CVE•added 2023/03/14 5:15 p.m.•556 views

CVE-2023-23415

Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.03976EPSS

CVE•added 2021/05/11 8:15 p.m.•554 views

CVE-2020-24588

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802...

3.5CVSS6.4AI score0.00267EPSS

CVE•added 2023/07/11 6:15 p.m.•530 views

CVE-2023-32049

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS9.3AI score0.11689EPSS

CVE•added 2023/09/12 5:15 p.m.•516 views

CVE-2023-38162

DHCP Server Service Denial of Service Vulnerability

7.5CVSS7.5AI score0.0689EPSS

CVE•added 2018/03/14 5:29 p.m.•512 views

CVE-2018-0886

The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows a remote code execu...

7.6CVSS7AI score0.91367EPSS

CVE•added 2023/07/11 6:15 p.m.•512 views

CVE-2023-32046

Windows MSHTML Platform Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.78924EPSS

CVE•added 2022/11/09 10:15 p.m.•508 views

CVE-2022-37967

Windows Kerberos Elevation of Privilege Vulnerability

7.2CVSS7.9AI score0.02202EPSS

CVE•added 2023/09/12 5:15 p.m.•493 views

CVE-2023-36801

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6AI score0.00248EPSS

CVE•added 2023/04/11 9:15 p.m.•490 views

CVE-2023-28229

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

7CVSS7AI score0.07065EPSS

CVE•added 2020/01/14 11:15 p.m.•478 views

CVE-2020-0609

A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability'. This CVE ...

10CVSS9.7AI score0.86497EPSS

CVE•added 2023/09/12 5:15 p.m.•471 views

CVE-2023-38161

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00071EPSS

CVE•added 2024/03/12 5:15 p.m.•457 views

CVE-2024-26169

Windows Error Reporting Service Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.29237EPSS

CVE•added 2024/08/08 2:15 a.m.•456 views

CVE-2024-38202

SummaryMicrosoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security (VBS). However, an attack...

7.3CVSS8.2AI score0.04136EPSS

CVE•added 2023/09/12 5:15 p.m.•454 views

CVE-2023-36804

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00071EPSS

CVE•added 2023/09/12 5:15 p.m.•444 views

CVE-2023-38152

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6AI score0.0239EPSS

CVE•added 2019/08/14 9:15 p.m.•443 views

CVE-2019-1181

A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. A...

10CVSS9.7AI score0.684EPSS

CVE•added 2023/10/10 6:15 p.m.•440 views

CVE-2023-35349

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.01159EPSS

CVE•added 2024/02/13 6:15 p.m.•425 views

CVE-2024-21351

Windows SmartScreen Security Feature Bypass Vulnerability

7.6CVSS8.5AI score0.06234EPSS

CVE•added 2023/10/10 6:15 p.m.•422 views

CVE-2023-36577

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.00191EPSS

CVE•added 2022/11/09 10:15 p.m.•421 views

CVE-2022-37966

Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability

8.1CVSS8.5AI score0.00747EPSS

CVE•added 2022/05/10 9:15 p.m.•408 views

CVE-2022-22012

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.06215EPSS

CVE•added 2023/10/10 6:15 p.m.•405 views

CVE-2023-38159

Windows Graphics Component Elevation of Privilege Vulnerability

7CVSS8.1AI score0.01021EPSS

CVE•added 2023/10/10 6:15 p.m.•400 views

CVE-2023-36722

Active Directory Domain Services Information Disclosure Vulnerability

4.4CVSS6.5AI score0.00068EPSS

CVE•added 2023/10/10 6:15 p.m.•398 views

CVE-2023-36702

Microsoft DirectMusic Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00273EPSS

CVE•added 2023/10/10 6:15 p.m.•397 views

CVE-2023-36589

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

7.3CVSS8.4AI score0.00423EPSS

CVE•added 2023/10/10 6:15 p.m.•397 views

CVE-2023-36602

Windows TCP/IP Denial of Service Vulnerability

7.5CVSS8.4AI score0.03748EPSS

CVE•added 2023/10/10 6:15 p.m.•397 views

CVE-2023-36711

Windows Runtime C++ Template Library Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00108EPSS

CVE•added 2023/10/10 6:15 p.m.•395 views

CVE-2023-36567

Windows Deployment Services Information Disclosure Vulnerability

7.5CVSS8.2AI score0.05289EPSS

CVE•added 2023/10/10 6:15 p.m.•395 views

CVE-2023-41767

Layer 2 Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS9AI score0.00218EPSS

CVE•added 2023/10/10 6:15 p.m.•392 views

CVE-2023-36436

Windows MSHTML Platform Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00298EPSS

CVE•added 2023/10/10 6:15 p.m.•392 views

CVE-2023-36596

Remote Procedure Call Information Disclosure Vulnerability

7.5CVSS8.3AI score0.00303EPSS

CVE•added 2023/10/10 6:15 p.m.•389 views

CVE-2023-36571

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

7.3CVSS8.4AI score0.00423EPSS

Total number of security vulnerabilities2649