Windows Server 2016@- Security Vulnerabilities and Issues — Page 2 of Windows Server 2016@- CVE List

Lucene search

MicrosoftWindows Server 2016-

2649 matches found

CVE•added 2018/12/12 12:29 a.m.•967 views

CVE-2018-8611

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012...

7.8CVSS8.4AI score0.06406EPSS

CVE•added 2020/11/11 7:15 a.m.•936 views

CVE-2020-17049

A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD).To exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service t...

9CVSS6.8AI score0.20086EPSS

CVE•added 2023/03/14 5:15 p.m.•820 views

CVE-2023-24880

Windows SmartScreen Security Feature Bypass Vulnerability

4.4CVSS7AI score0.90812EPSS

CVE•added 2023/02/14 9:15 p.m.•797 views

CVE-2023-21823

Windows Graphics Component Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.03155EPSS

CVE•added 2019/11/12 7:15 p.m.•794 views

CVE-2019-1388

An elevation of privilege vulnerability exists in the Windows Certificate Dialog when it does not properly enforce user privileges, aka 'Windows Certificate Dialog Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.02925EPSS

CVE•added 2023/05/09 6:15 p.m.•743 views

CVE-2023-29336

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.8AI score0.75481EPSS

CVE•added 2018/05/22 12:29 p.m.•725 views

CVE-2018-3639

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store ...

5.5CVSS5.9AI score0.46737EPSS

CVE•added 2022/11/09 10:15 p.m.•714 views

CVE-2022-38023

Netlogon RPC Elevation of Privilege Vulnerability

8.1CVSS8.3AI score0.0032EPSS

CVE•added 2023/09/12 5:15 p.m.•679 views

CVE-2023-36803

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.5AI score0.00692EPSS

CVE•added 2023/09/12 5:15 p.m.•669 views

CVE-2023-38147

Windows Miracast Wireless Display Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00084EPSS

CVE•added 2023/02/14 8:15 p.m.•653 views

CVE-2023-23376

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.18778EPSS

CVE•added 2023/10/10 6:15 p.m.•645 views

CVE-2023-36434

Windows IIS Server Elevation of Privilege Vulnerability

9.8CVSS9.4AI score0.02926EPSS

CVE•added 2018/09/06 9:29 p.m.•637 views

CVE-2018-5391

The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation hav...

7.8CVSS7.7AI score0.01732EPSS

CVE•added 2022/04/15 7:15 p.m.•626 views

CVE-2022-26809

Remote Procedure Call Runtime Remote Code Execution Vulnerability

10CVSS9.6AI score0.92281EPSS

CVE•added 2023/05/09 6:15 p.m.•597 views

CVE-2023-24932

Secure Boot Security Feature Bypass Vulnerability

6.7CVSS6.9AI score0.00536EPSS

CVE•added 2019/09/03 6:15 p.m.•590 views

CVE-2019-1125

An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacker who successfully exploited the vulnerability could read privileged data across trust boundaries.To exploit this vulnerability, an attacker would have to log on to an a...

5.6CVSS6.8AI score0.15102EPSS

CVE•added 2022/05/10 9:15 p.m.•583 views

CVE-2022-29130

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.06808EPSS

CVE•added 2022/07/12 11:15 p.m.•576 views

CVE-2022-30209

Windows IIS Server Elevation of Privilege Vulnerability

7.4CVSS7.9AI score0.01421EPSS

CVE•added 2023/03/14 5:15 p.m.•553 views

CVE-2023-23415

Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.03976EPSS

CVE•added 2021/05/11 8:15 p.m.•521 views

CVE-2020-24588

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802...

3.5CVSS6.4AI score0.00848EPSS

CVE•added 2023/09/12 5:15 p.m.•515 views

CVE-2023-38162

DHCP Server Service Denial of Service Vulnerability

7.5CVSS7.5AI score0.0689EPSS

CVE•added 2023/07/11 6:15 p.m.•498 views

CVE-2023-32049

Windows SmartScreen Security Feature Bypass Vulnerability

8.8CVSS9.3AI score0.11974EPSS

CVE•added 2018/03/14 5:29 p.m.•494 views

CVE-2018-0886

The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows a remote code execu...

7.6CVSS7AI score0.91013EPSS

CVE•added 2023/09/12 5:15 p.m.•492 views

CVE-2023-36801

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6AI score0.00248EPSS

CVE•added 2023/07/11 6:15 p.m.•483 views

CVE-2023-32046

Windows MSHTML Platform Elevation of Privilege Vulnerability

7.8CVSS8.7AI score0.797EPSS

CVE•added 2023/09/12 5:15 p.m.•470 views

CVE-2023-38161

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00071EPSS

CVE•added 2022/11/09 10:15 p.m.•464 views

CVE-2022-37967

Windows Kerberos Elevation of Privilege Vulnerability

7.2CVSS7.9AI score0.02202EPSS

CVE•added 2023/04/11 9:15 p.m.•459 views

CVE-2023-28229

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

7CVSS7AI score0.07065EPSS

CVE•added 2023/09/12 5:15 p.m.•453 views

CVE-2023-36804

Windows GDI Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00071EPSS

CVE•added 2024/08/08 2:15 a.m.•453 views

CVE-2024-38202

SummaryMicrosoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security (VBS). However, an attack...

7.3CVSS8.2AI score0.03533EPSS

CVE•added 2020/01/14 11:15 p.m.•445 views

CVE-2020-0609

A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability'. This CVE ...

10CVSS9.7AI score0.87813EPSS

CVE•added 2023/09/12 5:15 p.m.•443 views

CVE-2023-38152

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6AI score0.0239EPSS

CVE•added 2019/08/14 9:15 p.m.•439 views

CVE-2019-1181

A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and requires no user interaction. A...

10CVSS9.7AI score0.73187EPSS

CVE•added 2023/10/10 6:15 p.m.•439 views

CVE-2023-35349

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.01159EPSS

CVE•added 2024/03/12 5:15 p.m.•426 views

CVE-2024-26169

Windows Error Reporting Service Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.26389EPSS

CVE•added 2023/10/10 6:15 p.m.•421 views

CVE-2023-36577

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability