Windows Server 2016@- Security Vulnerabilities and Issues — Page 30 of Windows Server 2016@- CVE List

Lucene search

MicrosoftWindows Server 2016-

2649 matches found

CVE•added 2018/03/14 5:29 p.m.•110 views

CVE-2018-0880

The Desktop Bridge in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how the virtual registry is managed, aka "Windows Desktop Bridge Elevation of Privilege Vulnerability". This CVE is unique from CVE-2018-...

7CVSS7AI score0.07765EPSS

CVE•added 2018/09/13 12:29 a.m.•110 views

CVE-2018-8443

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

5.5CVSS5.7AI score0.04881EPSS

CVE•added 2018/09/13 12:29 a.m.•110 views

CVE-2018-8446

5.5CVSS5.7AI score0.04881EPSS

CVE•added 2019/06/12 2:29 p.m.•110 views

CVE-2019-1012

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

6.5CVSS5.6AI score0.07622EPSS

CVE•added 2019/09/11 10:15 p.m.•110 views

CVE-2019-1243

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1241, CVE-2019-1242, CVE-2019-1246, CVE-2019-1247, CVE-2019-1248,...

9.3CVSS8.5AI score0.35463EPSS

CVE•added 2019/09/11 10:15 p.m.•110 views

CVE-2019-1290

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-0788, CVE-2019-1291.

9.3CVSS8.8AI score0.32912EPSS

CVE•added 2020/02/11 10:15 p.m.•110 views

CVE-2020-0731

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0719, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0723, CVE...

7.8CVSS7.7AI score0.00549EPSS

CVE•added 2020/03/12 4:15 p.m.•110 views

CVE-2020-0822

An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations, aka 'Windows Language Pack Installer Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00511EPSS

CVE•added 2020/04/15 3:15 p.m.•110 views

CVE-2020-0889

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992, CVE-2020-0994,...

9.3CVSS8AI score0.33652EPSS

CVE•added 2020/09/11 5:15 p.m.•110 views

CVE-2020-1285

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or dele...

9.3CVSS8.7AI score0.09124EPSS

CVE•added 2020/06/09 8:15 p.m.•110 views

CVE-2020-1317

An elevation of privilege vulnerability exists when Group Policy improperly checks access, aka 'Group Policy Elevation of Privilege Vulnerability'.

9CVSS8.2AI score0.13405EPSS

CVE•added 2020/08/17 7:15 p.m.•110 views

CVE-2020-1528

An elevation of privilege vulnerability exists when the Windows Radio Manager API improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The securi...

7.8CVSS8.1AI score0.11602EPSS

CVE•added 2020/08/17 7:15 p.m.•110 views

CVE-2020-1549

An elevation of privilege vulnerability exists when the Windows CDP User Components improperly handle memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The secur...

7.8CVSS8.1AI score0.00505EPSS

CVE•added 2020/12/10 12:15 a.m.•110 views

CVE-2020-16959

Windows Backup Engine Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.0137EPSS

CVE•added 2020/11/11 7:15 a.m.•110 views

CVE-2020-17044

Windows Remote Access Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.0452EPSS

CVE•added 2021/01/12 8:15 p.m.•110 views

CVE-2021-1651

Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00462EPSS

CVE•added 2021/01/12 8:15 p.m.•110 views

CVE-2021-1700

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9CVSS8.3AI score0.07046EPSS

CVE•added 2021/04/13 8:15 p.m.•110 views

CVE-2021-28331

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS

CVE•added 2021/04/13 8:15 p.m.•110 views

CVE-2021-28343

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS

CVE•added 2021/07/14 6:15 p.m.•110 views

CVE-2021-34525

Windows DNS Server Remote Code Execution Vulnerability

8.8CVSS8.3AI score0.0364EPSS

CVE•added 2021/09/15 12:15 p.m.•110 views

CVE-2021-36962

Windows Installer Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00478EPSS

CVE•added 2022/06/15 10:15 p.m.•110 views

CVE-2022-30145

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

7.5CVSS8.2AI score0.0438EPSS

CVE•added 2022/09/13 7:15 p.m.•110 views

CVE-2022-35831

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS7.1AI score0.00204EPSS

CVE•added 2022/09/13 7:15 p.m.•110 views

CVE-2022-37959

Network Device Enrollment Service (NDES) Security Feature Bypass Vulnerability

6.5CVSS7.8AI score0.04294EPSS

CVE•added 2022/10/11 7:15 p.m.•110 views

CVE-2022-38021

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

7CVSS7.6AI score0.00109EPSS

CVE•added 2022/12/13 7:15 p.m.•110 views

CVE-2022-41121

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00179EPSS

CVE•added 2023/03/14 5:15 p.m.•110 views

CVE-2023-24857

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

6.5CVSS6.3AI score0.04108EPSS

CVE•added 2023/04/11 9:15 p.m.•110 views

CVE-2023-28236

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00153EPSS

CVE•added 2023/04/11 9:15 p.m.•110 views

CVE-2023-28247

Windows Network File System Information Disclosure Vulnerability

7.5CVSS7.3AI score0.03478EPSS

CVE•added 2023/04/11 9:15 p.m.•110 views

CVE-2023-28254

Windows DNS Server Remote Code Execution Vulnerability

7.2CVSS7.2AI score0.01EPSS

CVE•added 2023/07/11 6:15 p.m.•110 views

CVE-2023-32038

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.00379EPSS

CVE•added 2018/02/15 2:29 a.m.•109 views

CVE-2018-0821

AppContainer in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way constrained impersonations are handled, aka "Windows AppContainer Elevation Of Privilege Vulnerability".

7CVSS6.7AI score0.00669EPSS

CVE•added 2018/03/14 5:29 p.m.•109 views

CVE-2018-0983

Windows Storage Services in Windows 10 versions 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Storage Services Elevation of Privilege Vulnerability".

7CVSS7.1AI score0.00718EPSS

CVE•added 2019/08/14 9:15 p.m.•109 views

CVE-2019-0718

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the vulnerabi...

5.8CVSS6.9AI score0.01591EPSS

CVE•added 2019/05/16 7:29 p.m.•109 views

CVE-2019-0898

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895,...

9.3CVSS8.1AI score0.29592EPSS

CVE•added 2019/06/12 2:29 p.m.•109 views

CVE-2019-0908

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS8AI score0.07323EPSS

CVE•added 2019/06/12 2:29 p.m.•109 views

CVE-2019-1014

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; o...

7.8CVSS7.8AI score0.00167EPSS

CVE•added 2019/08/14 9:15 p.m.•109 views

CVE-2019-1164

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new ...

7.8CVSS8.6AI score0.00651EPSS

CVE•added 2019/08/14 9:15 p.m.•109 views

CVE-2019-1183

This information is being revised to indicate that this CVE (CVE-2019-1183) is fully mitigated by the security updates for the vulnerability discussed in CVE-2019-1194. No update is required.

9.3CVSS8.4AI score0.11939EPSS

CVE•added 2019/12/10 10:15 p.m.•109 views

CVE-2019-1484

A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'.

7.8CVSS8.3AI score0.26234EPSS

CVE•added 2020/02/11 10:15 p.m.•109 views

CVE-2020-0657

An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.00511EPSS

CVE•added 2020/02/11 10:15 p.m.•109 views

CVE-2020-0707

An elevation of privilege vulnerability exists when the Windows IME improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows IME Elevation of Privilege Vulnerability'.

7.8CVSS8.2AI score0.00463EPSS

CVE•added 2020/08/17 7:15 p.m.•109 views

CVE-2020-1515

An elevation of privilege vulnerability exists when the Windows Telephony Server improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The securit...

7.8CVSS8.5AI score0.00387EPSS

CVE•added 2020/08/17 7:15 p.m.•109 views

CVE-2020-1527

An elevation of privilege vulnerability exists when the Windows Custom Protocol Engine improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The s...

7.8CVSS8.1AI score0.00514EPSS

CVE•added 2021/01/12 8:15 p.m.•109 views

CVE-2021-1709

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00275EPSS

CVE•added 2021/03/11 4:15 p.m.•109 views

CVE-2021-26895

Windows DNS Server Remote Code Execution Vulnerability

10CVSS9.6AI score0.09935EPSS

CVE•added 2021/06/08 11:15 p.m.•109 views

CVE-2021-31970

Windows TCP/IP Driver Security Feature Bypass Vulnerability