Windows Server 2016@- Security Vulnerabilities and Issues — Page 31 of Windows Server 2016@- CVE List

Lucene search

MicrosoftWindows Server 2016-

2649 matches found

CVE•added 2019/08/14 9:15 p.m.•110 views

CVE-2019-1164

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new ...

7.8CVSS8.6AI score0.00663EPSS

CVE•added 2019/08/14 9:15 p.m.•110 views

CVE-2019-1183

This information is being revised to indicate that this CVE (CVE-2019-1183) is fully mitigated by the security updates for the vulnerability discussed in CVE-2019-1194. No update is required.

9.3CVSS8.4AI score0.11939EPSS

CVE•added 2019/12/10 10:15 p.m.•110 views

CVE-2019-1484

A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'.

7.8CVSS8.3AI score0.26234EPSS

CVE•added 2020/02/11 10:15 p.m.•110 views

CVE-2020-0670

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0668, CVE-2020-0669, CVE-2020-0671, CVE-2020-0672.

7.8CVSS7.5AI score0.81077EPSS

CVE•added 2020/02/11 10:15 p.m.•110 views

CVE-2020-0677

An information disclosure vulnerability exists in the Cryptography Next Generation (CNG) service when it fails to properly handle objects in memory.To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.The security update addre...

5.5CVSS5.2AI score0.00996EPSS

CVE•added 2020/02/11 10:15 p.m.•110 views

CVE-2020-0707

An elevation of privilege vulnerability exists when the Windows IME improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows IME Elevation of Privilege Vulnerability'.

7.8CVSS8.2AI score0.00463EPSS

CVE•added 2020/03/12 4:15 p.m.•110 views

CVE-2020-0788

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0877, CVE-2020-0887.

7.8CVSS7.6AI score0.13359EPSS

CVE•added 2020/08/17 7:15 p.m.•110 views

CVE-2020-1515

An elevation of privilege vulnerability exists when the Windows Telephony Server improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The securit...

7.8CVSS8.5AI score0.00387EPSS

CVE•added 2020/08/17 7:15 p.m.•110 views

CVE-2020-1527

An elevation of privilege vulnerability exists when the Windows Custom Protocol Engine improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The s...

7.8CVSS8.1AI score0.00514EPSS

CVE•added 2020/08/17 7:15 p.m.•110 views

CVE-2020-1533

An elevation of privilege vulnerability exists in the way that the Windows WalletService handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a specia...

7.8CVSS8.1AI score0.00387EPSS

CVE•added 2020/10/16 11:15 p.m.•110 views

CVE-2020-16885

An elevation of privilege vulnerability exists when the Windows Storage VSP Driver improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code execution on a victim syste...

7.8CVSS8.2AI score0.00438EPSS

CVE•added 2021/01/12 8:15 p.m.•110 views

CVE-2021-1704

Windows Hyper-V Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00646EPSS

CVE•added 2021/03/11 4:15 p.m.•110 views

CVE-2021-26895

Windows DNS Server Remote Code Execution Vulnerability

10CVSS9.6AI score0.09935EPSS

CVE•added 2021/06/08 11:15 p.m.•110 views

CVE-2021-31970

Windows TCP/IP Driver Security Feature Bypass Vulnerability

5.5CVSS7AI score0.00874EPSS

CVE•added 2021/06/08 11:15 p.m.•110 views

CVE-2021-31975

Server for NFS Information Disclosure Vulnerability

7.8CVSS8.1AI score0.14121EPSS

CVE•added 2021/07/14 6:15 p.m.•110 views

CVE-2021-34493

Windows Partition Management Driver Elevation of Privilege Vulnerability

6.7CVSS7.4AI score0.00222EPSS

CVE•added 2021/07/14 6:15 p.m.•110 views

CVE-2021-34507

Windows Remote Assistance Information Disclosure Vulnerability

6.5CVSS7.2AI score0.04042EPSS

CVE•added 2021/10/13 1:15 a.m.•110 views

CVE-2021-38663

Windows exFAT File System Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00442EPSS

CVE•added 2021/10/13 1:15 a.m.•110 views

CVE-2021-40443

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00441EPSS

CVE•added 2021/10/13 1:15 a.m.•110 views

CVE-2021-41347

Windows AppX Deployment Service Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00269EPSS

CVE•added 2022/01/11 9:15 p.m.•110 views

CVE-2022-21895

Windows User Profile Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00926EPSS

CVE•added 2022/05/10 9:15 p.m.•110 views

CVE-2022-24466

Windows Hyper-V Security Feature Bypass Vulnerability

4.1CVSS6.5AI score0.01318EPSS

CVE•added 2022/04/15 7:15 p.m.•110 views

CVE-2022-26792

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00373EPSS

CVE•added 2022/04/15 7:15 p.m.•110 views

CVE-2022-26794

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.0036EPSS

CVE•added 2022/09/13 7:15 p.m.•110 views

CVE-2022-38006

Windows Graphics Component Information Disclosure Vulnerability

6.5CVSS7.6AI score0.04116EPSS

CVE•added 2022/11/09 10:15 p.m.•110 views

CVE-2022-41102

Windows Overlay Filter Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00213EPSS

CVE•added 2023/01/10 10:15 p.m.•110 views

CVE-2023-21677

Windows Internet Key Exchange (IKE) Extension Denial of Service Vulnerability

7.5CVSS7.5AI score0.02613EPSS

CVE•added 2023/02/14 8:15 p.m.•110 views

CVE-2023-21688

NT OS Kernel Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.02645EPSS

CVE•added 2023/04/11 9:15 p.m.•110 views

CVE-2023-28268

Netlogon RPC Elevation of Privilege Vulnerability

8.1CVSS8AI score0.00942EPSS

CVE•added 2023/07/11 6:15 p.m.•110 views

CVE-2023-35313

Windows Online Certificate Status Protocol (OCSP) SnapIn Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.00508EPSS

CVE•added 2018/03/14 5:29 p.m.•109 views

CVE-2018-0897

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memo...

4.7CVSS4.7AI score0.11699EPSS

CVE•added 2018/06/14 12:29 p.m.•109 views

CVE-2018-8213

A remote code execution vulnerability exists when Windows improperly handles objects in memory, aka "Windows Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8210.

7.8CVSS8.2AI score0.14292EPSS

CVE•added 2019/05/16 7:29 p.m.•109 views

CVE-2019-0896

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895,...

9.3CVSS8.1AI score0.29592EPSS

CVE•added 2019/08/14 9:15 p.m.•109 views

CVE-2019-1156

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.An attacker could exploit this vulnerability by enticing a victim to open...

9.3CVSS7.9AI score0.09677EPSS

CVE•added 2019/09/11 10:15 p.m.•109 views

CVE-2019-1285

7.8CVSS8AI score0.01395EPSS

CVE•added 2019/10/10 2:15 p.m.•109 views

CVE-2019-1318

A spoofing vulnerability exists when Transport Layer Security (TLS) accesses non- Extended Master Secret (EMS) sessions, aka 'Microsoft Windows Transport Layer Security Spoofing Vulnerability'.

5.9CVSS7.1AI score0.05874EPSS

CVE•added 2020/01/14 11:15 p.m.•109 views

CVE-2020-0631

An elevation of privilege vulnerability exists in the way that the Windows Search Indexer handles objects in memory, aka 'Windows Search Indexer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0613, CVE-2020-0614, CVE-2020-0623, CVE-2020-0625, CVE-2020-0626, CVE-2020-0627...

7.8CVSS7.7AI score0.00511EPSS

CVE•added 2020/02/11 10:15 p.m.•109 views

CVE-2020-0681

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0734.

7.6CVSS8.2AI score0.26532EPSS

CVE•added 2020/03/12 4:15 p.m.•109 views

CVE-2020-0814

An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege Vulnerabi...

7.8CVSS6.5AI score0.00646EPSS

CVE•added 2020/08/17 7:15 p.m.•109 views

CVE-2020-1478

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights.There are multiple ways an attacke...

7.8CVSS8.6AI score0.13239EPSS

CVE•added 2020/08/17 7:15 p.m.•109 views

CVE-2020-1511

An elevation of privilege vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.An attacker could exploit this vulnerability by running a spe...

7.8CVSS8AI score0.00681EPSS

CVE•added 2020/10/16 11:15 p.m.•109 views

CVE-2020-16892

An elevation of privilege vulnerability exists in the way that the Windows kernel image handles objects in memory.An attacker who successfully exploited the vulnerability could execute code with elevated permissions.To exploit the vulnerability, a locally authenticated attacker could run a speciall...

7.8CVSS8AI score0.00717EPSS

CVE•added 2020/10/16 11:15 p.m.•109 views

CVE-2020-16894

A denial of service vulnerability exists when Windows Network Address Translation (NAT) on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash.To exploit the ...

7.7CVSS7.3AI score0.01755EPSS

CVE•added 2021/01/12 8:15 p.m.•109 views

CVE-2021-1656

TPM Device Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.02598EPSS

CVE•added 2021/04/13 8:15 p.m.•109 views

CVE-2021-27089

Microsoft Internet Messaging API Remote Code Execution Vulnerability

7.8CVSS8.2AI score0.0079EPSS

CVE•added 2021/07/14 6:15 p.m.•109 views

CVE-2021-33782

Windows Authenticode Spoofing Vulnerability