Windows Server 2016@1709 Security Vulnerabilities and Issues — Page 3 of Windows Server 2016@1709 CVE List

Lucene search

MicrosoftWindows Server 20161709

305 matches found

CVE•added 2018/11/14 1:29 a.m.•130 views

CVE-2018-8565

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka "Win32k Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2...

5.5CVSS6.4AI score0.0263EPSS

CVE•added 2019/01/08 9:29 p.m.•130 views

CVE-2019-0576

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka "Jet Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Se...

9.3CVSS8AI score0.35437EPSS

CVE•added 2019/03/06 12:0 a.m.•130 views

CVE-2019-0597

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0595, CVE-2019-0596, CVE-2019-0598, CVE-2019-0599, CVE-2019-0625.

9.3CVSS8.4AI score0.32161EPSS

CVE•added 2019/04/09 9:29 p.m.•130 views

CVE-2019-0851

9.3CVSS8.4AI score0.2548EPSS

CVE•added 2018/03/14 5:29 p.m.•129 views

CVE-2018-0868

Windows Installer in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how input is ...

7CVSS6.1AI score0.00381EPSS

CVE•added 2018/09/13 12:29 a.m.•129 views

CVE-2018-8442

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka "Windows Kernel Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Serv...

5.5CVSS5.7AI score0.04881EPSS

CVE•added 2019/03/06 12:0 a.m.•129 views

CVE-2019-0660

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2018/02/15 2:29 a.m.•128 views

CVE-2018-0842

Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allow an elevation of privilege vulnerability due to how objects in memory are handled, aka "Window...

7CVSS6.8AI score0.00825EPSS

CVE•added 2018/09/13 12:29 a.m.•128 views

CVE-2018-8468

An elevation of privilege vulnerability exists when Windows, allowing a sandbox escape, aka "Windows Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008...

4.7CVSS5.8AI score0.05739EPSS

CVE•added 2018/11/14 1:29 a.m.•128 views

CVE-2018-8584

An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows Server 2019, Windows 10 Servers.

7.8CVSS6.3AI score0.04355EPSS

CVE•added 2019/01/08 9:29 p.m.•128 views

CVE-2019-0536

5.5CVSS5.6AI score0.01077EPSS

CVE•added 2019/01/08 9:29 p.m.•128 views

CVE-2019-0581

9.3CVSS8AI score0.35437EPSS

CVE•added 2019/03/06 12:0 a.m.•128 views

CVE-2019-0602

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0660, CVE-2019-0664.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/03/06 12:0 a.m.•128 views

CVE-2019-0616

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/04/09 2:29 a.m.•128 views

CVE-2019-0756

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'.

9.3CVSS8.8AI score0.16363EPSS

CVE•added 2019/04/09 9:29 p.m.•128 views

CVE-2019-0802

6.5CVSS6.7AI score0.22134EPSS

CVE•added 2019/04/09 9:29 p.m.•128 views

CVE-2019-0814

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0848.

5.5CVSS6AI score0.00996EPSS

CVE•added 2019/04/09 9:29 p.m.•128 views

CVE-2019-0839

An information disclosure vulnerability exists when the Terminal Services component improperly discloses the contents of its memory, aka 'Windows Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0838.

4.4CVSS5.7AI score0.00695EPSS

CVE•added 2018/03/14 5:29 p.m.•127 views

CVE-2018-0817

The Windows Graphics Device Interface (GDI) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerab...

7CVSS6.2AI score0.00718EPSS

CVE•added 2018/08/15 5:29 p.m.•127 views

CVE-2018-8398

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8....

6.5CVSS5.7AI score0.14286EPSS

CVE•added 2019/04/09 2:29 a.m.•127 views

CVE-2019-0767

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory.To exploit this vulnerability, an authenticated attacker could run a specially crafted application, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from C...

5.5CVSS5.5AI score0.00908EPSS

CVE•added 2019/04/09 3:29 a.m.•127 views

CVE-2019-0772

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0665, CVE-2019-0666, CVE-2019-0667.

9.3CVSS7.9AI score0.44646EPSS

CVE•added 2019/04/09 3:29 a.m.•127 views

CVE-2019-0782

An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0702, CVE-2019-0755, CVE-2019-0767, CVE-2019-0775.

5.5CVSS5.5AI score0.00908EPSS

CVE•added 2019/04/09 9:29 p.m.•127 views

CVE-2019-0791

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0790, CVE-2019-0792, CVE-2019-0793, CVE-2019-0795.

9.3CVSS8.8AI score0.28171EPSS

CVE•added 2019/04/09 9:29 p.m.•127 views

CVE-2019-0793

9.3CVSS8.8AI score0.28171EPSS

CVE•added 2019/06/12 2:29 p.m.•127 views

CVE-2019-1021

An elevation of privilege exists in Windows Audio Service. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.To exploit the vulnerability, an attacker could run a specially crafted application that could exploit the vulnerability. This vulner...

7.8CVSS8.2AI score0.00299EPSS

CVE•added 2018/04/12 1:29 a.m.•126 views

CVE-2018-1013

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Win...

9.3CVSS7.3AI score0.57782EPSS

CVE•added 2018/11/14 1:29 a.m.•126 views

CVE-2018-8485

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Server 2016, Windows 8.1, Windows 10, Windows ...

7.8CVSS6.5AI score0.00512EPSS

CVE•added 2019/03/06 12:0 a.m.•126 views

CVE-2019-0598

9.3CVSS8.4AI score0.32161EPSS

CVE•added 2019/03/06 12:0 a.m.•126 views

CVE-2019-0619

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2019/03/06 12:0 a.m.•126 views

CVE-2019-0635

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Information Disclosure Vulnerability'.

6.2CVSS6.8AI score0.00573EPSS

CVE•added 2019/03/06 12:0 a.m.•126 views

CVE-2019-0637

A security feature bypass vulnerability exists when Windows Defender Firewall incorrectly applies firewall profiles to cellular network connections, aka 'Windows Defender Firewall Security Feature Bypass Vulnerability'.

7.5CVSS8.3AI score0.11945EPSS

CVE•added 2019/04/09 12:29 a.m.•126 views

CVE-2019-0694

An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, CVE-2019-0692, CVE-2019-0693.

7.8CVSS7.8AI score0.004EPSS

CVE•added 2019/04/09 2:29 a.m.•126 views

CVE-2019-0759

An information disclosure vulnerability exists when the Windows Print Spooler does not properly handle objects in memory, aka 'Windows Print Spooler Information Disclosure Vulnerability'.

5.5CVSS6.2AI score0.00401EPSS

CVE•added 2019/04/09 9:29 p.m.•126 views

CVE-2019-0790

9.3CVSS8.8AI score0.28171EPSS

CVE•added 2018/01/04 2:29 p.m.•125 views

CVE-2018-0752

The Windows Kernel API in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Kernel API enforces permissions, aka "Windows Elevation of...

7.8CVSS5.7AI score0.05416EPSS

CVE•added 2018/01/04 2:29 p.m.•125 views

CVE-2018-0753

Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allow a denial of service vulnerability due to the way objects are handled in memory, aka "Windows IPSec Denial of Service Vulnerability".

7.1CVSS5.4AI score0.19064EPSS

CVE•added 2018/03/14 5:29 p.m.•125 views

CVE-2018-0816

7CVSS6.2AI score0.00718EPSS

CVE•added 2018/09/13 12:29 a.m.•125 views

CVE-2018-0965

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka "Windows Hyper-V Remote Code Execution Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers. Th...

8.4CVSS7.9AI score0.00751EPSS

CVE•added 2018/04/12 1:29 a.m.•125 views

CVE-2018-1015

9.3CVSS7.3AI score0.57782EPSS

CVE•added 2019/01/08 9:29 p.m.•125 views

CVE-2019-0549

5.5CVSS5.6AI score0.01077EPSS

CVE•added 2019/01/08 9:29 p.m.•125 views

CVE-2019-0554

5.5CVSS5.6AI score0.01077EPSS

CVE•added 2019/04/08 11:29 p.m.•125 views

CVE-2019-0617

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'.

9.3CVSS8.4AI score0.25636EPSS

CVE•added 2019/03/06 12:0 a.m.•125 views

CVE-2019-0632

A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard, aka 'Windows Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0627, CVE-2019-0631.

7.8CVSS8.3AI score0.00202EPSS

CVE•added 2019/04/09 9:29 p.m.•125 views

CVE-2019-0842

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'.

9.3CVSS8.8AI score0.20489EPSS

CVE•added 2018/01/04 2:29 p.m.•124 views

CVE-2018-0745

The Windows kernel in Windows 10 version 1703. Windows 10 version 1709, and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are handled in memory, aka "Windows Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0746 and CVE-...

4.7CVSS4.6AI score0.06726EPSS

CVE•added 2018/09/13 12:29 a.m.•124 views

CVE-2018-8271

An information disclosure vulnerability exists in Windows when the Windows bowser.sys kernel-mode driver fails to properly handle objects in memory, aka "Windows Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Serve...

5.5CVSS5.7AI score0.04235EPSS

CVE•added 2018/11/14 1:29 a.m.•124 views

CVE-2018-8450

A remote code execution vulnerability exists when Windows Search handles objects in memory, aka "Windows Search Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows S...

9CVSS7.7AI score0.16179EPSS

CVE•added 2019/04/09 12:29 a.m.•124 views

CVE-2019-0702

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0755, CVE-2019-0767, CVE-2019-0775, CVE-2019-0782.

5.5CVSS5.6AI score0.00908EPSS

CVE•added 2019/04/09 9:29 p.m.•124 views

CVE-2019-0840

5.5CVSS6.1AI score0.00978EPSS

Total number of security vulnerabilities305