Windows Server 2016 Security Vulnerabilities and Issues — Windows Server 2016 CVE List

Lucene search

MicrosoftWindows Server 2016

607 matches found

cve•added 2022/11/09 10:15 p.m.•778 views

CVE-2022-41091

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS7AI score0.06912EPSS

In wild

cve•added 2022/11/09 10:15 p.m.•772 views

CVE-2022-41049

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS6.8AI score0.28597EPSS

In wild

cve•added 2018/05/22 12:29 p.m.•763 views

CVE-2018-3639

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store ...

5.5CVSS5.9AI score0.46737EPSS

In wildWeb

cve•added 2022/12/13 7:15 p.m.•720 views

CVE-2022-44698

Windows SmartScreen Security Feature Bypass Vulnerability

5.4CVSS6.8AI score0.88727EPSS

In wild

cve•added 2023/09/12 5:15 p.m.•680 views

CVE-2023-36803

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.5AI score0.00692EPSS

cve•added 2023/09/12 5:15 p.m.•656 views

CVE-2023-38160

Windows TCP/IP Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00221EPSS

cve•added 2023/10/10 6:15 p.m.•631 views

CVE-2023-36584

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS7.3AI score0.20094EPSS

In wild

cve•added 2019/09/03 6:15 p.m.•606 views

CVE-2019-1125

An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacker who successfully exploited the vulnerability could read privileged data across trust boundaries.To exploit this vulnerability, an attacker would have to log on to an a...

5.6CVSS6.8AI score0.13431EPSS

cve•added 2023/09/12 5:15 p.m.•493 views

CVE-2023-36801

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6AI score0.00248EPSS

cve•added 2023/09/12 5:15 p.m.•444 views

CVE-2023-38152

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6AI score0.0239EPSS

cve•added 2023/09/12 5:15 p.m.•442 views

CVE-2023-38140

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.5AI score0.00361EPSS

cve•added 2023/10/10 6:15 p.m.•385 views

CVE-2023-36576

Windows Kernel Information Disclosure Vulnerability

5.5CVSS5.9AI score0.00764EPSS

cve•added 2023/10/10 6:15 p.m.•367 views

CVE-2023-36713

Windows Common Log File System Driver Information Disclosure Vulnerability

5.5CVSS7AI score0.02083EPSS

cve•added 2025/05/13 5:15 p.m.•365 views

CVE-2025-29974

Integer underflow (wrap or wraparound) in Windows Kernel allows an unauthorized attacker to disclose information over an adjacent network.

5.7CVSS5.6AI score0.00087EPSS

cve•added 2022/03/09 5:15 p.m.•360 views

CVE-2022-24503

Remote Desktop Protocol Client Information Disclosure Vulnerability

5.4CVSS6.6AI score0.00778EPSS

cve•added 2025/05/13 5:16 p.m.•359 views

CVE-2025-30394

Sensitive data storage in improperly locked memory in Remote Desktop Gateway Service allows an unauthorized attacker to deny service over a network.

5.9CVSS5.7AI score0.00099EPSS

cve•added 2023/10/10 6:15 p.m.•358 views

CVE-2023-36724

Windows Power Management Service Information Disclosure Vulnerability

5.5CVSS7AI score0.00102EPSS

cve•added 2023/08/08 6:15 p.m.•335 views

CVE-2023-20588

A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.

5.5CVSS6.9AI score0.03997EPSS

cve•added 2025/06/10 5:22 p.m.•303 views

CVE-2025-33065

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS

cve•added 2024/03/12 5:15 p.m.•294 views

CVE-2024-21408

Windows Hyper-V Denial of Service Vulnerability

5.5CVSS6.8AI score0.00478EPSS

cve•added 2019/06/12 2:29 p.m.•273 views

CVE-2019-1040

A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection. An attacker who successfully exploited this vulnerability could gain the ability to downgrade NTLM security features.To exploit t...

5.9CVSS6.7AI score0.9061EPSS

In wildWeb

cve•added 2019/04/09 9:29 p.m.•271 views

CVE-2019-0796

An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0730, CVE-2019-0731, CVE-2019-0805, CVE-2019-0836, CVE-2019-0841.

5.5CVSS6.7AI score0.85917EPSS

In wild

cve•added 2023/02/28 6:15 p.m.•262 views

CVE-2023-1018

An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can read or access sensitive data stored in the TPM.

5.5CVSS6.5AI score0.00151EPSS

cve•added 2024/04/09 5:15 p.m.•259 views

CVE-2024-26207

Windows Remote Access Connection Manager Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00465EPSS

cve•added 2020/11/11 7:15 a.m.•257 views

CVE-2020-1599

Windows Spoofing Vulnerability

5.5CVSS7.2AI score0.05733EPSS

In wild

cve•added 2024/09/10 5:15 p.m.•254 views

CVE-2024-38217

Windows Mark of the Web Security Feature Bypass Vulnerability

5.4CVSS7.3AI score0.13392EPSS

In wild

cve•added 2024/08/13 6:15 p.m.•250 views

CVE-2024-38118

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

5.5CVSS5.2AI score0.00541EPSS

cve•added 2023/04/11 9:15 p.m.•246 views

CVE-2023-21729

Remote Procedure Call Runtime Information Disclosure Vulnerability

5.3CVSS4.9AI score0.01489EPSS

cve•added 2019/07/15 7:15 p.m.•243 views

CVE-2019-1073

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1071.

5.5CVSS5.8AI score0.00647EPSS

cve•added 2025/03/11 5:16 p.m.•240 views

CVE-2025-24991

Out-of-bounds read in Windows NTFS allows an authorized attacker to disclose information locally.

5.5CVSS6.5AI score0.02442EPSS

In wild

cve•added 2024/03/12 5:15 p.m.•235 views

CVE-2024-26174

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00346EPSS

cve•added 2024/02/13 6:15 p.m.•232 views

CVE-2024-21344

Windows Network Address Translation (NAT) Denial of Service Vulnerability

5.9CVSS6.2AI score0.00758EPSS

cve•added 2022/03/09 5:15 p.m.•224 views

CVE-2022-23281

Windows Common Log File System Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00475EPSS

cve•added 2024/03/12 5:15 p.m.•220 views

CVE-2024-26177

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00784EPSS

cve•added 2022/03/09 5:15 p.m.•218 views

CVE-2022-22010

Media Foundation Information Disclosure Vulnerability

5.5CVSS5.7AI score0.01124EPSS

cve•added 2024/03/12 5:15 p.m.•218 views

CVE-2024-26181

Windows Kernel Denial of Service Vulnerability

5.5CVSS6.7AI score0.00312EPSS

cve•added 2020/10/16 11:15 p.m.•211 views

CVE-2020-16938

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system.To exploit this vulnerability, an attacker would have to log on to ...

5.5CVSS5.5AI score0.10627EPSS

cve•added 2022/07/12 11:15 p.m.•209 views

CVE-2022-30223

Windows Hyper-V Information Disclosure Vulnerability

5.7CVSS6.6AI score0.03471EPSS

cve•added 2024/02/13 6:15 p.m.•208 views

CVE-2024-21377

Windows DNS Information Disclosure Vulnerability

5.5CVSS5.9AI score0.00177EPSS

cve•added 2022/03/09 5:15 p.m.•196 views

CVE-2022-23297

Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00325EPSS

cve•added 2024/02/13 6:15 p.m.•196 views

CVE-2024-21362

Windows Kernel Security Feature Bypass Vulnerability

5.5CVSS6.1AI score0.00087EPSS

cve•added 2021/10/13 1:15 a.m.•188 views

CVE-2021-41338

Windows AppContainer Firewall Rules Security Feature Bypass Vulnerability

5.5CVSS6.8AI score0.01268EPSS

cve•added 2024/01/09 6:15 p.m.•185 views

CVE-2024-21311

Windows Cryptographic Services Information Disclosure Vulnerability

5.5CVSS5.9AI score0.0016EPSS

cve•added 2017/07/11 9:29 p.m.•182 views

CVE-2017-8582

HTTP.sys in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure vulnerability when the component improperly handles objects in memor...

5.9CVSS5.7AI score0.12553EPSS

cve•added 2023/11/14 6:15 p.m.•182 views

CVE-2023-36428

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

5.5CVSS7AI score0.00169EPSS

cve•added 2021/02/25 11:15 p.m.•180 views

CVE-2021-24084

Windows Mobile Device Management Information Disclosure Vulnerability

5.5CVSS5.5AI score0.06294EPSS

cve•added 2024/01/09 6:15 p.m.•180 views

CVE-2024-20694

Windows CoreMessaging Information Disclosure Vulnerability

5.5CVSS5.9AI score0.00521EPSS

cve•added 2019/07/15 7:15 p.m.•179 views

CVE-2019-1096

An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'.

5.5CVSS5.6AI score0.23126EPSS

cve•added 2022/06/15 10:15 p.m.•179 views

CVE-2022-30154

Microsoft File Server Shadow Copy Agent Service (RVSS) Elevation of Privilege Vulnerability

5.3CVSS6.9AI score0.00884EPSS

cve•added 2022/10/11 7:15 p.m.•174 views

CVE-2022-38043

Windows Security Support Provider Interface Information Disclosure Vulnerability

5.5CVSS6.6AI score0.00477EPSS

Total number of security vulnerabilities607