Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftWindows Server 2019

485 matches found

cve
cveadded 2025/04/08 6:15 p.m.96 views

CVE-2025-27487

Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network.

8CVSS8.1AI score0.00241EPSS
cve
cveadded 2025/04/08 6:15 p.m.95 views

CVE-2025-27478

Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.

7CVSS7.6AI score0.0003EPSS
cve
cveadded 2025/04/08 6:16 p.m.95 views

CVE-2025-27491

Use after free in Windows Hyper-V allows an authorized attacker to execute code over a network.

7.1CVSS7.9AI score0.00303EPSS
cve
cveadded 2025/06/10 5:21 p.m.95 views

CVE-2025-32710

Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.

8.1CVSS8.5AI score0.00116EPSS
cve
cveadded 2025/04/08 6:15 p.m.94 views

CVE-2025-26635

Weak authentication in Windows Hello allows an authorized attacker to bypass a security feature over a network.

6.5CVSS7.4AI score0.00065EPSS
cve
cveadded 2025/04/08 6:16 p.m.94 views

CVE-2025-27727

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00162EPSS
cve
cveadded 2025/01/14 6:15 p.m.93 views

CVE-2025-21261

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00149EPSS
cve
cveadded 2025/01/14 6:15 p.m.93 views

CVE-2025-21285

Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

7.5CVSS7.4AI score0.03248EPSS
cve
cveadded 2025/02/11 6:15 p.m.93 views

CVE-2025-21373

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00159EPSS
cve
cveadded 2025/01/14 6:16 p.m.93 views

CVE-2025-21409

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.027EPSS
cve
cveadded 2025/04/08 6:15 p.m.93 views

CVE-2025-26648

Sensitive data storage in improperly locked memory in Windows Kernel allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00044EPSS
cve
cveadded 2025/06/10 5:22 p.m.93 views

CVE-2025-32720

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00109EPSS
cve
cveadded 2025/02/11 6:15 p.m.92 views

CVE-2025-21375

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00169EPSS
cve
cveadded 2025/04/08 6:16 p.m.92 views

CVE-2025-29809

Insecure storage of sensitive information in Windows Kerberos allows an authorized attacker to bypass a security feature locally.

7.1CVSS6.8AI score0.00269EPSS
cve
cveadded 2025/02/11 6:15 p.m.91 views

CVE-2025-21200

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00322EPSS
cve
cveadded 2025/01/14 6:15 p.m.91 views

CVE-2025-21232

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS
cve
cveadded 2025/01/14 6:15 p.m.91 views

CVE-2025-21280

Windows Virtual Trusted Platform Module Denial of Service Vulnerability

5.5CVSS5.5AI score0.00196EPSS
cve
cveadded 2025/03/11 5:16 p.m.91 views

CVE-2025-24045

Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network.

8.1CVSS8.2AI score0.00285EPSS
cve
cveadded 2025/03/11 5:16 p.m.91 views

CVE-2025-24061

Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature locally.

7.8CVSS7.5AI score0.00198EPSS
cve
cveadded 2025/03/11 5:16 p.m.91 views

CVE-2025-25008

Improper link resolution before file access ('link following') in Microsoft Windows allows an authorized attacker to elevate privileges locally.

7.1CVSS6.8AI score0.00129EPSS
cve
cveadded 2025/01/14 6:15 p.m.90 views

CVE-2025-21219

MapUrlToZone Security Feature Bypass Vulnerability

4.3CVSS4.6AI score0.00153EPSS
cve
cveadded 2025/01/14 6:15 p.m.90 views

CVE-2025-21229

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS
cve
cveadded 2025/03/11 5:16 p.m.89 views

CVE-2025-21180

Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.0015EPSS
cve
cveadded 2025/01/14 6:15 p.m.89 views

CVE-2025-21225

Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability

5.9CVSS5.8AI score0.0025EPSS
cve
cveadded 2025/01/14 6:15 p.m.89 views

CVE-2025-21328

MapUrlToZone Security Feature Bypass Vulnerability

4.3CVSS4.6AI score0.00103EPSS
cve
cveadded 2025/02/11 6:15 p.m.89 views

CVE-2025-21406

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00322EPSS
cve
cveadded 2025/04/08 6:15 p.m.89 views

CVE-2025-24060

Improper input validation in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00086EPSS
cve
cveadded 2025/03/11 5:16 p.m.89 views

CVE-2025-24064

Use after free in DNS Server allows an unauthorized attacker to execute code over a network.

8.1CVSS8.5AI score0.00472EPSS
cve
cveadded 2025/04/08 6:16 p.m.89 views

CVE-2025-27730

Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally.

7.8CVSS7.5AI score0.00057EPSS
cve
cveadded 2025/05/13 5:15 p.m.89 views

CVE-2025-29831

Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.

7.5CVSS8AI score0.00208EPSS
cve
cveadded 2025/04/08 6:15 p.m.88 views

CVE-2025-21221

Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.

8.8CVSS8AI score0.00059EPSS
cve
cveadded 2025/01/14 6:15 p.m.88 views

CVE-2025-21338

GDI+ Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00266EPSS
cve
cveadded 2025/02/11 6:15 p.m.88 views

CVE-2025-21358

Windows Core Messaging Elevation of Privileges Vulnerability

7.8CVSS8AI score0.00178EPSS
cve
cveadded 2025/02/11 6:15 p.m.88 views

CVE-2025-21407

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00322EPSS
cve
cveadded 2025/03/11 5:16 p.m.88 views

CVE-2025-24055

Out-of-bounds read in Windows USB Video Driver allows an authorized attacker to disclose information with a physical attack.

4.3CVSS4.1AI score0.00097EPSS
cve
cveadded 2025/03/11 5:16 p.m.88 views

CVE-2025-24996

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS6.9AI score0.00209EPSS
cve
cveadded 2025/04/08 6:15 p.m.88 views

CVE-2025-26668

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

7.5CVSS8.1AI score0.00043EPSS
cve
cveadded 2025/04/08 6:15 p.m.88 views

CVE-2025-27470

Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.

7.5CVSS7AI score0.09541EPSS
cve
cveadded 2025/04/08 6:15 p.m.88 views

CVE-2025-27473

Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.

7.5CVSS7AI score0.1074EPSS
cve
cveadded 2025/02/11 6:15 p.m.87 views

CVE-2025-21216

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00144EPSS
cve
cveadded 2025/01/14 6:15 p.m.87 views

CVE-2025-21292

Windows Search Service Elevation of Privilege Vulnerability

8.8CVSS8.8AI score0.00193EPSS
cve
cveadded 2025/01/14 6:15 p.m.87 views

CVE-2025-21319

Windows Kernel Memory Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00104EPSS
cve
cveadded 2025/04/08 6:15 p.m.87 views

CVE-2025-26672

Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.8AI score0.0005EPSS
cve
cveadded 2025/04/08 6:15 p.m.87 views

CVE-2025-27471

Sensitive data storage in improperly locked memory in Microsoft Streaming Service allows an unauthorized attacker to deny service over a network.

5.9CVSS6.9AI score0.00037EPSS
cve
cveadded 2025/04/08 6:16 p.m.87 views

CVE-2025-27732

Sensitive data storage in improperly locked memory in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

7CVSS7.1AI score0.00023EPSS
cve
cveadded 2025/04/08 6:16 p.m.87 views

CVE-2025-27739

Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.

7.8CVSS7.1AI score0.00049EPSS
cve
cveadded 2025/01/14 6:15 p.m.86 views

CVE-2025-21233

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.0052EPSS
cve
cveadded 2025/03/11 5:16 p.m.86 views

CVE-2025-21247

Improper resolution of path equivalence in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network.

4.3CVSS4.7AI score0.00205EPSS
cve
cveadded 2025/01/14 6:15 p.m.86 views

CVE-2025-21309

Windows Remote Desktop Services Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.00459EPSS
cve
cveadded 2025/01/14 6:15 p.m.86 views

CVE-2025-21316

Windows Kernel Memory Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00178EPSS
Total number of security vulnerabilities485