Windows Server 2019 Security Vulnerabilities and Issues — Page 63 of Windows Server 2019 CVE List

A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka "Windows Hyper-V Remote Code Execution Vulnerability." This affects Windows 10 Servers, Windows 10, Windows Server 2019. Th...

8.4CVSS7.9AI score0.00598EPSS

CVE•added 2019/05/16 7:29 p.m.•83 views

CVE-2019-0886

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Information Disclosure Vulnerability'.

6.8CVSS6.2AI score0.00822EPSS

CVE•added 2019/08/14 9:15 p.m.•83 views

CVE-2019-1223

A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could cause the RDP service on the target system to stop responding.To e...

7.5CVSS7.6AI score0.185EPSS

CVE•added 2020/02/11 10:15 p.m.•83 views

CVE-2020-0680

An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory, aka 'Windows Function Discovery Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0679, CVE-2020-0682.

7.8CVSS8.1AI score0.00511EPSS

CVE•added 2020/03/12 4:15 p.m.•83 views

CVE-2020-0781

An elevation of privilege vulnerability exists when the Windows Universal Plug and Play (UPnP) service improperly handles objects in memory, aka 'Windows UPnP Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0783.

7.8CVSS8.5AI score0.00538EPSS

CVE•added 2020/03/12 4:15 p.m.•83 views

CVE-2020-0869

A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects in memory, aka 'Media Foundation Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0801, CVE-2020-0807, CVE-2020-0809.

8.8CVSS8.7AI score0.17369EPSS

CVE•added 2020/05/21 11:15 p.m.•83 views

CVE-2020-0909

A denial of service vulnerability exists when Hyper-V on a Windows Server fails to properly handle specially crafted network packets.To exploit the vulnerability, an attacker would send specially crafted network packets to the Hyper-V Server.The security update addresses the vulnerability by resolv...

7.5CVSS8.1AI score0.12525EPSS

CVE•added 2020/04/15 3:15 p.m.•83 views

CVE-2020-0993

A denial of service vulnerability exists in Windows DNS when it fails to properly handle queries, aka 'Windows DNS Denial of Service Vulnerability'.

6.8CVSS6.9AI score0.12348EPSS

CVE•added 2020/04/15 3:15 p.m.•83 views

CVE-2020-1005

An information disclosure vulnerability exists when the Microsoft Windows Graphics Component improperly handles objects in memory, aka 'Microsoft Graphics Component Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0982, CVE-2020-0987.

5.5CVSS6.2AI score0.0176EPSS

CVE•added 2020/04/15 3:15 p.m.•83 views

CVE-2020-1014

An elevation of privilege vulnerability exists in the Microsoft Windows Update Client when it does not properly handle privileges, aka 'Microsoft Windows Update Client Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.0047EPSS

CVE•added 2020/05/21 11:15 p.m.•83 views

CVE-2020-1116

An information disclosure vulnerability exists when the Windows Client Server Run-Time Subsystem (CSRSS) fails to properly handle objects in memory, aka 'Windows CSRSS Information Disclosure Vulnerability'.

5.5CVSS6.5AI score0.00505EPSS

CVE•added 2020/05/21 11:15 p.m.•83 views

CVE-2020-1123

A denial of service vulnerability exists when Connected User Experiences and Telemetry Service improperly handles file operations, aka 'Connected User Experiences and Telemetry Service Denial of Service Vulnerability'. This CVE ID is unique from CVE-2020-1084.

5.5CVSS6.9AI score0.00266EPSS

CVE•added 2020/06/09 8:15 p.m.•83 views

CVE-2020-1238

8.8CVSS8.3AI score0.27581EPSS

CVE•added 2020/06/09 8:15 p.m.•83 views

CVE-2020-1258

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Elevation of Privilege Vulnerability'.

7.2CVSS7.4AI score0.00798EPSS

CVE•added 2020/06/09 8:15 p.m.•83 views

CVE-2020-1283

A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.

7.1CVSS7AI score0.28225EPSS

CVE•added 2020/07/14 11:15 p.m.•83 views

CVE-2020-1344

An elevation of privilege vulnerability exists in the way that the Windows WalletService handles objects in memory, aka 'Windows WalletService Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1362, CVE-2020-1369.

7.8CVSS8.1AI score0.12863EPSS

CVE•added 2020/07/14 11:15 p.m.•83 views

CVE-2020-1385

An elevation of privilege vulnerability exists in the way that the Windows Credential Picker handles objects in memory, aka 'Windows Credential Picker Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00278EPSS

CVE•added 2020/07/14 11:15 p.m.•83 views

CVE-2020-1392

An elevation of privilege vulnerability exists when the Windows Delivery Optimization service improperly handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1388, CVE-2020-1394, CVE-2020-1395.

7.8CVSS8.1AI score0.00694EPSS

CVE•added 2020/07/14 11:15 p.m.•83 views

CVE-2020-1394

An elevation of privilege vulnerability exists in the way that the Windows Geolocation Framework handles objects in memory, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1388, CVE-2020-1392, CVE-2020-1395.

7.8CVSS8.1AI score0.00694EPSS

CVE•added 2020/07/14 11:15 p.m.•83 views

CVE-2020-1397

An information disclosure vulnerability exists in Windows when the Windows Imaging Component fails to properly handle objects in memory, aka 'Windows Imaging Component Information Disclosure Vulnerability'.

6.5CVSS7.1AI score0.2819EPSS

CVE•added 2020/07/14 11:15 p.m.•83 views

CVE-2020-1415

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1249, CVE-2020-1353, CVE-2020-1370, CVE-2020-1399, CVE-2020-1404, CVE-2020-1413, CVE-2020-141...

7.8CVSS7.7AI score0.00513EPSS

CVE•added 2020/10/16 11:15 p.m.•83 views

CVE-2020-16980

An elevation of privilege vulnerability exists when the Windows iSCSI Target Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.To exploit the vulnerability, an attacker would first need code execution on a victim sys...

7.8CVSS8.2AI score0.00524EPSS

CVE•added 2021/03/11 4:15 p.m.•83 views

CVE-2021-26898

Windows Event Tracing Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.0045EPSS

CVE•added 2021/04/13 8:15 p.m.•83 views

CVE-2021-28320

Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00681EPSS

CVE•added 2021/12/15 3:15 p.m.•83 views

CVE-2021-43216

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability