Windows Server 2019 Security Vulnerabilities and Issues — Page 73 of Windows Server 2019 CVE List

5.5CVSS6.9AI score0.00266EPSS

CVE-2020-1084

A Denial Of Service vulnerability exists when Connected User Experiences and Telemetry Service fails to validate certain function values.An attacker who successfully exploited this vulnerability could deny dependent security feature functionality.To exploit this vulnerability, an attacker would hav...

7.8CVSS8.5AI score0.00274EPSS

CVE-2020-1142

An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, aka 'Windows GDI Elevation of Privilege Vulnerability'.

7.8CVSS7.7AI score0.12134EPSS

CVE-2020-1157

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1077, CVE-2020-1086, CVE-2020-1090, CVE-2020-1125, CVE-2020-1139, CVE-2020-1149, CVE-2020-115...

CVE-2020-1186

An elevation of privilege vulnerability exists when the Windows State Repository Service improperly handles objects in memory, aka 'Windows State Repository Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1124, CVE-2020-1131, CVE-2020-1134, CVE-2020-1144, CVE-2020...

CVE•added 2023/12/12 6:15 p.m.•68 views

CVE-2023-36012

DHCP Server Service Information Disclosure Vulnerability

5.3CVSS6.5AI score0.00667EPSS

CVE•added 2024/09/10 5:15 p.m.•68 views

CVE-2024-38252

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.00606EPSS

CVE•added 2024/12/12 2:4 a.m.•68 views

CVE-2024-49074

Windows Kernel-Mode Driver Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.0021EPSS

CVE•added 2024/12/12 2:4 a.m.•68 views

CVE-2024-49087

Windows Mobile Broadband Driver Information Disclosure Vulnerability

4.6CVSS4.5AI score0.00532EPSS

CVE•added 2024/12/12 2:4 a.m.•68 views

CVE-2024-49110

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

6.8CVSS6.6AI score0.00282EPSS

7.5CVSS7.5AI score0.014EPSS

CVE-2025-21207

Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability

7.5CVSS7.3AI score0.00733EPSS

CVE-2025-21220

Microsoft Message Queuing Information Disclosure Vulnerability

6.6CVSS6.5AI score0.00165EPSS

CVE-2025-21249

Windows Digital Media Elevation of Privilege Vulnerability

6.5CVSS6.3AI score0.00371EPSS

CVE-2025-21301

Windows Geolocation Service Information Disclosure Vulnerability

CVE•added 2025/01/14 6:16 p.m.•68 views

CVE-2025-21411

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.03423EPSS

CVE•added 2025/06/10 5:21 p.m.•68 views

CVE-2025-32715

Out-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.2AI score0.00074EPSS

CVE•added 2025/06/10 5:22 p.m.•68 views

CVE-2025-32722

Improper access control in Windows Storage Port Driver allows an authorized attacker to disclose information locally.

5.5CVSS5.3AI score0.00052EPSS

CVE•added 2025/06/10 5:22 p.m.•68 views

CVE-2025-33055

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS

CVE•added 2020/05/21 11:15 p.m.•67 views

CVE-2020-1086

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1077, CVE-2020-1090, CVE-2020-1125, CVE-2020-1139, CVE-2020-1149, CVE-2020-1151, CVE-2020-115...

7.8CVSS7.7AI score0.12134EPSS

CVE•added 2020/05/21 11:15 p.m.•67 views

CVE-2020-1189

CVE•added 2020/05/21 11:15 p.m.•67 views

CVE-2020-1190

CVE•added 2023/12/12 6:15 p.m.•67 views

CVE-2023-36005

Windows Telephony Server Elevation of Privilege Vulnerability

8.1CVSS8AI score0.08837EPSS

CVE•added 2023/12/12 6:15 p.m.•67 views

CVE-2023-36696

Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00108EPSS

CVE•added 2024/09/10 5:15 p.m.•67 views

CVE-2024-38234

Windows Networking Denial of Service Vulnerability

6.5CVSS7.8AI score0.00768EPSS

CVE•added 2024/10/08 6:15 p.m.•67 views

CVE-2024-43523

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.7AI score0.00445EPSS

CVE•added 2025/05/13 5:15 p.m.•67 views

CVE-2025-29969

Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attacker to execute code over a network.

7.5CVSS7.6AI score0.00118EPSS

CVE•added 2025/08/12 6:15 p.m.•67 views

CVE-2025-50154

Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS6.6AI score0.01079EPSS

CVE•added 2019/11/12 7:15 p.m.•66 views

CVE-2019-1416

An elevation of privilege vulnerability exists due to a race condition in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'.

7CVSS7.9AI score0.00218EPSS

CVE•added 2020/02/11 10:15 p.m.•66 views

CVE-2020-0743

An elevation of privilege vulnerability exists in the way that the Connected Devices Platform Service handles objects in memory, aka 'Connected Devices Platform Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0740, CVE-2020-0741, CVE-2020-0742, CVE-2020-0749, CVE-...

7.8CVSS7.7AI score0.00502EPSS

CVE•added 2021/03/11 4:15 p.m.•66 views

CVE-2021-26861

Windows Graphics Component Remote Code Execution Vulnerability

7.8CVSS8.8AI score0.0534EPSS

CVE•added 2024/10/08 6:15 p.m.•66 views

CVE-2024-43536

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.7AI score0.00358EPSS

CVE•added 2024/10/08 6:15 p.m.•66 views

CVE-2024-43542

Windows Mobile Broadband Driver Denial of Service Vulnerability

6.5CVSS7.3AI score0.00309EPSS

CVE•added 2024/12/12 2:4 a.m.•66 views

CVE-2024-49103

Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability

4.3CVSS4.4AI score0.00229EPSS

CVE•added 2025/01/14 6:15 p.m.•66 views

CVE-2025-21193

Active Directory Federation Server Spoofing Vulnerability

6.5CVSS6.5AI score0.00138EPSS

CVE•added 2025/01/14 6:15 p.m.•66 views

CVE-2025-21218

Windows Kerberos Denial of Service Vulnerability

7.5CVSS7.5AI score0.014EPSS

CVE•added 2025/05/13 5:15 p.m.•66 views

CVE-2025-29954

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

5.9CVSS5.7AI score0.00946EPSS

CVE•added 2020/05/21 11:15 p.m.•65 views

CVE-2020-1179

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-0963, CVE-2020-1141, CVE-2020-1145.

6.5CVSS6.5AI score0.31011EPSS

CVE•added 2024/10/08 6:15 p.m.•65 views

CVE-2024-43525

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.7AI score0.00388EPSS

CVE•added 2024/10/08 6:15 p.m.•65 views

CVE-2024-43581

Microsoft OpenSSH for Windows Remote Code Execution Vulnerability

7.1CVSS7.8AI score0.0336EPSS

CVE•added 2025/03/11 5:16 p.m.•65 views

CVE-2025-26634

Heap-based buffer overflow in Windows Core Messaging allows an authorized attacker to elevate privileges over a network.

7.5CVSS7.7AI score0.00216EPSS

CVE•added 2025/06/10 5:22 p.m.•65 views

CVE-2025-33050

Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.

7.5CVSS7.3AI score0.00177EPSS

CVE•added 2025/07/08 5:15 p.m.•65 views

CVE-2025-47981

Heap-based buffer overflow in Windows SPNEGO Extended Negotiation allows an unauthorized attacker to execute code over a network.

9.8CVSS7.4AI score0.00228EPSS

CVE•added 2020/03/12 4:15 p.m.•64 views

CVE-2020-0854

An elevation of privilege vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions, aka 'Windows Mobile Device Management Diagnostics Elevation of Privilege Vulnerability'.

7.1CVSS8.1AI score0.00371EPSS

CVE•added 2020/05/21 11:15 p.m.•64 views

CVE-2020-1090

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1077, CVE-2020-1086, CVE-2020-1125, CVE-2020-1139, CVE-2020-1149, CVE-2020-1151, CVE-2020-115...

7.8CVSS7.7AI score0.12134EPSS

CVE•added 2020/05/21 11:15 p.m.•64 views

CVE-2020-1134