Windows Server 2019 Security Vulnerabilities and Issues — Page 74 of Windows Server 2019 CVE List

Lucene search

MicrosoftWindows Server 2019

3872 matches found

CVE•added 2024/10/08 6:15 p.m.•65 views

CVE-2024-43581

Microsoft OpenSSH for Windows Remote Code Execution Vulnerability

7.1CVSS7.8AI score0.0336EPSS

CVE•added 2025/03/11 5:16 p.m.•65 views

CVE-2025-26634

Heap-based buffer overflow in Windows Core Messaging allows an authorized attacker to elevate privileges over a network.

7.5CVSS7.7AI score0.00216EPSS

CVE•added 2020/03/12 4:15 p.m.•64 views

CVE-2020-0854

An elevation of privilege vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions, aka 'Windows Mobile Device Management Diagnostics Elevation of Privilege Vulnerability'.

7.1CVSS8.1AI score0.00371EPSS

CVE•added 2020/05/21 11:15 p.m.•64 views

CVE-2020-1090

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1077, CVE-2020-1086, CVE-2020-1125, CVE-2020-1139, CVE-2020-1149, CVE-2020-1151, CVE-2020-115...

7.8CVSS7.7AI score0.12134EPSS

CVE•added 2020/05/21 11:15 p.m.•64 views

CVE-2020-1134

An elevation of privilege vulnerability exists when the Windows State Repository Service improperly handles objects in memory, aka 'Windows State Repository Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1124, CVE-2020-1131, CVE-2020-1144, CVE-2020-1184, CVE-2020...

7.8CVSS7.7AI score0.00278EPSS

CVE•added 2024/10/08 6:15 p.m.•64 views

CVE-2024-43526

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.7AI score0.00387EPSS

CVE•added 2024/10/08 6:15 p.m.•64 views

CVE-2024-43593

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

8.8CVSS9.1AI score0.09988EPSS

CVE•added 2025/01/14 6:15 p.m.•64 views

CVE-2025-21193

Active Directory Federation Server Spoofing Vulnerability

6.5CVSS6.5AI score0.00104EPSS

CVE•added 2025/01/14 6:15 p.m.•64 views

CVE-2025-21218

Windows Kerberos Denial of Service Vulnerability

7.5CVSS7.5AI score0.01098EPSS

CVE•added 2025/01/14 6:15 p.m.•64 views

CVE-2025-21301

Windows Geolocation Service Information Disclosure Vulnerability

6.5CVSS6.3AI score0.00279EPSS

CVE•added 2025/05/13 5:15 p.m.•64 views

CVE-2025-29969

Time-of-check time-of-use (toctou) race condition in Windows Fundamentals allows an authorized attacker to execute code over a network.

7.5CVSS7.6AI score0.00073EPSS

CVE•added 2025/06/10 5:22 p.m.•64 views

CVE-2025-33050

Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.

7.5CVSS7.3AI score0.00177EPSS

CVE•added 2024/10/08 6:15 p.m.•63 views

CVE-2024-43543

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7.7AI score0.00356EPSS

CVE•added 2025/05/13 5:15 p.m.•63 views

CVE-2025-29954

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.

5.9CVSS5.7AI score0.0059EPSS

CVE•added 2025/06/10 5:22 p.m.•63 views

CVE-2025-32724

Uncontrolled resource consumption in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny service over a network.

7.5CVSS7.4AI score0.12218EPSS

CVE•added 2025/06/10 5:22 p.m.•63 views

CVE-2025-33066

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00083EPSS

CVE•added 2024/09/10 5:15 p.m.•62 views

CVE-2024-38235

Windows Hyper-V Denial of Service Vulnerability

6.5CVSS7.8AI score0.00159EPSS

CVE•added 2025/01/14 6:15 p.m.•62 views

CVE-2025-21257

Windows WLAN AutoConfig Service Information Disclosure Vulnerability

5.5CVSS5.3AI score0.00093EPSS

CVE•added 2025/01/14 6:15 p.m.•62 views

CVE-2025-21300

Windows upnphost.dll Denial of Service Vulnerability

7.5CVSS7.5AI score0.01098EPSS

CVE•added 2025/01/14 6:15 p.m.•62 views

CVE-2025-21304

Microsoft DWM Core Library Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00191EPSS

CVE•added 2025/06/10 5:23 p.m.•62 views

CVE-2025-33075

Improper link resolution before file access ('link following') in Windows Installer allows an authorized attacker to elevate privileges locally.

7.8CVSS7.6AI score0.001EPSS

CVE•added 2024/11/12 6:15 p.m.•61 views

CVE-2024-43646

Windows Secure Kernel Mode Elevation of Privilege Vulnerability

7.8CVSS6.7AI score0.0019EPSS

CVE•added 2025/05/13 5:15 p.m.•61 views

CVE-2025-24063

Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.

7.8CVSS7.8AI score0.00066EPSS

CVE•added 2025/05/13 5:15 p.m.•61 views

CVE-2025-29840

Stack-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS8AI score0.00083EPSS

CVE•added 2025/05/13 5:15 p.m.•61 views

CVE-2025-29962

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00083EPSS

CVE•added 2025/06/10 5:22 p.m.•61 views

CVE-2025-33061

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS

CVE•added 2024/10/08 6:15 p.m.•60 views

CVE-2024-43540

Windows Mobile Broadband Driver Denial of Service Vulnerability

6.5CVSS7.3AI score0.00287EPSS

CVE•added 2025/05/13 5:15 p.m.•60 views

CVE-2025-29964

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00083EPSS

CVE•added 2025/06/10 5:22 p.m.•60 views

CVE-2025-32725

Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.

7.5CVSS7.3AI score0.00177EPSS

CVE•added 2025/06/10 5:22 p.m.•60 views

CVE-2025-33056

Improper access control in Microsoft Local Security Authority Server (lsasrv) allows an unauthorized attacker to deny service over a network.

7.5CVSS7.3AI score0.00139EPSS

CVE•added 2025/06/10 5:22 p.m.•60 views

CVE-2025-33060

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS

CVE•added 2024/10/08 6:15 p.m.•59 views

CVE-2024-43534

Windows Graphics Component Information Disclosure Vulnerability

6.5CVSS7.4AI score0.00409EPSS

CVE•added 2024/10/08 6:15 p.m.•59 views

CVE-2024-43538

Windows Mobile Broadband Driver Denial of Service Vulnerability

6.5CVSS7.3AI score0.00287EPSS

CVE•added 2024/10/08 6:15 p.m.•59 views

CVE-2024-43555

Windows Mobile Broadband Driver Denial of Service Vulnerability

6.5CVSS7.3AI score0.00274EPSS

CVE•added 2024/12/12 2:4 a.m.•58 views

CVE-2024-49107

WmsRepair Service Elevation of Privilege Vulnerability

7.3CVSS7.2AI score0.00407EPSS

CVE•added 2025/02/11 6:15 p.m.•58 views

CVE-2025-21352

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00288EPSS

CVE•added 2025/05/13 5:15 p.m.•58 views

CVE-2025-29967

Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.

8.8CVSS8.1AI score0.0017EPSS

CVE•added 2025/05/13 5:16 p.m.•58 views

CVE-2025-30388

Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.

7.8CVSS8AI score0.00078EPSS

CVE•added 2025/06/10 5:21 p.m.•58 views

CVE-2025-32712

Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.

7.8CVSS8AI score0.00066EPSS

CVE•added 2025/06/10 5:22 p.m.•58 views

CVE-2025-33064

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

8.8CVSS9.1AI score0.00103EPSS

CVE•added 2020/05/21 11:15 p.m.•57 views

CVE-2020-1158

An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1077, CVE-2020-1086, CVE-2020-1090, CVE-2020-1125, CVE-2020-1139, CVE-2020-1149, CVE-2020-115...

7.8CVSS7.7AI score0.12134EPSS

CVE•added 2025/06/10 5:22 p.m.•57 views

CVE-2025-33062

Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.

5.5CVSS5.2AI score0.00056EPSS

CVE•added 2025/01/14 6:15 p.m.•56 views

CVE-2025-21248

Windows Telephony Service Remote Code Execution Vulnerability

8.8CVSS9AI score0.0052EPSS

CVE•added 2025/05/13 5:15 p.m.•56 views

CVE-2025-29842

Acceptance of extraneous untrusted data with trusted data in UrlMon allows an unauthorized attacker to bypass a security feature over a network.