Windows Server 2019@- Security Vulnerabilities and Issues — Page 30 of Windows Server 2019@- CVE List

An elevation of privilege vulnerability exists in the way that the Microsoft RemoteFX Virtual GPU miniport driver handles objects in memory, aka "Microsoft RemoteFX Virtual GPU miniport driver Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 8.1, Windows ...

7.8CVSS7.1AI score0.00351EPSS

CVE•added 2018/11/14 1:29 a.m.•112 views

CVE-2018-8554

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka "DirectX Elevation of Privilege Vulnerability." This affects Windows 10 Servers, Windows 10, Windows Server 2019. This CVE ID is unique from CVE-2018-8485, CVE-2018-8561.

7.8CVSS6.5AI score0.00502EPSS

CVE•added 2019/01/08 9:29 p.m.•112 views

CVE-2019-0553

An information disclosure vulnerability exists when Windows Subsystem for Linux improperly handles objects in memory, aka "Windows Subsystem for Linux Information Disclosure Vulnerability." This affects Windows 10 Servers, Windows 10, Windows Server 2019.

5.5CVSS5.6AI score0.00372EPSS

CVE•added 2020/02/11 10:15 p.m.•112 views

CVE-2020-0731

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0691, CVE-2020-0719, CVE-2020-0720, CVE-2020-0721, CVE-2020-0722, CVE-2020-0723, CVE...

7.8CVSS7.7AI score0.00549EPSS

CVE•added 2020/03/12 4:15 p.m.•112 views

CVE-2020-0822

An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations, aka 'Windows Language Pack Installer Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00511EPSS

CVE•added 2020/06/09 8:15 p.m.•112 views

CVE-2020-1202

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector fail to properly handle objects in memory, aka 'Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1203.

7.8CVSS8AI score0.00549EPSS

CVE•added 2020/06/09 8:15 p.m.•112 views

CVE-2020-1247

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1207, CVE-2020-1251, CVE-2020-1253, CVE-2020-1310.

7.8CVSS7AI score0.00589EPSS

CVE•added 2020/08/17 7:15 p.m.•112 views

CVE-2020-1479

An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with ful...

7.8CVSS8.1AI score0.00505EPSS

CVE•added 2020/08/17 7:15 p.m.•112 views

CVE-2020-1484

An elevation of privilege vulnerability exists when the Windows Work Folders Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The sec...

7.8CVSS8.1AI score0.00399EPSS

CVE•added 2020/08/17 7:15 p.m.•112 views

CVE-2020-1538

An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The securit...

7.8CVSS8.6AI score0.00513EPSS

CVE•added 2020/12/10 12:15 a.m.•112 views

CVE-2020-16959

Windows Backup Engine Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01076EPSS

CVE•added 2021/01/12 8:15 p.m.•112 views

CVE-2021-1655

Windows CSC Service Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00313EPSS

CVE•added 2021/01/12 8:15 p.m.•112 views

CVE-2021-1700

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9CVSS8.3AI score0.07046EPSS

CVE•added 2021/01/12 8:15 p.m.•112 views

CVE-2021-1701

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9CVSS8.3AI score0.07046EPSS

CVE•added 2021/04/13 8:15 p.m.•112 views

CVE-2021-27095

Windows Media Video Decoder Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.01263EPSS

CVE•added 2021/04/13 8:15 p.m.•112 views

CVE-2021-28343

Remote Procedure Call Runtime Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.12162EPSS

CVE•added 2021/09/15 12:15 p.m.•112 views

CVE-2021-36959

Windows Authenticode Spoofing Vulnerability

5.5CVSS6.8AI score0.02097EPSS

CVE•added 2021/10/13 1:15 a.m.•112 views

CVE-2021-40463

Windows Network Address Translation (NAT) Denial of Service Vulnerability

7.7CVSS7.9AI score0.11676EPSS

CVE•added 2022/01/11 9:15 p.m.•112 views

CVE-2022-21877

Storage Spaces Controller Information Disclosure Vulnerability

5.5CVSS7AI score0.16518EPSS

CVE•added 2022/10/11 7:15 p.m.•112 views

CVE-2022-24504

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

8.1CVSS8.5AI score0.00263EPSS

CVE•added 2022/09/13 7:15 p.m.•112 views

CVE-2022-35840

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

8.8CVSS9.5AI score0.03169EPSS

CVE•added 2022/10/11 7:15 p.m.•112 views

CVE-2022-38021

Connected User Experiences and Telemetry Elevation of Privilege Vulnerability

7CVSS7.6AI score0.00116EPSS

CVE•added 2022/12/13 7:15 p.m.•112 views

CVE-2022-41121

Windows Graphics Component Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.00188EPSS

CVE•added 2023/02/14 8:15 p.m.•112 views

CVE-2023-21693

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

5.7CVSS5.5AI score0.00634EPSS

CVE•added 2023/04/11 9:15 p.m.•112 views

CVE-2023-28272

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00386EPSS

CVE•added 2023/07/11 6:15 p.m.•112 views

CVE-2023-32038

Microsoft ODBC Driver Remote Code Execution Vulnerability

8.8CVSS9.3AI score0.00379EPSS

CVE•added 2019/04/09 12:29 a.m.•111 views

CVE-2019-0692

An elevation of privilege vulnerability exists due to an integer overflow in Windows Subsystem for Linux, aka 'Windows Subsystem for Linux Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-0682, CVE-2019-0689, CVE-2019-0693, CVE-2019-0694.

7.8CVSS7.8AI score0.004EPSS

CVE•added 2019/04/09 12:29 a.m.•111 views

CVE-2019-0693

7.8CVSS7.8AI score0.004EPSS

CVE•added 2019/06/12 2:29 p.m.•111 views

CVE-2019-1012

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

6.5CVSS5.6AI score0.07622EPSS

CVE•added 2019/09/11 10:15 p.m.•111 views

CVE-2019-1243

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1240, CVE-2019-1241, CVE-2019-1242, CVE-2019-1246, CVE-2019-1247, CVE-2019-1248,...

9.3CVSS8.5AI score0.35463EPSS

CVE•added 2019/09/11 10:15 p.m.•111 views

CVE-2019-1290

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0787, CVE-2019-0788, CVE-2019-1291.

9.3CVSS8.8AI score0.32912EPSS

CVE•added 2019/10/10 2:15 p.m.•111 views

CVE-2019-1337

An information disclosure vulnerability exists when Windows Update Client fails to properly handle objects in memory, aka 'Windows Update Client Information Disclosure Vulnerability'.

5.5CVSS6.5AI score0.00896EPSS

CVE•added 2020/01/15 5:15 p.m.•111 views

CVE-2019-9510

A vulnerability in Microsoft Windows 10 1803 and Windows Server 2019 and later systems can allow authenticated RDP-connected clients to gain access to user sessions without needing to interact with the Windows lock screen. Should a network anomaly trigger a temporary RDP disconnect, Automatic Recon...

7.8CVSS6.3AI score0.00734EPSS

CVE•added 2020/02/11 10:15 p.m.•111 views

CVE-2020-0657

An elevation of privilege vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory, aka 'Windows Common Log File System Driver Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.00511EPSS

CVE•added 2020/03/12 4:15 p.m.•111 views

CVE-2020-0810

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system.An attacker could then run a specially cr...

7.8CVSS8.6AI score0.00404EPSS

CVE•added 2020/04/15 3:15 p.m.•111 views

CVE-2020-0889

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0953, CVE-2020-0959, CVE-2020-0960, CVE-2020-0988, CVE-2020-0992, CVE-2020-0994,...

9.3CVSS8AI score0.33652EPSS

CVE•added 2020/09/11 5:15 p.m.•111 views

CVE-2020-1285

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or dele...

9.3CVSS8.7AI score0.1092EPSS

CVE•added 2020/06/09 8:15 p.m.•111 views

CVE-2020-1317

An elevation of privilege vulnerability exists when Group Policy improperly checks access, aka 'Group Policy Elevation of Privilege Vulnerability'.

9CVSS8.2AI score0.13405EPSS

CVE•added 2020/07/14 11:15 p.m.•111 views

CVE-2020-1362

An elevation of privilege vulnerability exists in the way that the Windows WalletService handles objects in memory, aka 'Windows WalletService Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1344, CVE-2020-1369.

7.8CVSS8.1AI score0.12863EPSS

CVE•added 2020/07/14 11:15 p.m.•111 views

CVE-2020-1408

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'.

9.3CVSS7.3AI score0.12696EPSS

CVE•added 2020/08/17 7:15 p.m.•111 views

CVE-2020-1480

An elevation of privilege vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete d...

7.8CVSS7.8AI score0.0073EPSS

CVE•added 2020/08/17 7:15 p.m.•111 views

CVE-2020-1528

An elevation of privilege vulnerability exists when the Windows Radio Manager API improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The securi...

7.8CVSS8.1AI score0.11602EPSS

CVE•added 2020/08/17 7:15 p.m.•111 views

CVE-2020-1549

An elevation of privilege vulnerability exists when the Windows CDP User Components improperly handle memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges.The secur...

7.8CVSS8.1AI score0.00505EPSS

Total number of security vulnerabilities2708