Windows Server 20h2 Security Vulnerabilities and Issues — Windows Server 20h2 CVE List

Lucene search

MicrosoftWindows Server 20h2

964 matches found

CVE•added 2020/08/17 7:15 p.m.•3648 views

CVE-2020-1472

An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability could run a specially crafted application on a d...

10CVSS8.2AI score0.94448EPSS

CVE•added 2021/07/02 10:15 p.m.•2468 views

CVE-2021-34527

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or de...

9CVSS9AI score0.94349EPSS

CVE•added 2022/06/01 8:15 p.m.•2071 views

CVE-2022-30190

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, vi...

9.3CVSS8.5AI score0.93412EPSS

CVE•added 2021/06/08 11:15 p.m.•2029 views

CVE-2021-1675

Windows Print Spooler Remote Code Execution Vulnerability

9.3CVSS8.8AI score0.94349EPSS

CVE•added 2021/08/12 6:15 p.m.•1764 views

CVE-2021-36942

Windows LSA Spoofing Vulnerability

7.5CVSS7.2AI score0.93632EPSS

CVE•added 2021/11/10 1:19 a.m.•1643 views

CVE-2021-42278

Active Directory Domain Services Elevation of Privilege Vulnerability

7.5CVSS8.2AI score0.94019EPSS

CVE•added 2021/09/15 12:15 p.m.•1454 views

CVE-2021-40444

Microsoft is investigating reports of a remote code execution vulnerability in MSHTML that affects Microsoft Windows. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability by using specially-crafted Microsoft Office documents.An attacker could craft a malicious ActiveX c...

8.8CVSS7.3AI score0.94291EPSS

CVE•added 2021/05/11 7:15 p.m.•1404 views

CVE-2021-31166

HTTP Protocol Stack Remote Code Execution Vulnerability

9.8CVSS8.8AI score0.92962EPSS

CVE•added 2021/10/13 1:15 a.m.•1375 views

CVE-2021-40449

Win32k Elevation of Privilege Vulnerability

7.8CVSS8AI score0.83548EPSS

CVE•added 2021/02/25 11:15 p.m.•1368 views

CVE-2021-1732

Windows Win32k Elevation of Privilege Vulnerability

7.8CVSS8AI score0.90196EPSS

CVE•added 2022/04/15 7:15 p.m.•1328 views

CVE-2022-24521

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8.9AI score0.02729EPSS

CVE•added 2022/01/11 9:15 p.m.•1257 views

CVE-2022-21882

Win32k Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.89101EPSS

CVE•added 2021/11/10 1:19 a.m.•1254 views

CVE-2021-42287

Active Directory Domain Services Elevation of Privilege Vulnerability

8.8CVSS8.2AI score0.93954EPSS

CVE•added 2020/11/11 7:15 a.m.•1245 views

CVE-2020-17087

Windows Kernel Local Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.15084EPSS

CVE•added 2022/02/09 5:15 p.m.•1211 views

CVE-2022-21971

Windows Runtime Remote Code Execution Vulnerability

9.3CVSS8.3AI score0.83939EPSS

CVE•added 2022/02/09 5:15 p.m.•1189 views

CVE-2022-22718

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.0674EPSS

CVE•added 2021/11/10 1:19 a.m.•1167 views

CVE-2021-41379

Windows Installer Elevation of Privilege Vulnerability

7.8CVSS7AI score0.04121EPSS

CVE•added 2022/02/09 5:15 p.m.•1167 views

CVE-2022-21999

Windows Print Spooler Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.70876EPSS

CVE•added 2021/06/08 11:15 p.m.•1163 views

CVE-2021-31956

Windows NTFS Elevation of Privilege Vulnerability

9.3CVSS8.5AI score0.85551EPSS

CVE•added 2022/05/10 9:15 p.m.•1150 views

CVE-2022-26925

Windows LSA Spoofing Vulnerability

8.1CVSS7.5AI score0.29421EPSS

CVE•added 2021/08/12 6:15 p.m.•1146 views

CVE-2021-36948

Windows Update Medic Service Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.00129EPSS

CVE•added 2021/08/12 6:15 p.m.•1145 views

CVE-2021-34484

Windows User Profile Service Elevation of Privilege Vulnerability

7.8CVSS8.6AI score0.06173EPSS

CVE•added 2021/06/08 11:15 p.m.•1133 views

CVE-2021-31199

Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability

7.8CVSS7.2AI score0.00462EPSS

CVE•added 2021/07/14 6:15 p.m.•1133 views

CVE-2021-31979

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.01032EPSS

CVE•added 2021/06/08 11:15 p.m.•1129 views

CVE-2021-31201

Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability

7.8CVSS7.2AI score0.00172EPSS

CVE•added 2021/06/08 11:15 p.m.•1127 views

CVE-2021-31955

Windows Kernel Information Disclosure Vulnerability

5.5CVSS6.3AI score0.14639EPSS

CVE•added 2021/06/08 11:15 p.m.•1115 views

CVE-2021-33739

Microsoft DWM Core Library Elevation of Privilege Vulnerability

8.4CVSS7.8AI score0.12897EPSS

CVE•added 2021/07/14 6:15 p.m.•1108 views

CVE-2021-33771

Windows Kernel Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.01694EPSS

CVE•added 2022/01/11 9:15 p.m.•1101 views

CVE-2022-21919

Windows User Profile Service Elevation of Privilege Vulnerability

7CVSS8.2AI score0.00684EPSS

CVE•added 2021/04/13 8:15 p.m.•1097 views

CVE-2021-28310

Win32k Elevation of Privilege Vulnerability

7.8CVSS8.2AI score0.26523EPSS

CVE•added 2021/09/15 12:15 p.m.•1083 views

CVE-2021-36955

Windows Common Log File System Driver Elevation of Privilege Vulnerability

7.8CVSS8AI score0.18971EPSS

CVE•added 2022/04/15 7:15 p.m.•1071 views

CVE-2022-26904

Windows User Profile Service Elevation of Privilege Vulnerability

7CVSS8.2AI score0.27261EPSS

CVE•added 2022/07/12 11:15 p.m.•1052 views

CVE-2022-22047

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

7.8CVSS8.3AI score0.00669EPSS

CVE•added 2021/10/13 1:15 a.m.•1049 views

CVE-2021-40450

Win32k Elevation of Privilege Vulnerability

7.8CVSS7.9AI score0.15082EPSS

CVE•added 2021/08/12 6:15 p.m.•1043 views

CVE-2021-34486

Windows Event Tracing Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.28855EPSS

CVE•added 2021/10/13 1:15 a.m.•1036 views

CVE-2021-41357

Win32k Elevation of Privilege Vulnerability

7.8CVSS7.5AI score0.14568EPSS

CVE•added 2022/08/09 8:15 p.m.•1031 views

CVE-2022-34713

Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability

7.8CVSS8.9AI score0.08936EPSS

CVE•added 2022/05/10 9:15 p.m.•1024 views

CVE-2022-26923

Active Directory Domain Services Elevation of Privilege Vulnerability

9CVSS9.2AI score0.91618EPSS

CVE•added 2022/01/11 9:15 p.m.•937 views

CVE-2022-21907

HTTP Protocol Stack Remote Code Execution Vulnerability

10CVSS9.7AI score0.9179EPSS

CVE•added 2020/11/11 7:15 a.m.•936 views

CVE-2020-17049

A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD).To exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service t...

9CVSS6.8AI score0.20086EPSS

CVE•added 2022/04/15 7:15 p.m.•626 views

CVE-2022-26809

Remote Procedure Call Runtime Remote Code Execution Vulnerability

10CVSS9.6AI score0.92281EPSS

CVE•added 2022/05/10 9:15 p.m.•583 views

CVE-2022-29130

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.06808EPSS

CVE•added 2022/07/12 11:15 p.m.•576 views

CVE-2022-30209

Windows IIS Server Elevation of Privilege Vulnerability