Windows Server 2008 Security Vulnerabilities and Issues — Page 4 of Windows Server 2008 CVE List

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0602, CVE-2019-0615, CVE-2019-0616, CVE-2019-0619, CVE-2019-0660.

6.5CVSS7.2AI score0.2251EPSS

CVE•added 2020/04/15 3:15 p.m.•93 views

CVE-2020-0952

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.

6.5CVSS6.7AI score0.27243EPSS

CVE•added 2020/06/09 8:15 p.m.•93 views

CVE-2020-1348

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.

6.5CVSS6.7AI score0.22806EPSS

CVE•added 2022/10/11 7:15 p.m.•93 views

CVE-2022-38032

Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability

6.6CVSS7.3AI score0.00268EPSS

CVE•added 2023/07/11 6:15 p.m.•93 views

CVE-2023-35318

Remote Procedure Call Runtime Denial of Service Vulnerability

6.5CVSS7.8AI score0.03672EPSS

CVE•added 2023/07/11 6:15 p.m.•93 views

CVE-2023-35319

Remote Procedure Call Runtime Denial of Service Vulnerability

6.5CVSS7.8AI score0.03672EPSS

CVE•added 2023/07/11 6:15 p.m.•93 views

CVE-2023-35345

Windows DNS Server Remote Code Execution Vulnerability

6.6CVSS8.1AI score0.00226EPSS

CVE•added 2025/01/14 6:15 p.m.•93 views

CVE-2025-21261

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00149EPSS

CVE•added 2018/03/14 5:29 p.m.•92 views

CVE-2018-0885

The Microsoft Hyper-V Network Switch in 64-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows a denial of service vulnerability due to how input from a pri...

6.3CVSS5.7AI score0.02008EPSS

CVE•added 2023/07/11 6:15 p.m.•92 views

CVE-2023-35344

Windows DNS Server Remote Code Execution Vulnerability

6.6CVSS8.1AI score0.00226EPSS

CVE•added 2021/04/13 8:15 p.m.•91 views

CVE-2021-28328

Windows DNS Information Disclosure Vulnerability

6.5CVSS7.1AI score0.11531EPSS

CVE•added 2023/07/11 6:15 p.m.•91 views

CVE-2023-33164

Remote Procedure Call Runtime Denial of Service Vulnerability

6.5CVSS7.8AI score0.03672EPSS

CVE•added 2025/01/14 6:15 p.m.•91 views

CVE-2025-21232

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE•added 2009/10/14 10:30 a.m.•90 views

CVE-2009-2510

The CryptoAPI component in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, as used by Internet Explorer and other applications, does not properly handle a '\0' character in a domain ...

6.8CVSS5.8AI score0.17223EPSS

CVE•added 2019/12/10 10:15 p.m.•90 views

CVE-2019-1470

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Information Disclosure Vulnerability'.

6CVSS6.3AI score0.00946EPSS

CVE•added 2021/01/12 8:15 p.m.•90 views

CVE-2021-1679

Windows CryptoAPI Denial of Service Vulnerability

6.5CVSS7.3AI score0.04105EPSS

CVE•added 2021/04/13 8:15 p.m.•90 views

CVE-2021-26413

Windows Installer Spoofing Vulnerability

6.2CVSS7.2AI score0.00622EPSS

CVE•added 2023/07/11 6:15 p.m.•90 views

CVE-2023-35351

Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability

6.6CVSS8.1AI score0.00293EPSS

CVE•added 2024/11/12 6:15 p.m.•90 views

CVE-2024-43638

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

6.8CVSS6.7AI score0.0037EPSS

CVE•added 2020/09/11 5:15 p.m.•89 views

CVE-2020-0856

An information disclosure vulnerability exists when Active Directory integrated DNS (ADIDNS) mishandles objects in memory. An authenticated attacker who successfully exploited this vulnerability would be able to read sensitive information about the target system.To exploit this condition, an authen...

6.5CVSS7.2AI score0.18824EPSS

CVE•added 2024/08/13 6:15 p.m.•89 views

CVE-2024-38214

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

6.5CVSS6.3AI score0.00655EPSS

CVE•added 2025/03/11 5:16 p.m.•89 views

CVE-2025-24996

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS6.9AI score0.00209EPSS

CVE•added 2016/05/11 1:59 a.m.•88 views

CVE-2016-0168

GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attackers to obtain sensitive information via a crafted document, aka "Windows Graphics Component Informati...

6.5CVSS5.9AI score0.69648EPSS

CVE•added 2017/03/17 12:59 a.m.•88 views

CVE-2017-0063

The Color Management Module (ICM32.dll) memory handling functionality in Windows Vista SP2; Windows Server 2008 SP2 and R2; and Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to bypass ASL...

6.5CVSS5.4AI score0.18487EPSS

CVE•added 2017/04/12 2:59 p.m.•88 views

CVE-2017-0168

An information disclosure vulnerability exists when the Windows Hyper-V Network Switch running on a Windows 8.1, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, or Windows Server 2012 R2 host operating system fails to properly validate input from an authenticated user on a guest o...

6.3CVSS5.8AI score0.00992EPSS

CVE•added 2019/12/10 10:15 p.m.•88 views

CVE-2019-1465

6.5CVSS6.7AI score0.26055EPSS

CVE•added 2020/09/11 5:15 p.m.•88 views

CVE-2020-0664

6.5CVSS7.2AI score0.15065EPSS

CVE•added 2020/07/14 11:15 p.m.•88 views

CVE-2020-1468

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.

6.5CVSS7.1AI score0.20177EPSS

CVE•added 2023/12/12 6:15 p.m.•88 views

CVE-2023-35642

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00491EPSS

CVE•added 2020/09/11 5:15 p.m.•87 views

CVE-2020-1256

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

6.5CVSS6.4AI score0.1858EPSS

CVE•added 2023/07/11 6:15 p.m.•87 views

CVE-2023-35316

Remote Procedure Call Runtime Information Disclosure Vulnerability

6.5CVSS7.7AI score0.0339EPSS

CVE•added 2025/04/08 6:15 p.m.•87 views

CVE-2025-26672

Buffer over-read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network.

6.5CVSS6.8AI score0.0005EPSS

CVE•added 2017/04/12 2:59 p.m.•86 views

CVE-2017-0183

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch running on a Windows 10, Windows Server 2008 R2, Windows 8.1, Windows Server 2012 R2, or Windows Server 2016 host server fails to properly validate input from a privileged user on a guest operating system, aka "Hyper-V D...

6.3CVSS5.9AI score0.00584EPSS

CVE•added 2019/06/12 2:29 p.m.•86 views

CVE-2019-1013

6.5CVSS5.6AI score0.14112EPSS

CVE•added 2019/11/12 7:15 p.m.•86 views

CVE-2019-1399

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0712, CVE-2019-1309, CVE-2019-1310.

6.2CVSS7.1AI score0.00983EPSS

CVE•added 2023/07/11 6:15 p.m.•86 views

CVE-2023-35296

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

6.5CVSS7.5AI score0.04108EPSS

CVE•added 2019/06/12 2:29 p.m.•85 views

CVE-2019-0968

6.5CVSS5.9AI score0.29578EPSS

CVE•added 2020/04/15 3:15 p.m.•85 views

CVE-2020-0993

A denial of service vulnerability exists in Windows DNS when it fails to properly handle queries, aka 'Windows DNS Denial of Service Vulnerability'.

6.8CVSS6.9AI score0.11053EPSS

CVE•added 2021/12/15 3:15 p.m.•85 views

CVE-2021-43216

Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability

6.8CVSS7.5AI score0.13735EPSS

CVE•added 2023/07/11 6:15 p.m.•85 views

CVE-2023-32043

Windows Remote Desktop Security Feature Bypass Vulnerability

6.8CVSS8AI score0.00065EPSS

CVE•added 2023/07/11 6:15 p.m.•85 views

CVE-2023-35314

Remote Procedure Call Runtime Denial of Service Vulnerability

6.5CVSS7.8AI score0.03672EPSS

CVE•added 2023/07/11 6:15 p.m.•85 views

CVE-2023-35341

Microsoft DirectMusic Information Disclosure Vulnerability

6.2CVSS6.9AI score0.00243EPSS

CVE•added 2024/07/09 5:15 p.m.•85 views

CVE-2024-38048

Windows Network Driver Interface Specification (NDIS) Denial of Service Vulnerability

6.5CVSS7.8AI score0.0017EPSS

CVE•added 2017/07/11 9:29 p.m.•84 views

CVE-2017-8587

Windows Explorer in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511 allows a denial of service vulnerability when it attempts to open a non-existent file, aka "Windows Explorer Denial of Service Vulnerability".

6.5CVSS6.2AI score0.16489EPSS

CVE•added 2019/06/12 2:29 p.m.•84 views

CVE-2019-1009

6.5CVSS5.9AI score0.19682EPSS

CVE•added 2020/03/12 4:15 p.m.•84 views

CVE-2020-0853

An information disclosure vulnerability exists in Windows when the Windows Imaging Component fails to properly handle objects in memory, aka 'Windows Imaging Component Information Disclosure Vulnerability'.

6.5CVSS7.1AI score0.27243EPSS

CVE•added 2020/07/14 11:15 p.m.•84 views

CVE-2020-1397

6.5CVSS7.1AI score0.2819EPSS

Total number of security vulnerabilities315