Windows Server 2019 Security Vulnerabilities and Issues — Page 6 of Windows Server 2019 CVE List

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtua...

6.5CVSS7AI score0.00907EPSS

CVE•added 2021/04/13 8:15 p.m.•91 views

CVE-2021-28328

Windows DNS Information Disclosure Vulnerability

6.5CVSS7.1AI score0.11531EPSS

CVE•added 2023/07/11 6:15 p.m.•91 views

CVE-2023-33164

Remote Procedure Call Runtime Denial of Service Vulnerability

6.5CVSS7.8AI score0.03672EPSS

CVE•added 2023/07/11 6:15 p.m.•91 views

CVE-2023-35348

Active Directory Federation Service Security Feature Bypass Vulnerability

6.5CVSS7.8AI score0.00439EPSS

CVE•added 2025/01/14 6:15 p.m.•91 views

CVE-2025-21232

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE•added 2019/12/10 10:15 p.m.•90 views

CVE-2019-1470

An information disclosure vulnerability exists when Windows Hyper-V on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Information Disclosure Vulnerability'.

6CVSS6.3AI score0.00946EPSS

CVE•added 2021/01/12 8:15 p.m.•90 views

CVE-2021-1679

Windows CryptoAPI Denial of Service Vulnerability

6.5CVSS7.3AI score0.04105EPSS

CVE•added 2021/02/25 11:15 p.m.•90 views

CVE-2021-24082

Microsoft.PowerShell.Utility Module WDAC Security Feature Bypass Vulnerability

6.5CVSS6.6AI score0.0414EPSS

CVE•added 2021/04/13 8:15 p.m.•90 views

CVE-2021-26413

Windows Installer Spoofing Vulnerability

6.2CVSS7.2AI score0.00622EPSS

CVE•added 2021/04/13 8:15 p.m.•90 views

CVE-2021-27079

Windows Media Photo Codec Information Disclosure Vulnerability

6.3CVSS6.6AI score0.08228EPSS

CVE•added 2023/07/11 6:15 p.m.•90 views

CVE-2023-35351

Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability

6.6CVSS8.1AI score0.00293EPSS

CVE•added 2024/05/14 5:16 p.m.•90 views

CVE-2024-29999

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

6.8CVSS7AI score0.00286EPSS

CVE•added 2024/07/09 5:15 p.m.•90 views

CVE-2024-38065

Secure Boot Security Feature Bypass Vulnerability

6.8CVSS7.4AI score0.00449EPSS

CVE•added 2024/11/12 6:15 p.m.•90 views

CVE-2024-43638

Windows USB Video Class System Driver Elevation of Privilege Vulnerability

6.8CVSS6.7AI score0.0037EPSS

CVE•added 2025/01/14 6:15 p.m.•90 views

CVE-2025-21229

Windows Digital Media Elevation of Privilege Vulnerability

6.6CVSS6.5AI score0.00151EPSS

CVE•added 2020/09/11 5:15 p.m.•89 views

CVE-2020-0856

An information disclosure vulnerability exists when Active Directory integrated DNS (ADIDNS) mishandles objects in memory. An authenticated attacker who successfully exploited this vulnerability would be able to read sensitive information about the target system.To exploit this condition, an authen...

6.5CVSS7.2AI score0.18824EPSS

CVE•added 2024/08/13 6:15 p.m.•89 views

CVE-2024-38214

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

6.5CVSS6.3AI score0.00655EPSS

CVE•added 2024/09/10 5:15 p.m.•89 views

CVE-2024-38254

Windows Authentication Information Disclosure Vulnerability

6.2CVSS7AI score0.00227EPSS

CVE•added 2025/03/11 5:16 p.m.•89 views

CVE-2025-24996

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing over a network.

6.5CVSS6.9AI score0.00209EPSS

CVE•added 2019/10/10 2:15 p.m.•88 views

CVE-2019-1230

An information disclosure vulnerability exists when the Windows Hyper-V Network Switch on a host operating system fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Information Disclosure Vulnerability'.

6.8CVSS7.1AI score0.02357EPSS

CVE•added 2019/12/10 10:15 p.m.•88 views

CVE-2019-1465

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1466, CVE-2019-1467.

6.5CVSS6.7AI score0.26055EPSS

CVE•added 2020/09/11 5:15 p.m.•88 views

CVE-2020-0664

6.5CVSS7.2AI score0.15065EPSS

CVE•added 2020/07/14 11:15 p.m.•88 views

CVE-2020-1468

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'.

6.5CVSS7.1AI score0.20177EPSS

CVE•added 2021/04/13 8:15 p.m.•88 views

CVE-2021-28311

Windows Application Compatibility Cache Denial of Service Vulnerability

6.5CVSS7.3AI score0.02572EPSS

CVE•added 2023/07/11 6:15 p.m.•88 views

CVE-2023-35308

Windows MSHTML Platform Security Feature Bypass Vulnerability

6.5CVSS7.8AI score0.01019EPSS

CVE•added 2023/12/12 6:15 p.m.•88 views

CVE-2023-35642

Internet Connection Sharing (ICS) Denial of Service Vulnerability

6.5CVSS7.3AI score0.00491EPSS

CVE•added 2024/12/12 2:4 a.m.•88 views

CVE-2024-49092

Windows Mobile Broadband Driver Elevation of Privilege Vulnerability

6.8CVSS6.6AI score0.00293EPSS

CVE•added 2019/04/09 12:29 a.m.•87 views

CVE-2019-0701

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0690, CVE-2019-0695.

6.8CVSS6.9AI score0.00375EPSS

CVE•added 2020/09/11 5:15 p.m.•87 views

CVE-2020-1256

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system.There are multiple ways an attacker could exploit ...

6.5CVSS6.4AI score0.1858EPSS

CVE•added 2023/07/11 6:15 p.m.•87 views

CVE-2023-35316

Remote Procedure Call Runtime Information Disclosure Vulnerability

6.5CVSS7.7AI score0.0339EPSS

CVE•added 2024/07/09 5:15 p.m.•87 views

CVE-2024-38105

Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability

6.5CVSS7.6AI score0.00391EPSS

CVE•added 2025/02/11 6:15 p.m.•87 views

CVE-2025-21216

Internet Connection Sharing (ICS) Denial of Service Vulnerability