Windows Server 2019 Security Vulnerabilities and Issues — Windows Server 2019 CVE List

Lucene search

MicrosoftWindows Server 2019

323 matches found

CVE•added 2021/07/02 10:15 p.m.•2527 views

CVE-2021-34527

A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or de...

9CVSS9AI score0.94349EPSS

In wildWeb

CVE•added 2022/06/01 8:15 p.m.•2114 views

CVE-2022-30190

A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programs, vi...

9.3CVSS8.5AI score0.934EPSS

In wild

CVE•added 2021/06/08 11:15 p.m.•2068 views

CVE-2021-1675

Windows Print Spooler Remote Code Execution Vulnerability

9.3CVSS8.8AI score0.94349EPSS

In wildWeb

CVE•added 2022/02/09 5:15 p.m.•1244 views

CVE-2022-21971

Windows Runtime Remote Code Execution Vulnerability

9.3CVSS8.3AI score0.839EPSS

In wild

CVE•added 2023/04/11 9:15 p.m.•1221 views

CVE-2023-21554

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.92162EPSS

CVE•added 2021/06/08 11:15 p.m.•1195 views

CVE-2021-31956

Windows NTFS Elevation of Privilege Vulnerability

9.3CVSS8.5AI score0.8788EPSS

In wild

CVE•added 2021/07/16 9:15 p.m.•1164 views

CVE-2021-34448

Scripting Engine Memory Corruption Vulnerability

9.3CVSS7.4AI score0.02062EPSS

In wild

CVE•added 2023/10/18 4:15 a.m.•1061 views

CVE-2023-38545

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxyhandshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allowthat to resolve the address instead of it getting done by curl itself, themaximum length that host name can be is 255 bytes. If the host name is...

9.8CVSS9.4AI score0.22672EPSS

CVE•added 2019/05/16 7:29 p.m.•1048 views

CVE-2019-0903

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+ Remote Code Execution Vulnerability'.

9.3CVSS8AI score0.50834EPSS

In wild

CVE•added 2022/05/10 9:15 p.m.•1035 views

CVE-2022-26923

Active Directory Domain Services Elevation of Privilege Vulnerability

9CVSS9.2AI score0.91618EPSS

In wild

CVE•added 2020/11/11 7:15 a.m.•974 views

CVE-2020-17049

A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD).To exploit the vulnerability, a compromised service that is configured to use KCD could tamper with a service t...

9CVSS6.8AI score0.21753EPSS

In wild

CVE•added 2024/08/13 6:15 p.m.•941 views

CVE-2024-38063

Windows TCP/IP Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.88095EPSS

CVE•added 2025/01/14 6:15 p.m.•894 views

CVE-2025-21298

Windows OLE Remote Code Execution Vulnerability

9.8CVSS9.8AI score0.70558EPSS

CVE•added 2024/10/08 6:15 p.m.•764 views

CVE-2024-38124

Windows Netlogon Elevation of Privilege Vulnerability

9CVSS9AI score0.00293EPSS

CVE•added 2023/10/10 6:15 p.m.•676 views

CVE-2023-36434

Windows IIS Server Elevation of Privilege Vulnerability

9.8CVSS9.4AI score0.02926EPSS

In wild

CVE•added 2022/05/10 9:15 p.m.•585 views

CVE-2022-29130

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.13776EPSS

CVE•added 2023/03/14 5:15 p.m.•556 views

CVE-2023-23415

Internet Control Message Protocol (ICMP) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.03976EPSS

CVE•added 2024/07/09 5:15 p.m.•490 views

CVE-2024-38077

Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.85029EPSS

CVE•added 2023/10/10 6:15 p.m.•440 views

CVE-2023-35349

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.01159EPSS

CVE•added 2022/05/10 9:15 p.m.•408 views

CVE-2022-22012

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.4AI score0.06584EPSS

CVE•added 2023/05/09 6:15 p.m.•377 views

CVE-2023-24941

Windows Network File System Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.4389EPSS

CVE•added 2021/07/16 9:15 p.m.•359 views

CVE-2021-34481

9.8CVSS8.6AI score0.26941EPSS

In wild

CVE•added 2019/10/10 2:15 p.m.•358 views

CVE-2019-1365

An elevation of privilege vulnerability exists when Microsoft IIS Server fails to check the length of a buffer prior to copying memory to it.An attacker who successfully exploited this vulnerability can allow an unprivileged function ran by the user to execute code in the context of NT AUTHORITY\sy...

9.9CVSS9.3AI score0.02534EPSS

CVE•added 2022/05/10 9:15 p.m.•340 views

CVE-2022-26937

Windows Network File System Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.6661EPSS

CVE•added 2024/12/12 2:4 a.m.•326 views

CVE-2024-49112

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.87025EPSS

CVE•added 2023/03/14 5:15 p.m.•321 views

CVE-2023-21708

Remote Procedure Call Runtime Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.04719EPSS

CVE•added 2022/09/13 7:15 p.m.•312 views

CVE-2022-34721

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.18666EPSS

In wild

CVE•added 2022/08/09 8:15 p.m.•309 views

CVE-2022-30133

Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.15693EPSS

CVE•added 2023/05/09 6:15 p.m.•297 views

CVE-2023-24943

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.01302EPSS

CVE•added 2021/07/16 9:15 p.m.•293 views

CVE-2021-34458

Windows Kernel Remote Code Execution Vulnerability

9.9CVSS9.4AI score0.01265EPSS

CVE•added 2022/04/15 7:15 p.m.•275 views

CVE-2022-24491

Windows Network File System Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.42379EPSS

CVE•added 2024/09/10 5:15 p.m.•268 views

CVE-2024-21416

Windows TCP/IP Remote Code Execution Vulnerability

9.8CVSS9AI score0.05048EPSS

CVE•added 2022/05/10 9:15 p.m.•267 views

CVE-2022-21972

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

9.3CVSS9AI score0.5757EPSS

CVE•added 2021/08/12 6:15 p.m.•259 views

CVE-2021-26424

Windows TCP/IP Remote Code Execution Vulnerability

9.9CVSS8.8AI score0.09829EPSS

CVE•added 2022/04/15 7:15 p.m.•258 views

CVE-2022-24497

Windows Network File System Remote Code Execution Vulnerability

9.8CVSS9.6AI score0.39152EPSS

CVE•added 2022/03/09 5:15 p.m.•254 views

CVE-2022-23284

Windows Print Spooler Elevation of Privilege Vulnerability

9CVSS7.7AI score0.09515EPSS

CVE•added 2023/04/11 9:15 p.m.•254 views

CVE-2023-28250

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.05623EPSS

CVE•added 2021/12/15 3:15 p.m.•253 views

CVE-2021-43217

Windows Encrypting File System (EFS) Remote Code Execution Vulnerability

9.8CVSS9.1AI score0.20568EPSS

In wild

CVE•added 2021/08/12 6:15 p.m.•241 views

CVE-2021-26432

Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability

9.8CVSS8.8AI score0.10206EPSS

CVE•added 2020/09/11 5:15 p.m.•238 views

CVE-2020-1013

An elevation of privilege vulnerability exists when Microsoft Windows processes group policy updates. An attacker who successfully exploited this vulnerability could potentially escalate permissions or perform additional privileged actions on the target machine.To exploit this vulnerability, an att...

9.3CVSS8.1AI score0.1795EPSS

CVE•added 2023/11/14 6:15 p.m.•238 views

CVE-2023-36397

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.03225EPSS

CVE•added 2022/01/11 9:15 p.m.•234 views

CVE-2022-21849

Windows Internet Key Exchange (IKE) Protocol Extensions Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.24648EPSS

CVE•added 2023/06/14 12:15 a.m.•231 views

CVE-2023-29363

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

9.8CVSS9.7AI score0.05856EPSS

CVE•added 2022/02/09 5:15 p.m.•226 views

CVE-2022-21974

Roaming Security Rights Management Services Remote Code Execution Vulnerability

9.3CVSS8AI score0.08813EPSS

CVE•added 2020/06/09 8:15 p.m.•225 views

CVE-2020-1299

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'.

9.3CVSS8.4AI score0.32912EPSS

CVE•added 2019/03/06 12:0 a.m.•224 views

CVE-2019-0633

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handles certain requests, aka 'Windows SMB Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0630.

9CVSS9.3AI score0.33738EPSS

CVE•added 2021/08/12 6:15 p.m.•222 views

CVE-2021-36936

Windows Print Spooler Remote Code Execution Vulnerability

9.8CVSS9AI score0.03658EPSS

CVE•added 2021/05/11 7:15 p.m.•218 views

CVE-2021-28476

Windows Hyper-V Remote Code Execution Vulnerability

9.9CVSS9.7AI score0.63205EPSS

CVE•added 2022/04/15 7:15 p.m.•209 views

CVE-2022-26903

Windows Graphics Component Remote Code Execution Vulnerability