Windows Server 2008
by Microsoft
CVEs (2,628)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-20692 | Med | 0.37 | 5.7 | 0.01 | Jan 9, 2024 | Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability | ||
| CVE-2023-21693 | Med | 0.37 | 5.7 | 0.01 | Feb 14, 2023 | Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability | ||
| CVE-2022-30223 | Med | 0.37 | 5.7 | 0.01 | Jul 12, 2022 | Windows Hyper-V Information Disclosure Vulnerability | ||
| CVE-2018-8472 | Med | 0.37 | 5.5 | 0.19 | Oct 10, 2018 | An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, allowing an attacker to retrieve information from a targeted system, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows… | ||
| CVE-2017-11853 | Med | 0.37 | 5.5 | 0.11 | Nov 15, 2017 | Windows kernel in Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and RT 8.1, Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows Server, version 1709 allows an attacker to log in and run a specially crafted… | ||
| CVE-2017-11816 | Med | 0.37 | 5.5 | 0.20 | Oct 13, 2017 | The Microsoft Windows Graphics Device Interface (GDI) on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure… | ||
| CVE-2017-8710 | Med | 0.37 | 5.5 | 0.10 | Sep 13, 2017 | The Microsoft Common Console Document (.msc) in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1 allows an attacker to read arbitrary files via an XML external entity (XXE) declaration, due to the way that the Microsoft Common Console Document (.msc) parses XML input… | ||
| CVE-2017-0215 | Med | 0.37 | 5.3 | 0.36 | Jun 15, 2017 | Microsoft Windows 10 1607 and Windows Server 2016 allow an attacker to exploit a security feature bypass vulnerability in Device Guard that could allow the attacker to inject malicious code into a Windows PowerShell session, aka "Device Guard Code Integrity Policy Security… | ||
| CVE-2025-53799 | Med | 0.36 | 5.5 | 0.01 | Sep 9, 2025 | Use of uninitialized resource in Windows Imaging Component allows an unauthorized attacker to disclose information locally. | ||
| CVE-2024-21311 | Med | 0.36 | 5.5 | 0.01 | Jan 9, 2024 | Windows Cryptographic Services Information Disclosure Vulnerability | ||
| CVE-2023-36428 | Med | 0.36 | 5.5 | 0.01 | Nov 14, 2023 | Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability | ||
| CVE-2023-36724 | Med | 0.36 | 5.5 | 0.01 | Oct 10, 2023 | Windows Power Management Service Information Disclosure Vulnerability | ||
| CVE-2023-36713 | Med | 0.36 | 5.5 | 0.08 | Oct 10, 2023 | Windows Common Log File System Driver Information Disclosure Vulnerability | ||
| CVE-2023-38160 | Med | 0.36 | 5.5 | 0.01 | Sep 12, 2023 | Windows TCP/IP Information Disclosure Vulnerability | ||
| CVE-2023-38152 | Med | 0.36 | 5.3 | 0.24 | Sep 12, 2023 | DHCP Server Service Information Disclosure Vulnerability | ||
| CVE-2023-36907 | Med | 0.36 | 5.5 | 0.02 | Aug 8, 2023 | Windows Cryptographic Services Information Disclosure Vulnerability | ||
| CVE-2023-36906 | Med | 0.36 | 5.5 | 0.02 | Aug 8, 2023 | Windows Cryptographic Services Information Disclosure Vulnerability | ||
| CVE-2023-36889 | Med | 0.36 | 5.5 | 0.01 | Aug 8, 2023 | Windows Group Policy Security Feature Bypass Vulnerability | ||
| CVE-2023-33174 | Med | 0.36 | 5.5 | 0.01 | Jul 11, 2023 | Windows Cryptographic Information Disclosure Vulnerability | ||
| CVE-2023-32020 | Med | 0.36 | 5.6 | 0.01 | Jun 14, 2023 | Windows DNS Spoofing Vulnerability |
- risk 0.37cvss 5.7epss 0.01
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
- risk 0.37cvss 5.7epss 0.01
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
- risk 0.37cvss 5.7epss 0.01
Windows Hyper-V Information Disclosure Vulnerability
- risk 0.37cvss 5.5epss 0.19
An information disclosure vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in memory, allowing an attacker to retrieve information from a targeted system, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows…
- risk 0.37cvss 5.5epss 0.11
Windows kernel in Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and RT 8.1, Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows Server, version 1709 allows an attacker to log in and run a specially crafted…
- risk 0.37cvss 5.5epss 0.20
The Microsoft Windows Graphics Device Interface (GDI) on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an information disclosure…
- risk 0.37cvss 5.5epss 0.10
The Microsoft Common Console Document (.msc) in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1 allows an attacker to read arbitrary files via an XML external entity (XXE) declaration, due to the way that the Microsoft Common Console Document (.msc) parses XML input…
- risk 0.37cvss 5.3epss 0.36
Microsoft Windows 10 1607 and Windows Server 2016 allow an attacker to exploit a security feature bypass vulnerability in Device Guard that could allow the attacker to inject malicious code into a Windows PowerShell session, aka "Device Guard Code Integrity Policy Security…
- risk 0.36cvss 5.5epss 0.01
Use of uninitialized resource in Windows Imaging Component allows an unauthorized attacker to disclose information locally.
- risk 0.36cvss 5.5epss 0.01
Windows Cryptographic Services Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
Windows Power Management Service Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.08
Windows Common Log File System Driver Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
Windows TCP/IP Information Disclosure Vulnerability
- risk 0.36cvss 5.3epss 0.24
DHCP Server Service Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.02
Windows Cryptographic Services Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.02
Windows Cryptographic Services Information Disclosure Vulnerability
- risk 0.36cvss 5.5epss 0.01
Windows Group Policy Security Feature Bypass Vulnerability
- risk 0.36cvss 5.5epss 0.01
Windows Cryptographic Information Disclosure Vulnerability
- risk 0.36cvss 5.6epss 0.01
Windows DNS Spoofing Vulnerability
Page 58 of 132