Windows Server 2008
by Microsoft
CVEs (2,628)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-30063 | Med | 0.44 | 6.7 | 0.01 | Jun 11, 2024 | Windows Distributed File System (DFS) Remote Code Execution Vulnerability | ||
| CVE-2024-26253 | Med | 0.44 | 6.8 | 0.01 | Apr 9, 2024 | Windows rndismp6.sys Remote Code Execution Vulnerability | ||
| CVE-2024-26252 | Med | 0.44 | 6.8 | 0.01 | Apr 9, 2024 | Windows rndismp6.sys Remote Code Execution Vulnerability | ||
| CVE-2024-26234 | Med | 0.44 | 6.7 | 0.05 | Apr 9, 2024 | Proxy Driver Spoofing Vulnerability | ||
| CVE-2024-21429 | Med | 0.44 | 6.8 | 0.01 | Mar 12, 2024 | Windows USB Hub Driver Remote Code Execution Vulnerability | ||
| CVE-2023-35629 | Med | 0.44 | 6.8 | 0.01 | Dec 12, 2023 | Microsoft USBHUB 3.0 Device Driver Remote Code Execution Vulnerability | ||
| CVE-2023-36697 | Med | 0.44 | 6.8 | 0.02 | Oct 10, 2023 | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability | ||
| CVE-2023-35332 | Med | 0.44 | 6.8 | 0.00 | Jul 11, 2023 | Windows Remote Desktop Protocol Security Feature Bypass | ||
| CVE-2023-32055 | Med | 0.44 | 6.7 | 0.00 | Jul 11, 2023 | Active Template Library Elevation of Privilege Vulnerability | ||
| CVE-2023-32043 | Med | 0.44 | 6.8 | 0.00 | Jul 11, 2023 | Windows Remote Desktop Security Feature Bypass Vulnerability | ||
| CVE-2023-24932 | Med | 0.44 | 6.7 | 0.11 | May 9, 2023 | Secure Boot Security Feature Bypass Vulnerability | ||
| CVE-2023-21694 | Med | 0.44 | 6.8 | 0.01 | Feb 14, 2023 | Windows Fax Service Remote Code Execution Vulnerability | ||
| CVE-2023-21563 | Med | 0.44 | 6.8 | 0.02 | Jan 10, 2023 | BitLocker Security Feature Bypass Vulnerability | ||
| CVE-2019-0713 | Med | 0.44 | 6.8 | 0.02 | Jun 12, 2019 | A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system,… | ||
| CVE-2018-3639 | Med | 0.44 | 5.5 | 0.61 | May 22, 2018 | Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis,… | ||
| CVE-2017-8628 | Med | 0.44 | 6.8 | 0.02 | Sep 13, 2017 | Microsoft Bluetooth Driver in Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703 allows a spoofing vulnerability due to Microsoft's implementation of the Bluetooth stack, aka "Microsoft Bluetooth Driver Spoofing Vulnerability". | ||
| CVE-2017-0244 | Med | 0.44 | 6.7 | 0.02 | May 12, 2017 | The kernel in Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows locally authenticated attackers to gain privileges via a crafted application, or in Windows 7 for x64-based systems, cause denial of service, aka "Windows Kernel Elevation of Privilege Vulnerability." | ||
| CVE-2016-7257 | Med | 0.44 | 6.5 | 0.23 | Dec 20, 2016 | The GDI component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Office for Mac 2011, and Office 2016 for Mac allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "GDI Information Disclosure… | ||
| CVE-2016-7210 | Med | 0.44 | 6.5 | 0.21 | Nov 10, 2016 | atmfd.dll in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to obtain sensitive information from… | ||
| CVE-2016-0133 | Med | 0.44 | 6.8 | 0.01 | Mar 9, 2016 | The USB Mass Storage Class driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows physically proximate attackers to execute arbitrary code by… |
- risk 0.44cvss 6.7epss 0.01
Windows Distributed File System (DFS) Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows rndismp6.sys Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows rndismp6.sys Remote Code Execution Vulnerability
- risk 0.44cvss 6.7epss 0.05
Proxy Driver Spoofing Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows USB Hub Driver Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.01
Microsoft USBHUB 3.0 Device Driver Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.02
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.00
Windows Remote Desktop Protocol Security Feature Bypass
- risk 0.44cvss 6.7epss 0.00
Active Template Library Elevation of Privilege Vulnerability
- risk 0.44cvss 6.8epss 0.00
Windows Remote Desktop Security Feature Bypass Vulnerability
- risk 0.44cvss 6.7epss 0.11
Secure Boot Security Feature Bypass Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Fax Service Remote Code Execution Vulnerability
- risk 0.44cvss 6.8epss 0.02
BitLocker Security Feature Bypass Vulnerability
- risk 0.44cvss 6.8epss 0.02
A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate input from a privileged user on a guest operating system. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system,…
- risk 0.44cvss 5.5epss 0.61
Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis,…
- risk 0.44cvss 6.8epss 0.02
Microsoft Bluetooth Driver in Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703 allows a spoofing vulnerability due to Microsoft's implementation of the Bluetooth stack, aka "Microsoft Bluetooth Driver Spoofing Vulnerability".
- risk 0.44cvss 6.7epss 0.02
The kernel in Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows locally authenticated attackers to gain privileges via a crafted application, or in Windows 7 for x64-based systems, cause denial of service, aka "Windows Kernel Elevation of Privilege Vulnerability."
- risk 0.44cvss 6.5epss 0.23
The GDI component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Office for Mac 2011, and Office 2016 for Mac allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "GDI Information Disclosure…
- risk 0.44cvss 6.5epss 0.21
atmfd.dll in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to obtain sensitive information from…
- risk 0.44cvss 6.8epss 0.01
The USB Mass Storage Class driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows physically proximate attackers to execute arbitrary code by…
Page 68 of 132