Windows Server 2012
by Microsoft
CVEs (3,338)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2013-3175 | 0.02 | — | 0.28 | Aug 14, 2013 | Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allow remote attackers to execute arbitrary code via a malformed asynchronous RPC request, aka "Remote… | |||
| CVE-2013-1339 | 0.02 | — | 0.24 | Jun 12, 2013 | The Print Spooler in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly manage memory during deletion of printer connections, which allows remote authenticated users to execute… | |||
| CVE-2013-1281 | 0.02 | — | 0.24 | Feb 13, 2013 | The NFS server in Microsoft Windows Server 2008 R2 and R2 SP1 and Server 2012 allows remote attackers to cause a denial of service (NULL pointer dereference and reboot) via an attempted renaming of a file or folder located on a read-only share, aka "NULL Dereference… | |||
| CVE-2012-2556 | 0.02 | — | 0.21 | Dec 12, 2012 | The OpenType Font (OTF) driver in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT allows remote attackers to… | |||
| CVE-2025-53143 | 0.01 | — | 0.01 | Aug 12, 2025 | Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network. | |||
| CVE-2025-47984 | 0.01 | — | 0.14 | Jul 8, 2025 | Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose information over a network. | |||
| CVE-2025-33057 | 0.01 | — | 0.01 | Jun 10, 2025 | Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network. | |||
| CVE-2025-29968 | 0.01 | — | 0.02 | May 13, 2025 | Improper input validation in Active Directory Certificate Services (AD CS) allows an authorized attacker to deny service over a network. | |||
| CVE-2025-27469 | 0.01 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-26673 | 0.01 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-26641 | 0.01 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows Cryptographic Services allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-21174 | 0.01 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-21181 | 0.01 | — | 0.03 | Feb 11, 2025 | Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability | |||
| CVE-2025-21409 | 0.01 | — | 0.01 | Jan 14, 2025 | Windows Telephony Service Remote Code Execution Vulnerability | |||
| CVE-2025-21417 | 0.01 | — | 0.01 | Jan 14, 2025 | Windows Telephony Service Remote Code Execution Vulnerability | |||
| CVE-2025-21339 | 0.01 | — | 0.01 | Jan 14, 2025 | Windows Telephony Service Remote Code Execution Vulnerability | |||
| CVE-2025-21307 | 0.01 | — | 0.02 | Jan 14, 2025 | Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability | |||
| CVE-2025-21276 | 0.01 | — | 0.02 | Jan 14, 2025 | Windows MapUrlToZone Denial of Service Vulnerability | |||
| CVE-2025-21413 | 0.01 | — | 0.01 | Jan 14, 2025 | Windows Telephony Service Remote Code Execution Vulnerability | |||
| CVE-2025-21411 | 0.01 | — | 0.01 | Jan 14, 2025 | Windows Telephony Service Remote Code Execution Vulnerability |
- CVE-2013-3175Aug 14, 2013risk 0.02cvss —epss 0.28
Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allow remote attackers to execute arbitrary code via a malformed asynchronous RPC request, aka "Remote…
- CVE-2013-1339Jun 12, 2013risk 0.02cvss —epss 0.24
The Print Spooler in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly manage memory during deletion of printer connections, which allows remote authenticated users to execute…
- CVE-2013-1281Feb 13, 2013risk 0.02cvss —epss 0.24
The NFS server in Microsoft Windows Server 2008 R2 and R2 SP1 and Server 2012 allows remote attackers to cause a denial of service (NULL pointer dereference and reboot) via an attempted renaming of a file or folder located on a read-only share, aka "NULL Dereference…
- CVE-2012-2556Dec 12, 2012risk 0.02cvss —epss 0.21
The OpenType Font (OTF) driver in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT allows remote attackers to…
- CVE-2025-53143Aug 12, 2025risk 0.01cvss —epss 0.01
Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network.
- CVE-2025-47984Jul 8, 2025risk 0.01cvss —epss 0.14
Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose information over a network.
- CVE-2025-33057Jun 10, 2025risk 0.01cvss —epss 0.01
Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network.
- CVE-2025-29968May 13, 2025risk 0.01cvss —epss 0.02
Improper input validation in Active Directory Certificate Services (AD CS) allows an authorized attacker to deny service over a network.
- CVE-2025-27469Apr 8, 2025risk 0.01cvss —epss 0.02
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.
- CVE-2025-26673Apr 8, 2025risk 0.01cvss —epss 0.02
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.
- CVE-2025-26641Apr 8, 2025risk 0.01cvss —epss 0.02
Uncontrolled resource consumption in Windows Cryptographic Services allows an unauthorized attacker to deny service over a network.
- CVE-2025-21174Apr 8, 2025risk 0.01cvss —epss 0.02
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.
- CVE-2025-21181Feb 11, 2025risk 0.01cvss —epss 0.03
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
- CVE-2025-21409Jan 14, 2025risk 0.01cvss —epss 0.01
Windows Telephony Service Remote Code Execution Vulnerability
- CVE-2025-21417Jan 14, 2025risk 0.01cvss —epss 0.01
Windows Telephony Service Remote Code Execution Vulnerability
- CVE-2025-21339Jan 14, 2025risk 0.01cvss —epss 0.01
Windows Telephony Service Remote Code Execution Vulnerability
- CVE-2025-21307Jan 14, 2025risk 0.01cvss —epss 0.02
Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability
- CVE-2025-21276Jan 14, 2025risk 0.01cvss —epss 0.02
Windows MapUrlToZone Denial of Service Vulnerability
- CVE-2025-21413Jan 14, 2025risk 0.01cvss —epss 0.01
Windows Telephony Service Remote Code Execution Vulnerability
- CVE-2025-21411Jan 14, 2025risk 0.01cvss —epss 0.01
Windows Telephony Service Remote Code Execution Vulnerability
Page 119 of 167