Windows Server 2016
by Microsoft
CVEs (3,555)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-26652 | 0.02 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-27479 | 0.02 | — | 0.02 | Apr 8, 2025 | Insufficient resource pool in Windows Kerberos allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-27473 | 0.02 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-27470 | 0.02 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-26680 | 0.02 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-21277 | 0.02 | — | 0.38 | Jan 14, 2025 | Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability | |||
| CVE-2024-43454 | 0.02 | — | 0.21 | Sep 10, 2024 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability | |||
| CVE-2024-38100 | 0.02 | — | 0.05 | Jul 9, 2024 | Windows File Explorer Elevation of Privilege Vulnerability | |||
| CVE-2024-38071 | 0.02 | — | 0.36 | Jul 9, 2024 | Windows Remote Desktop Licensing Service Denial of Service Vulnerability | |||
| CVE-2024-30090 | 0.02 | — | 0.02 | Jun 11, 2024 | Microsoft Streaming Service Elevation of Privilege Vulnerability | |||
| CVE-2024-30078 | 0.02 | — | 0.05 | Jun 11, 2024 | Windows Wi-Fi Driver Remote Code Execution Vulnerability | |||
| CVE-2025-53143 | 0.01 | — | 0.01 | Aug 12, 2025 | Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network. | |||
| CVE-2025-47984 | 0.01 | — | 0.14 | Jul 8, 2025 | Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose information over a network. | |||
| CVE-2025-33057 | 0.01 | — | 0.01 | Jun 10, 2025 | Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network. | |||
| CVE-2025-33050 | 0.01 | — | 0.02 | Jun 10, 2025 | Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-32725 | 0.01 | — | 0.01 | Jun 10, 2025 | Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-29968 | 0.01 | — | 0.02 | May 13, 2025 | Improper input validation in Active Directory Certificate Services (AD CS) allows an authorized attacker to deny service over a network. | |||
| CVE-2025-27469 | 0.01 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-26673 | 0.01 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network. | |||
| CVE-2025-26641 | 0.01 | — | 0.02 | Apr 8, 2025 | Uncontrolled resource consumption in Windows Cryptographic Services allows an unauthorized attacker to deny service over a network. |
- CVE-2025-26652Apr 8, 2025risk 0.02cvss —epss 0.02
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.
- CVE-2025-27479Apr 8, 2025risk 0.02cvss —epss 0.02
Insufficient resource pool in Windows Kerberos allows an unauthorized attacker to deny service over a network.
- CVE-2025-27473Apr 8, 2025risk 0.02cvss —epss 0.02
Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.
- CVE-2025-27470Apr 8, 2025risk 0.02cvss —epss 0.02
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.
- CVE-2025-26680Apr 8, 2025risk 0.02cvss —epss 0.02
Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network.
- CVE-2025-21277Jan 14, 2025risk 0.02cvss —epss 0.38
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
- CVE-2024-43454Sep 10, 2024risk 0.02cvss —epss 0.21
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
- CVE-2024-38100Jul 9, 2024risk 0.02cvss —epss 0.05
Windows File Explorer Elevation of Privilege Vulnerability
- CVE-2024-38071Jul 9, 2024risk 0.02cvss —epss 0.36
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
- CVE-2024-30090Jun 11, 2024risk 0.02cvss —epss 0.02
Microsoft Streaming Service Elevation of Privilege Vulnerability
- CVE-2024-30078Jun 11, 2024risk 0.02cvss —epss 0.05
Windows Wi-Fi Driver Remote Code Execution Vulnerability
- CVE-2025-53143Aug 12, 2025risk 0.01cvss —epss 0.01
Access of resource using incompatible type ('type confusion') in Windows Message Queuing allows an authorized attacker to execute code over a network.
- CVE-2025-47984Jul 8, 2025risk 0.01cvss —epss 0.14
Protection mechanism failure in Windows GDI allows an unauthorized attacker to disclose information over a network.
- CVE-2025-33057Jun 10, 2025risk 0.01cvss —epss 0.01
Null pointer dereference in Windows Local Security Authority (LSA) allows an authorized attacker to deny service over a network.
- CVE-2025-33050Jun 10, 2025risk 0.01cvss —epss 0.02
Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.
- CVE-2025-32725Jun 10, 2025risk 0.01cvss —epss 0.01
Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network.
- CVE-2025-29968May 13, 2025risk 0.01cvss —epss 0.02
Improper input validation in Active Directory Certificate Services (AD CS) allows an authorized attacker to deny service over a network.
- CVE-2025-27469Apr 8, 2025risk 0.01cvss —epss 0.02
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.
- CVE-2025-26673Apr 8, 2025risk 0.01cvss —epss 0.02
Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network.
- CVE-2025-26641Apr 8, 2025risk 0.01cvss —epss 0.02
Uncontrolled resource consumption in Windows Cryptographic Services allows an unauthorized attacker to deny service over a network.
Page 125 of 178