Windows Server 2019
by Microsoft
CVEs (3,628)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-8333 | Hig | 0.46 | 7.0 | 0.02 | Oct 10, 2018 | An Elevation of Privilege vulnerability exists in Filter Manager when it improperly handles objects in memory, aka "Microsoft Filter Manager Elevation Of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server… | ||
| CVE-2026-47648 | Hig | 0.45 | 7.0 | 0.00 | Jun 9, 2026 | Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-42984 | Hig | 0.45 | 7.0 | 0.00 | Jun 9, 2026 | Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-34335 | Hig | 0.45 | 7.0 | 0.00 | Jun 9, 2026 | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. | ||
| CVE-2020-1034 | Med | 0.45 | 6.8 | 0.04 | Sep 11, 2020 | An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated… | ||
| CVE-2026-50507 | Med | 0.44 | 6.8 | 0.05 | Jun 9, 2026 | Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack. | ||
| CVE-2026-45608 | Med | 0.44 | 6.8 | 0.00 | Jun 9, 2026 | Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally. | ||
| CVE-2026-41097 | Med | 0.44 | 6.7 | 0.01 | May 12, 2026 | Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. | ||
| CVE-2026-32170 | Med | 0.44 | 6.7 | 0.00 | May 12, 2026 | Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally. | ||
| CVE-2026-0390 | Med | 0.44 | 6.7 | 0.00 | Apr 14, 2026 | Reliance on untrusted inputs in a security decision in Windows Boot Loader allows an authorized attacker to bypass a security feature locally. | ||
| CVE-2025-27488 | Med | 0.44 | 6.7 | 0.00 | May 13, 2025 | Use of hard-coded credentials in Windows Hardware Lab Kit allows an authorized attacker to elevate privileges locally. | ||
| CVE-2025-26637 | Med | 0.44 | 6.8 | 0.01 | Apr 8, 2025 | Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack. | ||
| CVE-2025-21377 | Med | 0.44 | 6.5 | 0.22 | Feb 11, 2025 | NTLM Hash Disclosure Spoofing Vulnerability | ||
| CVE-2025-21349 | Med | 0.44 | 6.8 | 0.01 | Feb 11, 2025 | Windows Remote Desktop Configuration Service Tampering Vulnerability | ||
| CVE-2025-21211 | Med | 0.44 | 6.8 | 0.01 | Jan 14, 2025 | Secure Boot Security Feature Bypass Vulnerability | ||
| CVE-2024-49110 | Med | 0.44 | 6.8 | 0.01 | Dec 12, 2024 | Windows Mobile Broadband Driver Elevation of Privilege Vulnerability | ||
| CVE-2024-49092 | Med | 0.44 | 6.8 | 0.01 | Dec 12, 2024 | Windows Mobile Broadband Driver Elevation of Privilege Vulnerability | ||
| CVE-2024-49083 | Med | 0.44 | 6.8 | 0.01 | Dec 12, 2024 | Windows Mobile Broadband Driver Elevation of Privilege Vulnerability | ||
| CVE-2024-49082 | Med | 0.44 | 6.8 | 0.02 | Dec 12, 2024 | Windows File Explorer Information Disclosure Vulnerability | ||
| CVE-2024-49078 | Med | 0.44 | 6.8 | 0.01 | Dec 12, 2024 | Windows Mobile Broadband Driver Elevation of Privilege Vulnerability |
- risk 0.46cvss 7.0epss 0.02
An Elevation of Privilege vulnerability exists in Filter Manager when it improperly handles objects in memory, aka "Microsoft Filter Manager Elevation Of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server…
- risk 0.45cvss 7.0epss 0.00
Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally.
- risk 0.45cvss 7.0epss 0.00
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
- risk 0.45cvss 7.0epss 0.00
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- risk 0.45cvss 6.8epss 0.04
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated…
- risk 0.44cvss 6.8epss 0.05
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
- risk 0.44cvss 6.8epss 0.00
Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally.
- risk 0.44cvss 6.7epss 0.01
Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.
- risk 0.44cvss 6.7epss 0.00
Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.
- risk 0.44cvss 6.7epss 0.00
Reliance on untrusted inputs in a security decision in Windows Boot Loader allows an authorized attacker to bypass a security feature locally.
- risk 0.44cvss 6.7epss 0.00
Use of hard-coded credentials in Windows Hardware Lab Kit allows an authorized attacker to elevate privileges locally.
- risk 0.44cvss 6.8epss 0.01
Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.
- risk 0.44cvss 6.5epss 0.22
NTLM Hash Disclosure Spoofing Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Remote Desktop Configuration Service Tampering Vulnerability
- risk 0.44cvss 6.8epss 0.01
Secure Boot Security Feature Bypass Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Mobile Broadband Driver Elevation of Privilege Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Mobile Broadband Driver Elevation of Privilege Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Mobile Broadband Driver Elevation of Privilege Vulnerability
- risk 0.44cvss 6.8epss 0.02
Windows File Explorer Information Disclosure Vulnerability
- risk 0.44cvss 6.8epss 0.01
Windows Mobile Broadband Driver Elevation of Privilege Vulnerability
Page 116 of 182