Windows Server 2019
by Microsoft
CVEs (3,629)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-49112 | 0.07 | — | 0.71 | Dec 10, 2024 | Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability | |||
| CVE-2024-38063 | 0.07 | — | 0.71 | Aug 13, 2024 | Windows TCP/IP Remote Code Execution Vulnerability | |||
| CVE-2024-38077 | 0.07 | — | 0.75 | Jul 9, 2024 | Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability | |||
| CVE-2024-26229 | 0.07 | — | 0.09 | Apr 9, 2024 | Windows CSC Service Elevation of Privilege Vulnerability | |||
| CVE-2022-34718 | 0.07 | — | 0.48 | Sep 13, 2022 | Windows TCP/IP Remote Code Execution Vulnerability | |||
| CVE-2022-26809 | 0.07 | — | 0.92 | Apr 15, 2022 | Remote Procedure Call Runtime Remote Code Execution Vulnerability | |||
| CVE-2020-1337 | 0.07 | — | 0.14 | Aug 17, 2020 | An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could… | |||
| CVE-2019-1040 | 0.07 | — | 0.48 | Jun 12, 2019 | A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection. An attacker who successfully exploited this vulnerability could gain the ability to downgrade NTLM security… | |||
| CVE-2025-21298 | 0.06 | — | 0.81 | Jan 14, 2025 | Windows OLE Remote Code Execution Vulnerability | |||
| CVE-2024-38144 | 0.06 | — | 0.32 | Aug 13, 2024 | Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability | |||
| CVE-2023-28231 | 0.06 | — | 0.37 | Apr 11, 2023 | DHCP Server Service Remote Code Execution Vulnerability | |||
| CVE-2022-33679 | 0.06 | — | 0.08 | Sep 13, 2022 | Windows Kerberos Elevation of Privilege Vulnerability | |||
| CVE-2022-26937 | 0.06 | — | 0.77 | May 10, 2022 | Windows Network File System Remote Code Execution Vulnerability | |||
| CVE-2021-1678 | 0.06 | — | 0.09 | Jan 12, 2021 | Windows Print Spooler Spoofing Vulnerability | |||
| CVE-2019-1181 | 0.06 | — | 0.75 | Aug 14, 2019 | A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and… | |||
| CVE-2019-1152 | 0.06 | — | 0.13 | Aug 14, 2019 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view,… | |||
| CVE-2019-1149 | 0.06 | — | 0.14 | Aug 14, 2019 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view,… | |||
| CVE-2019-1144 | 0.06 | — | 0.13 | Aug 14, 2019 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view,… | |||
| CVE-2019-1145 | 0.06 | — | 0.13 | Aug 14, 2019 | A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view,… | |||
| CVE-2019-0948 | 0.06 | — | 0.13 | Jun 12, 2019 | An information disclosure vulnerability exists in the Windows Event Viewer (eventvwr.msc) when it improperly parses XML input containing a reference to an external entity. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external… |
- CVE-2024-49112Dec 10, 2024risk 0.07cvss —epss 0.71
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
- CVE-2024-38063Aug 13, 2024risk 0.07cvss —epss 0.71
Windows TCP/IP Remote Code Execution Vulnerability
- CVE-2024-38077Jul 9, 2024risk 0.07cvss —epss 0.75
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
- CVE-2024-26229Apr 9, 2024risk 0.07cvss —epss 0.09
Windows CSC Service Elevation of Privilege Vulnerability
- CVE-2022-34718Sep 13, 2022risk 0.07cvss —epss 0.48
Windows TCP/IP Remote Code Execution Vulnerability
- CVE-2022-26809Apr 15, 2022risk 0.07cvss —epss 0.92
Remote Procedure Call Runtime Remote Code Execution Vulnerability
- CVE-2020-1337Aug 17, 2020risk 0.07cvss —epss 0.14
An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could…
- CVE-2019-1040Jun 12, 2019risk 0.07cvss —epss 0.48
A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection. An attacker who successfully exploited this vulnerability could gain the ability to downgrade NTLM security…
- CVE-2025-21298Jan 14, 2025risk 0.06cvss —epss 0.81
Windows OLE Remote Code Execution Vulnerability
- CVE-2024-38144Aug 13, 2024risk 0.06cvss —epss 0.32
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
- CVE-2023-28231Apr 11, 2023risk 0.06cvss —epss 0.37
DHCP Server Service Remote Code Execution Vulnerability
- CVE-2022-33679Sep 13, 2022risk 0.06cvss —epss 0.08
Windows Kerberos Elevation of Privilege Vulnerability
- CVE-2022-26937May 10, 2022risk 0.06cvss —epss 0.77
Windows Network File System Remote Code Execution Vulnerability
- CVE-2021-1678Jan 12, 2021risk 0.06cvss —epss 0.09
Windows Print Spooler Spoofing Vulnerability
- CVE-2019-1181Aug 14, 2019risk 0.06cvss —epss 0.75
A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests. This vulnerability is pre-authentication and…
- CVE-2019-1152Aug 14, 2019risk 0.06cvss —epss 0.13
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view,…
- CVE-2019-1149Aug 14, 2019risk 0.06cvss —epss 0.14
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view,…
- CVE-2019-1144Aug 14, 2019risk 0.06cvss —epss 0.13
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view,…
- CVE-2019-1145Aug 14, 2019risk 0.06cvss —epss 0.13
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view,…
- CVE-2019-0948Jun 12, 2019risk 0.06cvss —epss 0.13
An information disclosure vulnerability exists in the Windows Event Viewer (eventvwr.msc) when it improperly parses XML input containing a reference to an external entity. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external…
Page 21 of 182