VYPR

Windows Server 2003

by Microsoft

Source repositories

CVEs (4,760)

  • CVE-2011-0096MedJan 31, 2011
    risk 0.46cvss 6.1epss 0.47

    The MHTML protocol handler in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle a MIME format in a request for content blocks in a document,…

  • CVE-2009-2516HigOct 14, 2009
    risk 0.46cvss 7.1epss 0.01

    The kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold and SP1, and Server 2008 Gold does not properly validate data sent from user mode, which allows local users to gain privileges via a crafted PE .exe file that triggers a NULL pointer…

  • CVE-2026-47648HigJun 9, 2026
    risk 0.45cvss 7.0epss 0.00

    Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally.

  • CVE-2026-42984HigJun 9, 2026
    risk 0.45cvss 7.0epss 0.00

    Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

  • CVE-2026-34335HigJun 9, 2026
    risk 0.45cvss 7.0epss 0.00

    Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.

  • CVE-2024-6769MedSep 26, 2024
    risk 0.45cvss 6.7epss 0.01

    A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in Microsoft Windows 10, Windows 11, Windows Server 2016, Windows Server 2019, and Windows Server 2022 allows a malicious authenticated attacker to elevate from a medium integrity process…

  • CVE-2018-8438MedSep 13, 2018
    risk 0.45cvss 6.8epss 0.07

    A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka "Windows Hyper-V Denial of Service Vulnerability." This affects Windows Server 2012 R2,…

  • CVE-2010-0488MedMar 31, 2010
    risk 0.45cvss 6.5epss 0.29

    Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 does not properly handle unspecified "encoding strings," which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site, aka "Post Encoding Information Disclosure…

  • CVE-2026-50507MedJun 9, 2026
    risk 0.44cvss 6.8epss 0.05

    Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack.

  • CVE-2026-45608MedJun 9, 2026
    risk 0.44cvss 6.8epss 0.00

    Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information locally.

  • CVE-2026-41097MedMay 12, 2026
    risk 0.44cvss 6.7epss 0.01

    Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.

  • CVE-2026-32170MedMay 12, 2026
    risk 0.44cvss 6.7epss 0.00

    Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally.

  • CVE-2026-0390MedApr 14, 2026
    risk 0.44cvss 6.7epss 0.00

    Reliance on untrusted inputs in a security decision in Windows Boot Loader allows an authorized attacker to bypass a security feature locally.

  • CVE-2022-26934MedMay 10, 2022
    risk 0.44cvss 6.5epss 0.03

    Windows Graphics Component Information Disclosure Vulnerability

  • CVE-2018-8140MedJun 14, 2018
    risk 0.44cvss 6.8epss 0.02

    An Elevation of Privilege vulnerability exists when Cortana retrieves data from user input services without consideration for status, aka "Cortana Elevation of Privilege Vulnerability." This affects Windows 10 Servers, Windows 10.

  • CVE-2018-8424MedSep 13, 2018
    risk 0.43cvss 6.5epss 0.13

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows…

  • CVE-2018-8398MedAug 15, 2018
    risk 0.43cvss 6.5epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows…

  • CVE-2018-8394MedAug 15, 2018
    risk 0.43cvss 6.5epss 0.08

    An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka "Windows GDI Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows…

  • CVE-2018-8340MedAug 15, 2018
    risk 0.43cvss 6.5epss 0.08

    A security feature bypass vulnerability exists when Active Directory Federation Services (AD FS) improperly handles multi-factor authentication requests, aka "AD FS Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows Server 2012 R2, Windows 10…

  • CVE-2018-8308MedJul 11, 2018
    risk 0.43cvss 6.6epss 0.04

    An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012,…

Page 20 of 238